Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/uEYv-DSDuGUKm_0TmUZdlbhdj7U.roa
File: uEYv-DSDuGUKm_0TmUZdlbhdj7U.roa (raw, json)
Hash identifier: n/7X43oiVZw46zGIKF1Z3Md8CbglRPLacnYHADo+nx0=
Subject key identifier: B8:46:2F:F8:34:83:B8:65:0A:9B:FD:13:99:46:5D:95:B8:5D:8F:B5
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 013A9065
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/uEYv-DSDuGUKm_0TmUZdlbhdj7U.roa
Signing time: Sat 01 Jan 2022 05:02:51 +0000
ROA not before: Sat 01 Jan 2022 05:02:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400042
IP address blocks: 138.128.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20615269 (0x13a9065)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Jan 1 05:02:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8462ff83483b8650a9bfd1399465d95b85d8fb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:09:b8:36:ec:d5:26:e2:d0:e1:11:b1:10:8c:
43:c1:a5:57:de:a6:56:24:4f:27:ef:21:df:dc:52:
96:57:fd:4c:1d:6a:fc:22:d3:4f:db:a2:00:e7:07:
5c:57:5a:cc:66:8c:8f:77:ad:46:97:dd:01:5c:26:
83:bd:0c:e6:a6:b7:55:9e:61:62:23:9d:b6:23:d4:
43:f3:b0:2c:2c:5a:3f:e1:1e:e9:7f:cb:fe:9e:94:
a1:3e:ae:f0:3c:0d:a3:67:2e:51:d5:b2:91:e7:3a:
09:17:eb:5a:a7:eb:cf:81:bc:34:73:20:4a:cc:ff:
0c:76:d7:5d:0c:2e:8e:a3:86:a8:4d:6f:f6:0b:48:
a5:fd:da:2b:86:88:f6:7d:32:06:d9:68:13:21:ec:
26:81:de:17:0f:33:aa:fd:0d:0c:8f:53:29:21:b8:
75:ac:c1:93:99:a3:5f:58:8d:15:ce:e0:66:55:53:
83:07:f0:20:e0:5e:45:b5:ae:e9:4c:e3:7a:02:20:
a6:fd:62:d1:25:95:d5:65:dd:76:8f:3a:1c:af:1b:
17:54:5a:f5:60:58:3d:d8:3c:b9:a1:fc:06:15:a8:
38:06:18:d7:b3:46:f1:7e:12:2b:43:a8:24:20:7e:
39:43:8a:d9:fd:ed:e0:b8:cf:77:d1:6c:1e:e4:15:
0e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:46:2F:F8:34:83:B8:65:0A:9B:FD:13:99:46:5D:95:B8:5D:8F:B5
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/uEYv-DSDuGUKm_0TmUZdlbhdj7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.128.148.0/24
Signature Algorithm: sha256WithRSAEncryption
86:f6:4d:15:82:37:5f:ff:4f:6b:71:6d:5d:25:81:14:a9:35:
5d:05:0c:94:20:fa:7a:43:c3:e6:16:dd:01:e8:ef:99:16:30:
e2:0a:51:a9:89:b9:27:60:77:6e:92:82:45:fe:c5:41:0a:35:
59:f7:2e:2b:fb:d7:b9:81:db:18:76:15:4c:48:03:36:6a:73:
1f:ba:ad:4b:2a:05:1f:09:ed:48:5a:a1:ef:a9:6c:36:ab:c0:
f9:3c:98:d7:c5:99:e7:92:61:a7:01:ff:fe:e3:22:c3:d2:8e:
98:a3:f4:9c:10:f8:af:00:82:d2:6d:34:5f:03:b8:9a:35:20:
d3:21:81:e2:2d:b6:b6:a5:3b:18:e9:61:4a:11:eb:c0:f2:f1:
92:81:47:93:27:3d:2f:53:9c:1c:35:3a:10:82:ea:04:c6:dc:
db:1f:22:9c:14:8c:1f:a6:1a:ba:be:94:bd:db:13:11:f5:5e:
58:31:50:0f:11:46:28:f8:8a:e9:7a:7b:dc:cb:cb:0e:cb:c6:
3c:3e:51:1e:9b:f8:bf:ee:3c:01:fd:16:40:22:d1:b5:98:b7:
a2:a6:d5:6e:3c:cf:8e:0f:89:2f:8b:b3:4e:ff:92:45:e6:c6:
48:20:f7:51:38:8c:40:69:77:6b:e6:69:ba:3f:83:33:52:5f:
f2:72:3d:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:38 2023 by rpki-client on console-ams.rpki-client.org