Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8060df-a6f7-4166-a929-a980bed33ab0/1/uqwbGI4XWOUnwqKSS9oB_97oO80.roa
File: uqwbGI4XWOUnwqKSS9oB_97oO80.roa (raw, json)
Hash identifier: 4gc2L5Ueh5sHBHJK6PKiwhtn3CdRDDhl0Qria/jKbZw=
Subject key identifier: BA:AC:1B:18:8E:17:58:E5:27:C2:A2:92:4B:DA:01:FF:DE:E8:3B:CD
Certificate issuer: /CN=dbb653bbd1704c47bada62ab6ce3502307f244b6
Certificate serial: 17D68095
Authority key identifier: DB:B6:53:BB:D1:70:4C:47:BA:DA:62:AB:6C:E3:50:23:07:F2:44:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/27ZTu9FwTEe62mKrbONQIwfyRLY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/8060df-a6f7-4166-a929-a980bed33ab0/1/uqwbGI4XWOUnwqKSS9oB_97oO80.roa
Signing time: Tue 22 Feb 2022 12:50:26 +0000
ROA not before: Tue 22 Feb 2022 12:50:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34785
IP address blocks: 193.186.72.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 399933589 (0x17d68095)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbb653bbd1704c47bada62ab6ce3502307f244b6
Validity
Not Before: Feb 22 12:50:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=baac1b188e1758e527c2a2924bda01ffdee83bcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:24:52:cd:1d:06:d3:df:dc:cc:ab:a9:28:9b:
f4:fb:03:99:c0:80:91:32:14:b1:50:1c:37:a7:eb:
e5:76:89:8b:53:ff:b0:3e:a5:c5:24:b8:70:93:17:
ec:d0:4e:e7:72:e8:1c:2c:46:67:a1:14:a8:52:77:
1d:40:63:0e:72:33:47:8a:74:c0:29:c3:44:12:ca:
40:71:33:4e:a6:08:44:29:a3:e7:95:6d:9c:12:16:
89:9c:6d:de:17:c6:bc:15:34:a4:bf:3f:58:bb:cd:
92:cf:04:0d:25:e2:4f:4a:cc:a4:2f:06:7c:9b:e7:
5e:73:12:e1:de:a4:32:1b:e0:43:e5:9c:45:f9:9b:
c7:9f:a2:36:17:b4:97:70:75:fd:72:73:2d:d1:0c:
4c:48:4f:26:7b:5b:a4:89:ae:ba:75:1a:f2:33:eb:
dd:3c:77:4c:30:2d:e4:4c:d5:b0:8d:cd:e0:11:4a:
65:ef:01:7f:2a:11:95:25:23:4a:f2:b6:84:11:32:
9a:c4:a1:65:ca:a9:9e:c1:b1:22:28:12:e9:ea:c7:
86:7d:da:6b:9f:4a:17:d5:1b:b6:20:cf:69:74:77:
9d:8b:b6:4b:f0:3f:a7:5a:3b:69:b2:b0:b8:f3:d3:
9f:94:6b:60:7c:cc:3f:e4:10:92:52:6e:41:e9:a4:
a1:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:AC:1B:18:8E:17:58:E5:27:C2:A2:92:4B:DA:01:FF:DE:E8:3B:CD
X509v3 Authority Key Identifier:
keyid:DB:B6:53:BB:D1:70:4C:47:BA:DA:62:AB:6C:E3:50:23:07:F2:44:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/27ZTu9FwTEe62mKrbONQIwfyRLY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8060df-a6f7-4166-a929-a980bed33ab0/1/uqwbGI4XWOUnwqKSS9oB_97oO80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8060df-a6f7-4166-a929-a980bed33ab0/1/27ZTu9FwTEe62mKrbONQIwfyRLY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.186.72.0/21
Signature Algorithm: sha256WithRSAEncryption
3d:34:be:ff:13:e8:fd:bb:64:44:09:26:26:62:a2:76:28:d7:
ed:75:a1:ce:8b:75:da:91:f6:4c:f0:2b:85:ce:ba:20:2e:32:
0e:8a:f7:c2:bf:ee:9c:86:e8:0a:38:91:cb:4b:6c:68:0b:25:
40:f6:2e:15:24:03:66:03:cd:c3:6d:68:2d:64:92:f8:bb:d7:
75:45:18:88:d6:cb:ac:4e:86:02:f4:5f:2b:87:25:a4:d6:5b:
06:ca:d2:19:e9:66:70:3c:26:56:e1:06:79:0e:30:bd:b5:da:
14:db:50:ad:94:24:97:be:71:09:b3:27:a1:f1:72:05:52:06:
d1:1b:db:b3:5d:ff:1f:8a:18:fb:1a:90:bb:10:ff:89:ca:c3:
81:e1:1c:fc:70:4c:4c:27:49:0c:94:47:60:ef:d1:9a:27:68:
28:59:49:52:be:e9:a5:e4:8e:b6:e4:25:45:da:04:b0:2e:2c:
ab:f4:27:3b:50:c2:0a:5b:fb:88:85:ce:fd:11:3d:d7:a3:de:
75:65:88:5e:52:94:51:b6:58:2f:62:a6:c7:26:14:d9:86:99:
9b:96:7b:3a:38:1d:a1:72:b2:98:b6:3d:cb:c5:7b:0f:08:88:
a2:99:69:28:e5:6a:f9:1a:82:92:26:1e:61:d6:b8:b0:ba:b4:
bd:2c:30:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:14 2023 by rpki-client on console-ams.rpki-client.org