Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/uss-rYYHB4KEdUKr2qj_HUzGKcw.roa
File: uss-rYYHB4KEdUKr2qj_HUzGKcw.roa (raw, json)
Hash identifier: 8yjCXTTjxb72TSKWeeIPMdLT9lRLwwDQdeVuegFs3DM=
Subject key identifier: BA:CB:3E:AD:86:07:07:82:84:75:42:AB:DA:A8:FF:1D:4C:C6:29:CC
Certificate issuer: /CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Certificate serial: 0B856E3B
Authority key identifier: 39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/uss-rYYHB4KEdUKr2qj_HUzGKcw.roa
Signing time: Sat 01 Jan 2022 10:55:55 +0000
ROA not before: Sat 01 Jan 2022 10:55:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202207
IP address blocks: 185.5.124.0/22 maxlen: 22
2a03:1c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 193293883 (0xb856e3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Validity
Not Before: Jan 1 10:55:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bacb3ead86070782847542abdaa8ff1d4cc629cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4f:50:ce:3a:4f:a7:46:cb:8f:ac:24:dc:30:
e4:f0:9f:ff:f9:a2:b7:9a:da:b9:d6:9b:bc:ae:80:
3e:4e:22:26:fe:6b:87:ba:19:72:52:87:fd:5e:8b:
6f:25:41:4f:c0:b5:59:cf:32:10:09:fd:2a:f5:27:
97:84:fa:ea:cf:86:b4:b4:7d:0f:ca:39:65:f6:54:
06:d0:77:fc:4a:b5:7f:d2:3f:5c:6e:78:26:4d:85:
58:51:ad:7b:8b:d8:b3:da:77:66:92:01:87:6c:91:
96:40:6b:dc:3b:24:d8:de:36:ba:bf:b1:83:50:7e:
55:01:91:ff:9a:61:4a:b8:8c:10:76:ea:08:09:ab:
ff:82:58:67:7b:b8:1c:90:0e:a5:10:9e:77:cb:19:
85:fd:24:7c:32:57:6d:48:33:2d:11:c2:b1:1e:55:
9e:a1:c7:f7:f6:a4:79:32:e4:1b:32:4e:da:87:ac:
93:9b:d0:37:99:e8:93:32:20:4b:88:b6:02:08:18:
2b:09:e6:70:dd:4e:61:46:e7:d7:ab:dc:af:49:f4:
14:e3:fb:c7:e6:34:85:2e:a4:47:cc:f8:00:b4:75:
84:44:de:20:aa:66:c0:c9:1c:f0:d8:a5:a9:f6:83:
c5:55:fe:d1:c0:9c:e4:f6:be:30:c0:8d:c6:2d:50:
bb:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:CB:3E:AD:86:07:07:82:84:75:42:AB:DA:A8:FF:1D:4C:C6:29:CC
X509v3 Authority Key Identifier:
keyid:39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/uss-rYYHB4KEdUKr2qj_HUzGKcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.124.0/22
IPv6:
2a03:1c0::/32
Signature Algorithm: sha256WithRSAEncryption
3f:bf:c3:4d:06:7c:32:c1:26:21:88:81:ff:5d:b4:68:73:e6:
b7:3a:17:82:73:b7:dd:6e:a7:f5:d9:e3:74:38:45:2f:85:40:
4f:d2:39:88:ae:92:6d:62:89:3b:70:54:95:b3:14:af:d7:b1:
75:f5:96:dc:25:91:f3:a7:8f:66:85:b1:71:29:d5:a8:ec:cc:
27:9f:89:3a:6c:12:98:c6:6b:bb:8e:db:c8:0c:86:9c:fa:75:
43:c2:25:b3:29:d5:fb:6d:82:0b:60:88:52:8a:05:b1:48:78:
04:43:41:52:aa:5f:63:27:a1:57:23:bb:ea:ab:8f:36:e6:35:
fd:62:40:e3:d9:80:2e:df:2e:61:1e:51:90:5f:38:c5:1a:0d:
c5:c0:1d:09:77:97:93:9d:08:20:27:2b:42:67:ae:31:bb:e0:
71:96:a8:3a:c7:45:5a:a9:07:06:60:d1:99:64:25:e7:56:3d:
80:ca:ab:5d:72:d7:ef:83:df:ba:dc:1c:1e:5c:de:ba:78:67:
15:84:44:d2:54:45:7b:5d:6d:5c:b7:44:b3:84:24:53:4b:67:
ba:c2:5b:7d:03:0a:29:5a:74:a4:4b:ce:d7:33:53:22:46:12:
2e:90:2a:5d:42:b9:30:3f:55:04:5b:d2:39:90:4b:f5:61:99:
4f:ff:de:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:15 2024 by rpki-client on console-fra.rpki-client.org