Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/1b138e-1e19-4c7d-8ca4-b87f91c29b9e/1/uqE_LrGVJd-C7UxmsrUDBeh-o10.roa
File: uqE_LrGVJd-C7UxmsrUDBeh-o10.roa (raw, json)
Hash identifier: idjdovmtg+CCE2HuAwhA52TZ1HOIDOvijR3LJc38EIo=
Subject key identifier: BA:A1:3F:2E:B1:95:25:DF:82:ED:4C:66:B2:B5:03:05:E8:7E:A3:5D
Certificate issuer: /CN=50bb4c781a5b393ff07fb405e528179f5ab87726
Certificate serial: 01856D0A9533C3088856158EB835B0DFDE03
Authority key identifier: 50:BB:4C:78:1A:5B:39:3F:F0:7F:B4:05:E5:28:17:9F:5A:B8:77:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULtMeBpbOT_wf7QF5SgXn1q4dyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/1b138e-1e19-4c7d-8ca4-b87f91c29b9e/1/uqE_LrGVJd-C7UxmsrUDBeh-o10.roa
Signing time: Sun 01 Jan 2023 11:14:48 +0000
ROA not before: Sun 01 Jan 2023 11:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1103
IP address blocks: 129.125.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:95:33:c3:08:88:56:15:8e:b8:35:b0:df:de:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50bb4c781a5b393ff07fb405e528179f5ab87726
Validity
Not Before: Jan 1 11:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=baa13f2eb19525df82ed4c66b2b50305e87ea35d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f5:e0:a5:2d:3a:bd:f5:ad:53:2a:82:8a:65:
ca:36:c4:d8:ca:e9:95:6b:4e:fe:03:9a:e0:ef:13:
81:45:d8:13:00:eb:f5:98:93:3a:a5:c8:ba:fb:52:
c9:a9:c5:f7:f2:fa:42:c2:70:54:6a:58:dd:a1:2d:
76:57:6b:c6:41:5d:ec:f0:91:82:c0:e3:78:98:06:
7f:71:d9:9f:9b:7f:2c:af:f8:9b:97:56:01:17:0c:
8b:d9:3c:3d:0e:a2:a8:ab:5e:75:5d:3b:9f:04:0f:
2b:b0:bb:45:4b:fe:08:3f:86:05:c6:3d:b9:d7:55:
86:b2:e6:7b:f8:d0:8e:fe:95:f7:09:3a:91:e7:20:
0e:be:4c:d3:2e:f0:e6:9d:69:30:f5:d5:44:de:06:
74:c7:4f:f6:09:9e:23:90:fb:5b:50:a6:24:cd:8a:
65:e1:35:1f:3d:25:07:44:c7:07:4a:4b:61:7e:c7:
90:93:93:f2:b7:c5:f5:dd:64:3e:c4:b2:4a:e4:09:
20:44:d6:9a:f0:b6:83:be:b7:83:17:3f:49:76:03:
ab:40:9e:7a:8a:0d:d1:5f:b1:96:af:7a:9f:73:d4:
cb:1e:d0:49:9b:46:61:66:6c:84:30:e5:84:5f:6b:
5a:33:58:f4:07:8b:77:3c:4f:94:98:11:ee:41:7b:
26:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:A1:3F:2E:B1:95:25:DF:82:ED:4C:66:B2:B5:03:05:E8:7E:A3:5D
X509v3 Authority Key Identifier:
keyid:50:BB:4C:78:1A:5B:39:3F:F0:7F:B4:05:E5:28:17:9F:5A:B8:77:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULtMeBpbOT_wf7QF5SgXn1q4dyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b138e-1e19-4c7d-8ca4-b87f91c29b9e/1/uqE_LrGVJd-C7UxmsrUDBeh-o10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b138e-1e19-4c7d-8ca4-b87f91c29b9e/1/ULtMeBpbOT_wf7QF5SgXn1q4dyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
129.125.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2c:18:35:4b:e5:87:1d:66:dc:4b:a7:ed:79:24:33:7e:00:1d:
46:2d:de:91:e4:e8:cf:d6:eb:11:8b:08:7c:2d:77:7f:88:3b:
00:5c:81:9d:08:d7:11:4c:2a:fe:27:a7:63:9a:a0:ca:d6:d9:
14:41:b4:7e:64:b8:a0:5a:6d:0c:c9:6d:cd:13:c4:0d:92:88:
fc:df:de:e2:07:71:6b:be:85:d5:ee:c1:48:84:6d:37:58:76:
1a:74:af:2f:7a:e1:33:c5:0e:7f:a8:42:90:4d:74:c4:92:65:
e6:70:6c:c5:c8:29:15:d0:26:af:74:7a:ed:aa:77:90:ed:f1:
1f:9f:9f:36:10:ec:af:6a:7b:1f:8a:47:a7:db:b3:ce:5c:00:
c1:bb:16:54:e4:ef:a8:c9:6f:92:45:34:4b:9d:40:c5:fe:41:
1a:29:d7:70:a2:f1:fa:c3:39:bc:8d:5f:6e:23:23:74:b3:68:
2c:06:cd:02:80:d1:90:8d:48:81:2d:12:24:e4:e5:58:20:e2:
89:c2:da:02:1e:e5:74:dc:8a:7f:cf:c8:15:11:87:ab:ee:a7:
67:48:0c:f7:89:83:92:9c:c5:a3:a2:a9:8f:65:13:c7:d9:e5:
5a:eb:1e:ac:fe:6d:0b:d5:db:53:d9:74:38:28:a9:7b:e2:49:
7e:5b:4f:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:45 2025 by rpki-client