Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/UymUb2o6oHdpU3-1A4K9OJeodVg.roa
File: UymUb2o6oHdpU3-1A4K9OJeodVg.roa (raw, json)
Hash identifier: gd/E0ifYn0vq+6gGcLGmP4lALqNvHi3XXAK+JchMCrE=
Subject key identifier: 53:29:94:6F:6A:3A:A0:77:69:53:7F:B5:03:82:BD:38:97:A8:75:58
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 16CFA730
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/UymUb2o6oHdpU3-1A4K9OJeodVg.roa
Signing time: Sat 01 Jan 2022 12:01:29 +0000
ROA not before: Sat 01 Jan 2022 12:01:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34597
IP address blocks: 37.230.246.0/24 maxlen: 24
141.101.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 382707504 (0x16cfa730)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 12:01:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5329946f6a3aa07769537fb50382bd3897a87558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c5:98:2e:d6:70:68:5d:b0:ee:50:39:9b:1e:
37:da:97:b9:c9:1e:34:07:e1:2f:4d:34:9b:79:65:
ed:ed:b7:4b:b3:14:a5:70:4f:9d:76:1c:9c:63:52:
09:e2:b6:f2:dd:25:c9:76:5c:e5:71:ef:30:2f:4f:
9c:fc:ac:eb:f7:92:53:3c:61:84:3e:4c:45:db:2d:
a9:09:6c:a8:22:3e:59:8b:1c:10:43:c2:43:bb:e0:
ba:63:7a:a8:42:76:57:59:73:0b:81:b5:c0:a3:23:
ce:e9:57:96:5b:9f:e9:17:66:b4:1a:98:3a:cf:c7:
ea:7d:d4:5a:5e:2b:19:45:d0:7c:b2:cb:fa:7c:cf:
14:8b:1b:2a:ba:12:85:51:83:c5:82:c0:8a:cb:3a:
f1:89:e6:e7:8c:93:82:85:21:57:97:5c:7b:7f:51:
57:51:79:80:d1:dc:5c:e6:dc:b2:58:06:8e:b3:dc:
a9:84:83:12:4d:64:37:62:81:83:7d:3d:83:dd:e1:
2a:e1:f8:b1:ff:49:68:cd:21:da:f5:20:04:a2:c3:
97:f1:47:31:11:5b:57:1a:0e:41:a6:9e:db:ee:6a:
48:01:35:5b:4e:f6:ad:1d:3e:57:f1:0e:82:c5:22:
11:e6:29:4a:1f:53:3a:c7:5d:51:ae:65:08:7c:f1:
d8:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:29:94:6F:6A:3A:A0:77:69:53:7F:B5:03:82:BD:38:97:A8:75:58
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/UymUb2o6oHdpU3-1A4K9OJeodVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.230.246.0/24
141.101.243.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:c3:91:b6:fa:57:6c:40:68:ce:17:bc:07:b5:74:e0:71:a3:
4b:5e:20:0a:f3:b4:3d:a1:b8:58:51:5e:c9:60:a3:f5:93:5c:
7a:85:bd:e1:9d:f0:d3:be:df:f6:6e:78:36:2e:55:7a:04:b2:
6b:8e:70:15:09:bc:af:8c:3f:93:37:0b:27:10:b9:64:62:3d:
2b:d6:20:59:cb:2c:ec:da:64:75:25:ed:82:ea:71:fd:d2:48:
31:b8:63:bc:f5:f9:a3:76:7c:4f:57:0b:4a:59:35:25:0d:d6:
72:c6:10:53:81:51:54:42:8a:3c:a2:35:68:9a:e6:10:df:ec:
3f:2c:fe:a5:5a:b9:da:77:3b:6a:c9:19:16:b7:73:10:64:06:
d7:4a:d2:e0:ee:e7:ce:4d:b1:0c:fb:4d:b2:71:0d:15:7f:0e:
f3:f8:81:99:01:ed:54:fb:13:23:26:82:43:2a:ab:0d:1e:3b:
36:22:51:81:ba:c9:9d:43:dc:0b:11:51:6b:38:d0:15:a8:b5:
27:83:b1:c6:7e:33:52:0d:77:58:34:c9:02:87:a4:b2:f0:26:
04:3a:81:2a:d7:bf:1b:b7:79:cb:b0:da:30:35:84:47:a1:3e:
51:35:c6:92:fc:ce:1a:6c:2d:a7:07:f0:98:b2:31:da:f9:da:
09:41:b7:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:55 2023 by rpki-client on console-fra.rpki-client.org