Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/204268-6078-4b53-94d2-44fde96b8aec/1/uFYCg_F23xrjdhIipr3Nb4Ly-gs.roa
File: uFYCg_F23xrjdhIipr3Nb4Ly-gs.roa (raw, json)
Hash identifier: tguwp2EHBWc/EWj3ctZkF9+yOWqs0onpInrR8r33toU=
Subject key identifier: B8:56:02:83:F1:76:DF:1A:E3:76:12:22:A6:BD:CD:6F:82:F2:FA:0B
Certificate issuer: /CN=856f0c90073afb8ecde7e83409ceabdb93b41a4e
Certificate serial: 0685C9F6
Authority key identifier: 85:6F:0C:90:07:3A:FB:8E:CD:E7:E8:34:09:CE:AB:DB:93:B4:1A:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hW8MkAc6-47N5-g0Cc6r25O0Gk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/204268-6078-4b53-94d2-44fde96b8aec/1/uFYCg_F23xrjdhIipr3Nb4Ly-gs.roa
Signing time: Sat 01 Jan 2022 08:56:24 +0000
ROA not before: Sat 01 Jan 2022 08:56:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207640
IP address blocks: 195.69.140.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109431286 (0x685c9f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=856f0c90073afb8ecde7e83409ceabdb93b41a4e
Validity
Not Before: Jan 1 08:56:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8560283f176df1ae3761222a6bdcd6f82f2fa0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:36:dc:15:58:c0:5a:61:89:4c:69:5c:51:8d:
91:02:0e:34:f1:89:3a:77:05:07:9c:c6:60:f9:00:
38:9c:c5:82:95:34:53:58:e6:2a:ba:1a:6d:44:ff:
c1:cd:a8:bb:18:15:f8:b8:b2:2c:cd:12:5c:c4:38:
ff:a5:3c:03:ca:0d:38:d0:08:23:75:a7:fc:8a:85:
02:4b:5b:82:5d:d8:6c:61:6a:21:64:52:91:2d:db:
0e:f9:37:82:3c:f4:1d:9f:ba:36:90:42:5c:fc:c3:
aa:4b:ab:d7:25:aa:a3:08:af:c8:4b:19:0b:db:23:
4b:0c:b0:c6:5e:0b:2c:cf:a4:bb:a7:f5:f9:56:72:
14:60:13:68:e9:20:a5:53:70:b0:b5:79:b2:45:a0:
e9:4e:66:94:2f:0b:61:20:a1:d3:c4:6f:b3:28:92:
34:41:4d:09:90:4c:c1:c3:08:ab:18:d2:fe:44:f8:
69:b4:2e:ef:84:4f:c0:bc:56:07:4d:62:17:d1:32:
bc:d6:61:1f:67:d5:79:38:fc:c8:7a:2d:a7:83:b9:
70:f0:34:b8:19:bc:fa:a1:d6:62:10:60:4d:e4:2e:
d3:ac:8e:3c:a3:82:ac:e8:5a:15:48:db:8d:18:fe:
5a:21:0b:70:d1:74:b3:9e:71:ce:8c:b0:cb:dc:49:
28:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:56:02:83:F1:76:DF:1A:E3:76:12:22:A6:BD:CD:6F:82:F2:FA:0B
X509v3 Authority Key Identifier:
keyid:85:6F:0C:90:07:3A:FB:8E:CD:E7:E8:34:09:CE:AB:DB:93:B4:1A:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hW8MkAc6-47N5-g0Cc6r25O0Gk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/204268-6078-4b53-94d2-44fde96b8aec/1/uFYCg_F23xrjdhIipr3Nb4Ly-gs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/204268-6078-4b53-94d2-44fde96b8aec/1/hW8MkAc6-47N5-g0Cc6r25O0Gk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.69.140.0/22
Signature Algorithm: sha256WithRSAEncryption
47:61:9b:a4:6b:e9:6e:04:01:8a:1d:0b:d4:51:d4:6d:92:c1:
bf:14:55:d2:73:47:6d:a8:4c:82:51:e1:12:fb:fd:ae:2f:11:
ed:61:2f:cc:69:26:65:54:39:df:b4:d5:bd:ea:0b:00:97:6a:
e8:c9:a1:88:66:f0:ab:20:9b:2a:6a:a9:a8:4a:aa:6a:92:89:
03:81:df:4e:42:27:9d:44:cb:58:ad:8e:a7:1d:cd:9c:7b:df:
8d:83:6e:ee:0b:45:68:98:f3:7c:87:d3:22:35:49:7f:0a:41:
b0:d3:ed:49:d5:7c:23:c5:d7:70:c2:9a:a7:4f:76:c6:68:02:
48:06:5b:78:24:bf:de:ed:7f:e5:db:ee:b8:2a:9c:88:20:f5:
1b:e5:03:8f:50:30:f2:7f:3e:1f:3d:9d:5d:51:0c:c7:3d:8a:
70:62:53:97:af:17:28:c6:ac:9d:fb:2a:a1:67:8b:b6:98:96:
aa:f1:0d:90:f9:4c:c8:c1:a9:63:97:62:1c:51:12:55:eb:ea:
fa:6d:bc:2b:7f:b8:bd:00:39:22:25:ca:04:79:98:11:34:c7:
96:a7:68:32:ad:c2:6d:9a:24:8e:34:1c:59:6d:ac:08:eb:12:
7f:50:f7:b4:88:cd:35:23:a9:e6:6c:14:b7:0a:0a:f2:af:47:
04:2b:24:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:56 2024 by rpki-client on console-ams.rpki-client.org