Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/uJmGEKZuAFFXfAkAWIVkOjozM1g.roa
File: uJmGEKZuAFFXfAkAWIVkOjozM1g.roa (raw, json)
Hash identifier: OHoh5Utf1wd1pkrFizG3XiMOz4Qvo9bnLxi7dkCk/P0=
Subject key identifier: B8:99:86:10:A6:6E:00:51:57:7C:09:00:58:85:64:3A:3A:33:33:58
Certificate issuer: /CN=d1fd3436d7a19a7343fa800d87a01af183da318b
Certificate serial: 01825DE9DAE2410FFF58C38450E4408BE824
Authority key identifier: D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/uJmGEKZuAFFXfAkAWIVkOjozM1g.roa
Signing time: Tue 02 Aug 2022 09:36:23 +0000
ROA not before: Tue 02 Aug 2022 09:36:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199412
IP address blocks: 185.13.208.0/22 maxlen: 22
2a03:a540::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5d:e9:da:e2:41:0f:ff:58:c3:84:50:e4:40:8b:e8:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1fd3436d7a19a7343fa800d87a01af183da318b
Validity
Not Before: Aug 2 09:36:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8998610a66e0051577c09005885643a3a333358
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:54:b8:80:a7:0a:24:fd:52:60:53:7e:29:bf:
d0:4f:51:c4:bd:36:3e:ac:67:4c:02:4e:47:dd:19:
9c:3f:48:a8:c1:bd:d9:52:bc:6a:eb:63:07:72:12:
de:65:16:44:79:85:6d:8c:e2:11:29:b6:53:82:5d:
43:d5:44:df:3a:8b:b8:bd:4e:8b:2d:b8:8d:e3:32:
89:d3:15:ee:d9:f4:64:fb:62:4e:df:36:c1:fd:86:
81:33:95:99:bb:e4:44:3b:6d:ca:fe:f3:b0:cf:12:
68:fd:82:31:6c:2f:52:da:56:a8:f6:8f:7a:75:fc:
0a:03:00:2d:40:3b:b4:d1:f9:23:9b:74:dd:49:78:
a5:fe:43:60:cb:8d:10:b2:bb:ae:54:0a:93:da:7e:
d3:74:6a:93:61:5f:4a:88:d3:23:f3:12:40:27:5d:
8a:5a:9d:df:8a:78:58:d4:cc:b7:25:a3:a7:4a:80:
5d:67:40:76:3b:cd:68:61:0f:7a:c5:e1:c3:bd:e9:
ed:05:9d:a9:34:cc:19:20:dc:59:65:2a:08:0e:10:
e0:3e:c0:6e:19:e9:5d:25:9f:fa:a4:47:ce:50:b1:
9e:37:5f:95:64:b0:9d:94:31:e4:e7:5b:b3:cd:96:
e6:b1:80:4d:30:d8:83:56:19:ec:64:92:9f:10:97:
ac:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:99:86:10:A6:6E:00:51:57:7C:09:00:58:85:64:3A:3A:33:33:58
X509v3 Authority Key Identifier:
keyid:D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/uJmGEKZuAFFXfAkAWIVkOjozM1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.208.0/22
IPv6:
2a03:a540::/32
Signature Algorithm: sha256WithRSAEncryption
29:47:40:92:4c:55:72:16:b1:57:d5:58:20:71:65:e3:7b:4e:
0a:83:0f:ae:de:f6:3c:a2:10:e7:01:14:9c:40:3a:65:f7:9e:
19:0a:d9:88:56:98:49:5d:26:cd:ba:7d:4b:32:c6:2c:44:01:
41:e6:5a:f4:f4:d8:76:fa:85:0d:d8:41:f2:05:36:c7:32:5f:
99:fb:a2:a9:07:b7:15:bd:4b:65:4b:72:89:c5:6e:62:ca:1f:
31:f6:51:e0:72:30:86:f7:af:b1:ac:f2:37:ee:52:07:69:d1:
dd:8d:ca:45:f3:dd:ef:4a:aa:0c:d7:c9:18:de:14:5c:f4:22:
df:51:0e:b5:d7:1a:8a:c8:58:13:46:88:b9:56:ad:74:49:37:
10:44:63:3f:e5:ee:15:19:5e:e3:5d:7e:a2:40:d9:94:44:8d:
1a:f7:49:11:fc:62:69:a1:e1:d3:08:7b:47:60:4b:07:ae:d2:
e1:c4:26:12:ab:00:e5:20:40:de:23:ce:c2:d2:82:18:a8:cf:
e9:9e:1f:67:34:89:9a:52:8a:89:3b:6e:e6:c2:89:93:b0:2c:
52:61:33:ff:85:df:b0:bf:90:93:94:14:a4:ae:65:49:48:b3:
cf:89:38:5c:56:ca:94:13:fb:ee:95:d7:2f:7d:c7:7e:cb:05:
00:d0:9a:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:39 2024 by rpki-client on console-fra.rpki-client.org