Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/510e8f-967f-4137-b4e6-cc75797518a0/1/UpJmPVcF2sh_BeCYT6FCRzPcObo.roa
File: UpJmPVcF2sh_BeCYT6FCRzPcObo.roa (raw, json)
Hash identifier: GOT7Ji7ZDhzyYXphlUu8ND52ecWAoZxJo4yWjZBC1sI=
Subject key identifier: 52:92:66:3D:57:05:DA:C8:7F:05:E0:98:4F:A1:42:47:33:DC:39:BA
Certificate issuer: /CN=33ba6c0bcca16c685dc7b9b27f199b42b4beeee9
Certificate serial: 013F0F
Authority key identifier: 33:BA:6C:0B:CC:A1:6C:68:5D:C7:B9:B2:7F:19:9B:42:B4:BE:EE:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M7psC8yhbGhdx7myfxmbQrS-7uk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/510e8f-967f-4137-b4e6-cc75797518a0/1/UpJmPVcF2sh_BeCYT6FCRzPcObo.roa
Signing time: Thu 17 Mar 2022 19:56:00 +0000
ROA not before: Thu 17 Mar 2022 19:56:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35175
IP address blocks: 193.143.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81679 (0x13f0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33ba6c0bcca16c685dc7b9b27f199b42b4beeee9
Validity
Not Before: Mar 17 19:56:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5292663d5705dac87f05e0984fa1424733dc39ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:67:93:70:f4:00:20:67:30:65:48:fc:b5:64:
af:db:a2:38:0d:a5:78:72:be:d4:46:a5:7f:77:28:
26:17:b1:01:1c:86:97:33:d8:9c:e3:50:52:f7:87:
13:c8:f4:a9:f9:e8:2c:df:36:c1:bb:92:0d:e1:cb:
cc:69:70:9c:05:a8:23:88:27:db:42:b0:19:e7:a2:
5b:bc:9b:14:c9:40:06:28:fe:15:c7:65:8b:8f:c9:
9a:49:aa:69:37:4c:88:fa:cb:46:7b:77:a6:b6:8e:
98:58:cf:b2:7a:bd:d9:36:16:aa:6e:6e:5c:c1:ec:
07:1d:52:ed:72:a0:d6:c5:2c:b1:87:ab:11:d9:51:
fe:72:13:d1:2b:2f:58:5a:5e:20:dc:f6:01:e3:19:
f4:9d:b2:19:d6:19:74:e0:5a:63:33:7d:a5:20:dc:
41:27:73:13:e4:49:39:10:6f:6d:81:5d:29:08:7c:
e6:34:cd:f0:8a:bc:b8:6f:79:12:5b:ae:00:7c:a6:
4a:60:d9:45:cf:de:ce:7a:32:cc:2b:06:c7:bb:b4:
b2:c1:94:61:65:f8:98:a7:f5:45:1a:a1:e9:6b:85:
f9:c3:4a:07:2e:7d:41:f1:9b:74:33:11:5f:6b:22:
c1:96:15:2f:36:50:f1:5d:d2:c1:84:07:a6:b5:6b:
ee:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:92:66:3D:57:05:DA:C8:7F:05:E0:98:4F:A1:42:47:33:DC:39:BA
X509v3 Authority Key Identifier:
keyid:33:BA:6C:0B:CC:A1:6C:68:5D:C7:B9:B2:7F:19:9B:42:B4:BE:EE:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M7psC8yhbGhdx7myfxmbQrS-7uk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/510e8f-967f-4137-b4e6-cc75797518a0/1/UpJmPVcF2sh_BeCYT6FCRzPcObo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/510e8f-967f-4137-b4e6-cc75797518a0/1/M7psC8yhbGhdx7myfxmbQrS-7uk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.143.74.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:11:1b:79:e3:e6:e5:6d:6b:36:fd:cf:b9:fa:9f:c3:92:80:
49:8d:b3:be:0c:a0:67:2e:e4:2e:93:12:b4:0b:78:8f:99:7b:
f1:0f:be:4e:1f:9b:ea:48:87:96:e9:c3:9c:de:af:af:1e:f6:
65:de:9e:a3:70:e7:4c:11:98:97:b8:96:4b:4a:b1:79:86:b8:
ba:38:57:cd:46:73:ad:43:d4:93:6a:58:cc:82:54:96:da:9c:
64:e3:d0:dc:53:af:42:25:6f:8b:e5:82:df:11:22:14:dd:d6:
a3:99:49:47:04:25:cf:74:7b:a4:a8:8b:f5:73:4c:77:b0:59:
b4:3e:d0:71:7c:16:bc:d4:0c:9d:97:11:db:45:fe:2d:27:e5:
c6:69:32:7e:ba:ca:bd:ab:00:14:4c:a9:cd:2a:a1:b1:55:c9:
a5:b9:7f:33:77:4e:ff:f4:07:c4:24:d6:b4:10:c2:41:9d:57:
e6:d5:32:a9:04:c2:12:bd:cb:1f:1f:83:6c:66:71:1f:60:7a:
3e:af:41:04:aa:1d:9c:f7:5c:22:45:7e:16:cd:d8:22:11:11:
c6:80:b6:0c:0b:f9:11:84:5f:0c:19:32:f6:57:ac:f1:bd:22:
4d:2a:1b:99:db:a1:74:a3:ba:47:f4:38:7d:58:27:5b:a0:fa:
b0:98:aa:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:43 2023 by rpki-client on console-ams.rpki-client.org