Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/12391d-5fb6-4dea-a713-73a452bafb46/1/UMWDsKRHywZf7XiNw-y5JpA7riM.roa
File: UMWDsKRHywZf7XiNw-y5JpA7riM.roa (raw, json)
Hash identifier: +cvzUAc82JedY2ROdqVcjejzxjil9QPvaCbCcYa7mHg=
Subject key identifier: 50:C5:83:B0:A4:47:CB:06:5F:ED:78:8D:C3:EC:B9:26:90:3B:AE:23
Certificate issuer: /CN=101287927ad7b1db479ae5ab92ab87c4a4faf496
Certificate serial: 19BC5AF3
Authority key identifier: 10:12:87:92:7A:D7:B1:DB:47:9A:E5:AB:92:AB:87:C4:A4:FA:F4:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EBKHknrXsdtHmuWrkquHxKT69JY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/12391d-5fb6-4dea-a713-73a452bafb46/1/UMWDsKRHywZf7XiNw-y5JpA7riM.roa
Signing time: Sat 01 Jan 2022 09:54:10 +0000
ROA not before: Sat 01 Jan 2022 09:54:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198949
IP address blocks: 95.176.0.0/17 maxlen: 24
185.147.220.0/22 maxlen: 24
81.14.0.0/17 maxlen: 24
2a00:be80::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 431774451 (0x19bc5af3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=101287927ad7b1db479ae5ab92ab87c4a4faf496
Validity
Not Before: Jan 1 09:54:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50c583b0a447cb065fed788dc3ecb926903bae23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:fe:4d:1a:ae:0c:6d:dc:56:09:b5:d6:06:39:
c2:5c:6f:dc:c1:5b:ae:e9:72:d2:86:7c:52:ce:b3:
96:0e:4f:46:9b:74:26:ef:c4:be:42:11:8b:0f:d2:
21:3f:64:13:f5:fe:34:3f:51:54:c5:63:7c:f9:7b:
cd:2a:ce:2b:dc:4b:a0:c0:b6:df:9d:cf:88:cb:46:
15:4b:49:32:04:0c:2b:aa:09:97:9c:dd:91:1a:1c:
df:8d:f5:1e:d5:3f:8d:cd:52:8e:3d:d7:50:58:88:
a7:5b:17:02:5b:52:82:9f:a1:5e:4a:f2:8d:51:a8:
f9:dc:ee:b7:2c:ea:8a:c3:1f:73:7f:37:e7:8a:fd:
48:9b:21:0b:7d:9b:7c:0b:01:43:c4:de:aa:b4:32:
7c:a8:d8:37:ff:b9:1b:2e:40:99:6c:ad:9e:c1:92:
d7:14:11:e0:60:57:4e:9b:61:32:cf:a2:e1:83:4e:
c5:3f:20:0d:57:e9:b6:49:5c:70:f2:4d:5e:6f:f1:
9a:77:dd:07:d1:4a:3d:75:ad:40:b4:0d:88:06:29:
86:7d:fd:53:cf:f4:80:ee:ad:f5:da:1c:99:9c:f0:
c2:e0:84:d7:d7:0d:a6:06:b2:97:51:cc:78:6b:55:
00:15:74:5a:f2:c0:85:6b:74:63:2b:92:b7:e3:05:
1d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:C5:83:B0:A4:47:CB:06:5F:ED:78:8D:C3:EC:B9:26:90:3B:AE:23
X509v3 Authority Key Identifier:
keyid:10:12:87:92:7A:D7:B1:DB:47:9A:E5:AB:92:AB:87:C4:A4:FA:F4:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EBKHknrXsdtHmuWrkquHxKT69JY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/12391d-5fb6-4dea-a713-73a452bafb46/1/UMWDsKRHywZf7XiNw-y5JpA7riM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/12391d-5fb6-4dea-a713-73a452bafb46/1/EBKHknrXsdtHmuWrkquHxKT69JY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.14.0.0/17
95.176.0.0/17
185.147.220.0/22
IPv6:
2a00:be80::/32
Signature Algorithm: sha256WithRSAEncryption
0f:1b:ba:1e:16:c3:23:d8:cd:85:13:a3:fe:01:64:d0:06:fb:
28:b9:6d:f2:5f:81:fe:c1:9c:37:0d:42:eb:9c:75:43:de:38:
48:d3:75:ad:02:47:94:39:b6:ee:6e:bd:10:6d:7c:3a:c6:9e:
17:34:71:9a:69:b2:3a:f4:41:dd:c7:5f:d9:5a:9b:65:f8:35:
39:26:b5:c9:25:ed:9b:dd:f2:82:e8:88:c0:21:52:58:27:88:
fc:0d:a7:c8:37:e6:1e:ad:5a:90:21:76:ac:7f:24:58:d6:18:
82:42:50:70:1b:ca:09:bc:87:d8:38:cd:c4:d1:2f:aa:c5:8b:
07:8d:c3:62:b0:1f:c3:2b:c6:4c:b0:a2:0a:82:3e:d7:4d:b3:
ce:f4:66:cf:71:2b:c2:2f:c6:2e:f2:c6:48:43:88:31:13:64:
56:0f:b7:4e:b6:d0:42:27:e0:54:b1:3f:d7:ae:d3:cd:64:5e:
c4:e7:8c:43:03:3b:7d:30:c2:ed:50:a9:06:29:7d:08:64:b6:
9c:f0:1a:87:dd:50:11:6f:90:65:fe:e9:94:7b:50:ff:43:d8:
dc:a7:72:87:51:8c:d9:c6:1c:3d:fb:19:85:2a:9e:c3:36:08:
7b:d2:c0:0e:28:a2:bb:78:06:c6:d4:6b:12:53:51:83:73:c6:
76:b3:09:d9
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:01 2024 by rpki-client on console-ams.rpki-client.org