Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/UOwXDCU67kSWIEuFFIi84i8IoPs.roa
File: UOwXDCU67kSWIEuFFIi84i8IoPs.roa (raw, json)
Hash identifier: AfElJSm2S07NaWD3gEG0LKv2v7UtIS0pazYEeBQG3fQ=
Subject key identifier: 50:EC:17:0C:25:3A:EE:44:96:20:4B:85:14:88:BC:E2:2F:08:A0:FB
Certificate issuer: /CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Certificate serial: 0182D67FBEF12CB6F0E72810001D2EE6CCBC
Authority key identifier: FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/UOwXDCU67kSWIEuFFIi84i8IoPs.roa
Signing time: Thu 25 Aug 2022 19:34:32 +0000
ROA not before: Thu 25 Aug 2022 19:34:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210213
IP address blocks: 195.244.146.0/24 maxlen: 24
195.244.156.0/24 maxlen: 24
2a00:1780:dc00::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d6:7f:be:f1:2c:b6:f0:e7:28:10:00:1d:2e:e6:cc:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Validity
Not Before: Aug 25 19:34:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50ec170c253aee4496204b851488bce22f08a0fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:04:2a:46:c3:13:35:fe:1b:28:b5:be:f0:b4:
90:4b:24:fe:28:cb:52:d8:87:0f:2c:e9:5c:a5:4d:
a2:44:1f:84:46:20:9a:45:47:80:8d:94:08:72:24:
a4:9e:77:80:17:64:ec:25:d6:f8:8b:f9:80:f1:d5:
cd:ff:29:59:7c:39:b8:c6:47:8d:d1:ee:34:0f:8c:
d5:ed:fa:9f:e7:1b:a8:b4:fb:58:f1:1e:79:0d:51:
48:29:a3:88:c6:ed:bf:4e:ce:77:17:2b:ce:0c:49:
de:24:b4:b9:d8:f9:20:97:6c:69:3d:84:73:14:0c:
fa:cc:bd:05:12:8d:2c:84:b1:33:8a:7c:06:9c:96:
e7:50:a1:3c:b0:2d:cb:44:03:b3:a5:39:c9:07:64:
10:a7:6b:75:f8:06:8c:78:d0:f6:df:d6:bd:b1:36:
8a:ea:98:22:b7:a3:4c:5f:6a:ec:9a:01:cb:a0:95:
d9:4f:e8:cc:d7:94:f9:ca:6d:d8:b3:5a:97:17:f1:
2d:fc:5c:4c:b2:ea:6a:9e:ea:99:16:cc:fa:87:5e:
4b:53:ae:b0:bc:60:bb:17:1b:68:41:96:12:0f:ae:
2b:44:66:0c:06:c2:18:28:c2:88:01:65:3b:8e:e9:
7c:69:9e:e0:c0:66:a6:aa:22:b9:02:63:53:1b:ae:
bd:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:EC:17:0C:25:3A:EE:44:96:20:4B:85:14:88:BC:E2:2F:08:A0:FB
X509v3 Authority Key Identifier:
keyid:FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/UOwXDCU67kSWIEuFFIi84i8IoPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/_2mO6y5J_LX5xlqZhXrynOBmQdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.244.146.0/24
195.244.156.0/24
IPv6:
2a00:1780:dc00::/40
Signature Algorithm: sha256WithRSAEncryption
01:bb:90:90:2a:81:64:7e:4b:79:43:0d:b0:c2:c6:7d:6d:e6:
71:12:83:e3:93:3b:fe:9b:c7:7a:1f:8b:a3:45:92:8a:0d:ec:
e0:84:5a:de:5c:5f:65:50:0a:9c:aa:1c:41:b1:14:49:bc:d0:
50:1d:51:f3:f3:2b:4b:50:65:6a:48:38:a1:d2:fb:42:fc:38:
46:57:84:77:44:ee:55:94:91:eb:6c:a6:bc:d8:bc:b2:2c:e6:
88:aa:dc:1e:12:65:af:96:9c:31:86:17:f2:89:b8:9c:48:59:
3b:d9:76:2f:ac:40:12:9a:cb:73:11:25:92:69:61:95:b7:cc:
f7:25:fc:58:55:7d:7d:4c:c9:89:51:8f:fe:d6:64:46:bc:af:
12:4f:02:d5:45:45:29:12:4d:7b:f7:a0:11:37:0b:f4:a9:61:
fc:8f:b2:99:8d:92:aa:11:af:a4:97:74:ed:e8:60:0a:63:89:
17:43:e0:24:1f:e5:a0:c1:57:d1:37:52:7c:81:a2:aa:1b:f6:
91:94:79:40:47:9a:45:8d:b9:fa:9a:65:c6:49:cb:a7:30:08:
7c:8f:7a:55:7f:39:a8:0c:f9:34:66:56:89:51:33:44:57:2d:
78:ac:17:a0:00:36:84:96:82:5f:34:08:57:a3:d6:2f:e3:24:
4b:95:f6:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:35 2023 by rpki-client on console-ams.rpki-client.org