Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/0d0d11-8b0c-4360-ac61-dab9f8ba8fb6/1/uDadgIe0FW20ep0BIaSMx0bmuoE.roa
File: uDadgIe0FW20ep0BIaSMx0bmuoE.roa (raw, json)
Hash identifier: aeBYGfwl3z6nYv5jPgS6wYb44FZHlNSqIdhMaPDKTr0=
Subject key identifier: B8:36:9D:80:87:B4:15:6D:B4:7A:9D:01:21:A4:8C:C7:46:E6:BA:81
Certificate issuer: /CN=da60f646bc7f488caf5ebdca8072c09d63f61a21
Certificate serial: 14823997
Authority key identifier: DA:60:F6:46:BC:7F:48:8C:AF:5E:BD:CA:80:72:C0:9D:63:F6:1A:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2mD2Rrx_SIyvXr3KgHLAnWP2GiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/0d0d11-8b0c-4360-ac61-dab9f8ba8fb6/1/uDadgIe0FW20ep0BIaSMx0bmuoE.roa
Signing time: Sat 01 Jan 2022 08:59:56 +0000
ROA not before: Sat 01 Jan 2022 08:59:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204155
IP address blocks: 194.31.120.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 344078743 (0x14823997)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da60f646bc7f488caf5ebdca8072c09d63f61a21
Validity
Not Before: Jan 1 08:59:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8369d8087b4156db47a9d0121a48cc746e6ba81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:48:89:61:1f:d8:74:87:45:70:b3:71:01:4d:
7e:d0:4f:92:f9:15:86:a3:d0:10:ff:e7:f2:df:28:
a0:6b:f4:4f:84:1c:0b:51:02:e2:f0:24:76:e7:de:
14:f9:05:52:55:67:06:5e:3d:1e:a8:17:6c:3b:11:
b7:ff:f1:f4:dd:31:4e:48:73:61:cf:5d:f4:37:bf:
e5:12:bb:d3:11:dc:a0:a1:1c:33:de:0e:dd:d1:ce:
7b:5d:8b:c5:6e:bb:39:eb:d2:da:d1:87:7d:b1:9d:
ec:b9:0e:a4:af:da:b2:b2:12:f0:16:63:d9:67:5c:
5a:ab:58:94:5d:75:29:65:f9:54:ef:d1:12:ff:9d:
49:c8:25:25:37:be:68:ee:5c:5c:65:08:4d:4e:10:
fb:93:4b:80:54:84:9e:c7:6e:99:dc:84:65:b6:8a:
69:f8:f4:cc:48:f4:55:aa:e0:b6:b6:cb:91:f0:12:
45:99:f9:ed:ee:82:ab:f2:c0:03:c4:e8:4f:7e:ca:
ae:73:36:17:e7:4f:23:c7:e2:65:0f:73:8c:49:77:
ea:6a:06:6f:45:80:cd:2a:7f:95:b1:9d:b3:80:67:
e0:fb:2b:82:de:cc:ef:24:73:90:f5:c5:9f:f4:52:
23:62:9a:28:d0:d7:13:ab:1c:a3:b1:16:69:97:85:
0c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:36:9D:80:87:B4:15:6D:B4:7A:9D:01:21:A4:8C:C7:46:E6:BA:81
X509v3 Authority Key Identifier:
keyid:DA:60:F6:46:BC:7F:48:8C:AF:5E:BD:CA:80:72:C0:9D:63:F6:1A:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2mD2Rrx_SIyvXr3KgHLAnWP2GiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/0d0d11-8b0c-4360-ac61-dab9f8ba8fb6/1/uDadgIe0FW20ep0BIaSMx0bmuoE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/0d0d11-8b0c-4360-ac61-dab9f8ba8fb6/1/2mD2Rrx_SIyvXr3KgHLAnWP2GiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.120.0/21
Signature Algorithm: sha256WithRSAEncryption
05:8d:37:0e:ef:19:01:82:38:97:a4:e8:21:2c:40:3a:5d:d8:
9c:f7:26:15:d9:0d:87:1a:c3:63:44:22:81:ae:67:a6:fd:85:
2f:d4:8d:7d:bf:20:b4:ac:28:11:ab:4b:18:73:8e:d3:ff:79:
ad:e5:3c:64:ca:1e:2d:e6:cd:95:e7:e0:ee:64:c1:62:ca:55:
de:37:4e:79:b6:a5:86:5f:f3:6f:f5:ff:b4:f0:c0:66:e0:19:
21:95:74:e7:91:37:7f:28:a9:fb:12:92:c5:73:f5:e9:81:ba:
d6:1b:2a:57:f1:b0:fb:87:3d:06:62:84:b5:33:8b:02:8c:72:
a6:5f:1d:c6:cc:6a:76:38:5d:54:e0:3d:d9:27:99:de:4d:6f:
11:bd:08:08:c3:e6:12:92:ed:db:c8:78:29:1f:b1:0d:1c:1d:
1b:17:42:9c:99:c6:6a:88:44:5f:66:0e:5e:21:ef:e4:2a:2d:
d2:88:20:6a:1f:e2:04:19:7a:6f:01:b1:f8:3a:55:36:fd:da:
8b:02:c4:51:84:16:3f:e3:76:db:f2:41:8f:b5:33:3e:de:8d:
f8:b4:58:de:bd:b7:46:51:35:c0:da:66:b8:68:5e:a6:6b:f2:
64:0d:df:f6:f1:a0:fc:96:f7:b2:31:dd:7f:52:11:04:e2:56:
3c:de:41:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:03 2023 by rpki-client on console-fra.rpki-client.org