Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/4a293d-2ad3-4114-a2b1-1cc505501a0f/1/UGVWLhCfY3q3tmo1YGxdNSB5HEE.roa
File: UGVWLhCfY3q3tmo1YGxdNSB5HEE.roa (raw, json)
Hash identifier: YcyDkrM2ls2bhd84uA/wYM3G50lkCcF2SIVXzlIfuz8=
Subject key identifier: 50:65:56:2E:10:9F:63:7A:B7:B6:6A:35:60:6C:5D:35:20:79:1C:41
Certificate issuer: /CN=f811fa5eff370bc36d0e3929625e3414081a2392
Certificate serial: 36CFB755
Authority key identifier: F8:11:FA:5E:FF:37:0B:C3:6D:0E:39:29:62:5E:34:14:08:1A:23:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-BH6Xv83C8NtDjkpYl40FAgaI5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/4a293d-2ad3-4114-a2b1-1cc505501a0f/1/UGVWLhCfY3q3tmo1YGxdNSB5HEE.roa
Signing time: Sat 01 Jan 2022 08:54:15 +0000
ROA not before: Sat 01 Jan 2022 08:54:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44486
IP address blocks: 78.41.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 919582549 (0x36cfb755)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f811fa5eff370bc36d0e3929625e3414081a2392
Validity
Not Before: Jan 1 08:54:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5065562e109f637ab7b66a35606c5d3520791c41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:0f:90:df:90:6c:c5:f5:c5:4f:5f:bc:e1:a2:
1c:bf:93:15:13:46:73:5e:23:32:20:69:b6:96:a6:
a8:84:2c:4c:76:4e:db:13:38:07:06:a6:0c:d0:ab:
d9:58:7e:f0:04:7f:00:b2:c3:d5:23:bd:7c:27:2d:
59:2e:f2:01:2f:1a:b9:1d:77:eb:ca:06:f4:21:94:
f5:68:a9:ab:8d:77:42:1d:89:d5:7d:63:68:54:d3:
10:c4:c8:2c:6d:1e:ec:3a:25:d7:4f:73:13:de:9f:
22:b0:e2:b5:ee:1c:d6:73:b9:cd:81:04:d4:55:6a:
d0:f6:72:87:16:9c:1c:1e:bb:c9:52:1c:9d:a3:dc:
93:b7:91:88:a1:26:cd:e2:14:d5:b6:72:87:c2:53:
48:7d:d3:82:3e:ab:26:3b:01:d9:07:31:c6:20:ac:
26:52:10:83:17:98:72:b8:74:1c:36:1e:e0:16:c9:
e8:78:3a:ba:6a:7a:3f:48:b0:0f:ec:2a:6b:30:4d:
de:23:3b:5f:17:bc:99:c5:37:d0:2d:c2:1e:95:3a:
d8:6f:19:d5:b8:81:bf:72:cf:52:5e:ed:32:e3:73:
7f:0f:26:13:34:0e:50:c4:ac:2a:3e:2f:eb:8f:b5:
0c:d8:6e:62:a3:2f:a3:e9:83:26:a4:9c:09:9c:99:
ff:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:65:56:2E:10:9F:63:7A:B7:B6:6A:35:60:6C:5D:35:20:79:1C:41
X509v3 Authority Key Identifier:
keyid:F8:11:FA:5E:FF:37:0B:C3:6D:0E:39:29:62:5E:34:14:08:1A:23:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-BH6Xv83C8NtDjkpYl40FAgaI5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4a293d-2ad3-4114-a2b1-1cc505501a0f/1/UGVWLhCfY3q3tmo1YGxdNSB5HEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4a293d-2ad3-4114-a2b1-1cc505501a0f/1/1-BH6Xv83C8NtDjkpYl40FAgaI5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.41.88.0/22
Signature Algorithm: sha256WithRSAEncryption
75:4b:ba:62:79:7c:21:82:2e:8f:10:45:58:4b:7e:63:0b:68:
ee:54:fc:80:b6:01:b5:6c:da:94:0c:7c:3d:cd:8f:73:15:27:
c3:2c:a1:e1:a4:f7:d9:27:91:e5:22:2f:8f:65:d4:00:f2:f5:
37:09:cb:93:d8:55:d9:4d:2f:b7:d5:21:36:28:65:a7:9b:32:
b9:ce:44:c1:6a:ad:ff:33:85:60:7c:08:44:22:d8:67:b9:a0:
e6:00:28:58:3e:ec:a6:c1:e7:70:c0:7d:87:97:6f:b6:9c:dc:
42:ff:14:31:2d:74:fa:9b:e1:77:b7:ae:17:1c:e0:53:0a:6e:
e4:37:08:d0:65:f6:90:7a:0c:8f:42:9b:1c:13:e5:78:8c:19:
d2:ed:1a:55:33:f9:aa:28:39:76:75:97:5c:b9:3a:69:54:ad:
13:05:e9:69:87:39:44:33:d9:a7:55:b0:7a:fc:d0:24:4d:fd:
39:04:b6:b7:3e:be:a4:fc:d1:53:44:24:d1:34:6c:bc:26:11:
5e:d4:5b:4e:8e:05:72:aa:bb:0c:73:c0:a4:aa:e1:88:9b:cb:
9a:0f:90:79:a0:eb:c0:6f:bb:68:71:d5:01:32:6b:ee:dc:a2:
b1:7e:2f:f7:8c:25:6b:f4:1d:bf:52:bd:1f:5e:05:18:68:30:
da:36:42:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:06 2023 by rpki-client on console-ams.rpki-client.org