Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/uGZyqEITm-JQ8LpqDWPn7fGWxZQ.roa
File: uGZyqEITm-JQ8LpqDWPn7fGWxZQ.roa (raw, json)
Hash identifier: /xQceWY4kNbPXwE3pknACFmYkYyDnNa44HcWDPnuVMM=
Subject key identifier: B8:66:72:A8:42:13:9B:E2:50:F0:BA:6A:0D:63:E7:ED:F1:96:C5:94
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0184A35CC397F46C38A0CAE5FA678344DE35
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/uGZyqEITm-JQ8LpqDWPn7fGWxZQ.roa
Signing time: Wed 23 Nov 2022 07:21:16 +0000
ROA not before: Wed 23 Nov 2022 07:21:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210542
IP address blocks: 188.214.236.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a3:5c:c3:97:f4:6c:38:a0:ca:e5:fa:67:83:44:de:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Nov 23 07:21:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b86672a842139be250f0ba6a0d63e7edf196c594
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:78:4f:ff:06:9f:d0:bf:db:9e:d7:f9:21:13:
86:25:da:6f:77:6c:5e:17:c7:72:b9:93:5c:45:6b:
ed:4e:6f:2e:2e:b8:05:6c:03:83:c3:56:e1:f1:da:
e2:b4:7a:96:16:e2:1e:bd:5f:41:ca:68:87:13:32:
5d:65:3d:7b:2e:39:5d:4d:9c:cb:6d:75:34:a6:21:
88:49:27:85:24:cf:23:ea:e6:df:8b:80:24:db:d5:
37:79:3b:6b:94:3e:80:33:ac:70:36:dd:1c:0a:72:
63:9d:59:9a:96:67:44:a3:85:d7:7a:9c:9a:df:c3:
e2:14:84:17:24:69:20:89:58:00:58:8f:5f:d1:45:
6b:f5:4c:f9:21:e7:88:4f:17:78:c4:7e:62:f3:4c:
e9:f5:d6:95:16:e3:58:82:36:96:d6:6c:53:50:13:
f6:87:e6:11:d3:f9:09:9f:e6:a1:21:cd:43:b8:18:
4f:b7:58:07:33:ba:e3:89:52:18:5b:94:49:ff:e8:
50:9a:22:8b:fc:1a:60:8c:2f:4c:a6:ca:ec:fc:f2:
7b:c8:b1:c3:8e:4e:30:2e:3d:19:08:dd:64:73:36:
bb:31:c9:c3:4f:06:5b:3c:36:aa:92:c0:a1:a3:2d:
9b:03:e5:ec:dd:b4:2f:b1:f4:3c:c8:fa:92:50:e4:
aa:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:66:72:A8:42:13:9B:E2:50:F0:BA:6A:0D:63:E7:ED:F1:96:C5:94
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/uGZyqEITm-JQ8LpqDWPn7fGWxZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.236.0/22
Signature Algorithm: sha256WithRSAEncryption
11:f5:d0:74:af:ed:e0:71:f4:e4:a5:ba:12:85:6e:b6:a2:9d:
70:4a:63:ef:5e:5a:3c:32:0f:5b:91:36:57:1d:9e:61:d2:8b:
50:c7:02:21:50:c6:d8:3b:7b:bf:17:10:fd:ea:9b:a6:74:d4:
b6:78:f1:d9:28:47:7c:3a:1f:c7:92:00:8f:c9:06:f9:35:d1:
7a:c1:a0:1e:3c:40:6e:c4:f8:2d:3c:76:7c:bd:d6:37:24:f3:
c2:2e:5f:b0:d3:31:be:7f:e4:63:2d:89:a0:46:73:47:2b:e5:
a2:ad:dd:fa:40:a3:f1:8d:a9:7f:2b:49:ee:09:92:52:1d:5c:
2e:11:7e:50:f2:96:9b:5e:87:11:f3:c4:fb:fa:9a:53:ba:72:
63:96:73:74:6f:a8:8a:db:02:a4:a1:83:cb:0e:77:83:02:ad:
e7:e3:8e:86:0a:b0:bb:47:d2:dc:ef:13:93:bc:96:44:da:33:
96:3f:19:5b:6a:3c:74:bf:e7:f3:07:fc:cf:c2:e4:2d:bd:25:
a8:c1:e1:2e:cf:cb:f0:25:32:9a:c5:05:ef:ab:00:68:37:f2:
f3:91:03:10:d1:d0:a9:4e:6b:4a:16:60:1b:59:66:4e:a9:2e:
f7:b8:21:93:99:d9:5d:87:10:3a:f1:4d:0d:8e:25:6e:38:01:
62:78:50:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:25 2023 by rpki-client on console-ams.rpki-client.org