Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/cd7bdf-2f6c-4402-95d7-c3d18b275465/1/UbZEFx12R1T9Ii2BMuLPpFdpUDI.roa
File: UbZEFx12R1T9Ii2BMuLPpFdpUDI.roa (raw, json)
Hash identifier: jEXjq58rhrqpc5lEXakDvtflzxqcgxTCizPrLXK0IkU=
Subject key identifier: 51:B6:44:17:1D:76:47:54:FD:22:2D:81:32:E2:CF:A4:57:69:50:32
Certificate issuer: /CN=9a7582c014f26d23b6ef9c2e82f48570c0b67868
Certificate serial: 8B2D14
Authority key identifier: 9A:75:82:C0:14:F2:6D:23:B6:EF:9C:2E:82:F4:85:70:C0:B6:78:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mnWCwBTybSO275wugvSFcMC2eGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/cd7bdf-2f6c-4402-95d7-c3d18b275465/1/UbZEFx12R1T9Ii2BMuLPpFdpUDI.roa
Signing time: Sat 01 Jan 2022 01:54:45 +0000
ROA not before: Sat 01 Jan 2022 01:54:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 193.3.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9121044 (0x8b2d14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a7582c014f26d23b6ef9c2e82f48570c0b67868
Validity
Not Before: Jan 1 01:54:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51b644171d764754fd222d8132e2cfa457695032
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:29:3e:53:49:e7:48:d9:6a:4b:a3:b2:63:cb:
67:63:75:84:24:f6:ba:6b:0d:3a:b2:c2:fe:d0:7f:
06:c1:c1:a0:8b:4b:9f:05:24:f9:f5:28:a8:ed:16:
79:84:dc:77:ca:fe:e0:26:cf:e2:f5:de:11:30:89:
d7:98:56:b9:a8:e0:60:db:d8:99:75:9c:01:f6:f2:
18:68:8c:8f:2c:38:29:48:87:5c:df:b5:48:02:ae:
a2:9f:f0:1a:70:d5:70:71:de:5c:7d:3c:de:57:ef:
e7:21:df:2b:f7:81:8b:5f:be:4f:24:84:54:14:88:
8a:b6:ad:37:35:f0:f8:f3:17:d5:2c:d7:dc:6f:12:
5f:9b:43:0d:22:f1:b4:57:b3:02:c8:4d:72:28:35:
07:df:0c:fe:a8:d4:40:fb:4f:f4:e1:5d:a8:60:af:
8d:c1:4c:7f:73:87:0a:cb:eb:22:b6:ed:c9:20:dc:
a8:ed:5f:94:ec:82:b8:8d:13:08:ac:68:eb:5d:8b:
5f:95:34:ae:e1:aa:70:cb:98:3d:21:27:11:3d:e4:
b5:c9:59:81:08:e5:b0:31:60:34:77:3a:34:94:23:
13:ef:3a:4d:ab:01:fe:7e:b1:85:78:d2:ac:98:76:
63:43:c9:4e:9e:42:9c:f8:70:2e:f4:b8:ee:bb:ad:
97:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:B6:44:17:1D:76:47:54:FD:22:2D:81:32:E2:CF:A4:57:69:50:32
X509v3 Authority Key Identifier:
keyid:9A:75:82:C0:14:F2:6D:23:B6:EF:9C:2E:82:F4:85:70:C0:B6:78:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mnWCwBTybSO275wugvSFcMC2eGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cd7bdf-2f6c-4402-95d7-c3d18b275465/1/UbZEFx12R1T9Ii2BMuLPpFdpUDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cd7bdf-2f6c-4402-95d7-c3d18b275465/1/mnWCwBTybSO275wugvSFcMC2eGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.171.0/24
Signature Algorithm: sha256WithRSAEncryption
70:3c:5f:80:53:ee:43:04:27:29:ee:8e:cd:e7:a5:7b:00:b6:
0d:37:6e:d1:0b:38:33:47:6f:85:ca:14:4e:ac:c3:f7:ac:66:
bd:0c:e4:f8:2b:39:be:99:e1:77:ef:54:d7:cf:e9:40:a7:fd:
d0:42:9a:20:d9:5e:fd:67:58:be:b3:50:34:e3:c5:d2:09:de:
19:84:ee:83:9c:7f:d6:f5:b2:e4:ba:4d:fb:f0:71:d7:81:c8:
cf:45:64:35:c6:55:ec:b5:3b:04:a8:18:f1:09:6b:3f:9a:e2:
d7:70:89:79:08:1d:ea:01:8c:a2:62:4b:62:c8:e4:99:27:42:
b8:da:f0:d0:f5:47:cd:45:cb:cd:c4:22:ca:5a:75:37:49:46:
4a:21:26:92:20:fb:5d:d2:02:d9:a1:ac:ab:73:68:5e:ee:7d:
6f:57:88:04:47:24:f9:f0:95:02:11:a0:5b:7d:4b:62:b5:32:
93:88:c4:7c:a1:5d:e7:e7:1c:cc:e2:7c:c1:34:03:5a:2d:f3:
c0:1d:5f:eb:64:24:71:58:82:01:eb:27:40:26:d0:31:b0:25:
cf:ca:f2:67:4b:29:23:78:eb:de:e6:52:9f:be:db:27:15:05:
ac:55:dd:d1:a0:e6:e3:55:66:a0:21:c1:8a:82:5e:89:0b:eb:
4b:b0:36:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:43 2023 by rpki-client on console-ams.rpki-client.org