Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/1b1ca0-bbf2-4419-8a0c-50cbcb5b19c2/1/Ubji_8pNiqQxtD1DuQpuMqgjU64.roa
File: Ubji_8pNiqQxtD1DuQpuMqgjU64.roa (raw, json)
Hash identifier: jdd4/VtYJRFkqzrasAIoUV40x9gKQeoeQUVuH6fs/zw=
Subject key identifier: 51:B8:E2:FF:CA:4D:8A:A4:31:B4:3D:43:B9:0A:6E:32:A8:23:53:AE
Certificate issuer: /CN=ab1c800aa1b78a17a43e19fd9938355d0411e94a
Certificate serial: 026888
Authority key identifier: AB:1C:80:0A:A1:B7:8A:17:A4:3E:19:FD:99:38:35:5D:04:11:E9:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qxyACqG3ihekPhn9mTg1XQQR6Uo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/1b1ca0-bbf2-4419-8a0c-50cbcb5b19c2/1/Ubji_8pNiqQxtD1DuQpuMqgjU64.roa
Signing time: Wed 11 May 2022 14:00:07 +0000
ROA not before: Wed 11 May 2022 14:00:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25584
IP address blocks: 217.173.205.0/24 maxlen: 24
2a04:9444::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157832 (0x26888)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab1c800aa1b78a17a43e19fd9938355d0411e94a
Validity
Not Before: May 11 14:00:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51b8e2ffca4d8aa431b43d43b90a6e32a82353ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f4:50:ae:6c:be:62:1d:4d:2a:b2:a3:31:4f:
64:22:f6:0d:29:bf:1d:9f:c9:99:b5:35:34:2d:d9:
2b:42:56:60:8c:a8:14:96:65:74:fd:e0:b1:3a:26:
3e:7b:06:9c:54:b0:e9:94:09:aa:ef:df:24:4b:7a:
d4:f8:d8:43:a1:07:e9:a8:a1:52:56:16:9c:01:be:
63:e2:bb:c2:0f:41:75:b9:b4:01:e9:43:5f:0d:56:
8a:76:aa:55:0d:30:d3:2b:6f:bf:51:af:3c:fe:e1:
1a:dc:f8:84:b5:d4:aa:8f:ea:35:de:8b:4d:53:ea:
34:85:ed:62:21:81:e3:b6:79:b6:0b:1c:7f:c2:80:
fb:dc:28:9a:bd:c5:48:df:28:f6:2f:aa:f7:46:23:
b5:62:94:5d:3b:ea:c3:88:f2:57:09:f7:6f:2f:a6:
b3:8c:b0:3e:99:8f:da:23:07:8a:10:49:28:92:89:
b3:86:8c:84:2e:a7:01:1e:64:32:6b:5c:79:16:80:
22:61:a1:1a:0d:02:69:a8:3f:92:83:da:67:9a:af:
da:f7:ee:e1:fa:22:8c:9e:a5:52:ae:97:36:35:a1:
2f:a3:70:b0:31:7d:84:c3:c4:31:50:c6:ae:c5:6b:
a0:49:d5:d4:c9:0e:11:45:f6:8d:39:77:90:73:b0:
25:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:B8:E2:FF:CA:4D:8A:A4:31:B4:3D:43:B9:0A:6E:32:A8:23:53:AE
X509v3 Authority Key Identifier:
keyid:AB:1C:80:0A:A1:B7:8A:17:A4:3E:19:FD:99:38:35:5D:04:11:E9:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qxyACqG3ihekPhn9mTg1XQQR6Uo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1b1ca0-bbf2-4419-8a0c-50cbcb5b19c2/1/Ubji_8pNiqQxtD1DuQpuMqgjU64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1b1ca0-bbf2-4419-8a0c-50cbcb5b19c2/1/qxyACqG3ihekPhn9mTg1XQQR6Uo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.173.205.0/24
IPv6:
2a04:9444::/30
Signature Algorithm: sha256WithRSAEncryption
0e:42:60:93:37:a3:7f:56:b6:6b:6b:aa:9b:19:22:13:05:59:
e0:f4:a6:8d:4c:c7:e1:ec:45:10:81:76:3b:4c:76:81:ae:fa:
b2:c6:40:1d:0c:46:03:93:b6:4d:8e:01:4d:3b:f8:ac:82:94:
7d:c5:91:4b:bc:f9:85:df:1f:e1:81:4a:8a:20:8e:4b:89:1d:
e0:eb:fc:82:5d:5e:b2:b3:54:50:a2:35:c4:92:5c:53:8b:02:
17:42:96:ef:bb:0b:ae:58:da:77:ea:ce:84:be:51:f4:34:86:
5f:17:5f:9e:73:af:1a:ed:9e:e3:23:d1:cc:3d:a3:21:98:ce:
95:55:e6:0d:fd:9f:34:cd:a3:07:6d:6f:88:95:33:fb:9e:b9:
be:36:98:72:3b:18:29:c8:77:2c:b8:41:00:76:0d:14:53:9c:
10:83:53:bc:dc:44:7f:12:8d:f7:64:b4:9b:9e:d8:7c:9b:0f:
ba:a8:10:cd:a7:3f:76:9b:0e:ed:ed:c6:7c:61:2c:d9:cf:e1:
13:56:07:2f:6a:31:b2:aa:3f:dc:3c:28:65:bc:d7:ab:62:d5:
dd:6f:60:c1:13:d8:6b:34:c6:cf:82:9d:94:27:bd:96:bf:e7:
c6:8a:9c:aa:4a:4d:a5:dd:d9:51:8e:c3:50:1f:66:d9:d5:af:
b6:57:77:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:42 2024 by rpki-client on console-fra.rpki-client.org