Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/UCljOpSxT6mmWxB94ybVjLei9ts.roa
File: UCljOpSxT6mmWxB94ybVjLei9ts.roa (raw, json)
Hash identifier: Em0YBptXpl6m1cixif/wp/40loipfGgPPecs3B4qaak=
Subject key identifier: 50:29:63:3A:94:B1:4F:A9:A6:5B:10:7D:E3:26:D5:8C:B7:A2:F6:DB
Certificate issuer: /CN=05eb8cbbaaf25a71bf2fcab6e11057ebf91f01e3
Certificate serial: 173DE288
Authority key identifier: 05:EB:8C:BB:AA:F2:5A:71:BF:2F:CA:B6:E1:10:57:EB:F9:1F:01:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BeuMu6ryWnG_L8q24RBX6_kfAeM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/UCljOpSxT6mmWxB94ybVjLei9ts.roa
Signing time: Sat 01 Jan 2022 07:53:07 +0000
ROA not before: Sat 01 Jan 2022 07:53:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3301
IP address blocks: 193.241.244.0/23 maxlen: 23
193.241.252.0/23 maxlen: 24
193.241.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 389931656 (0x173de288)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05eb8cbbaaf25a71bf2fcab6e11057ebf91f01e3
Validity
Not Before: Jan 1 07:53:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5029633a94b14fa9a65b107de326d58cb7a2f6db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d8:10:84:76:91:e6:52:da:94:ff:33:de:3c:
c2:83:92:cf:73:e9:28:4c:f8:57:46:0a:7c:6f:97:
07:57:20:f2:8b:a2:56:b7:4f:f4:b8:be:e5:f6:62:
1d:ac:17:c8:03:c5:50:1c:23:18:d4:c8:11:05:bd:
80:dd:3c:ef:15:0d:32:fc:6a:90:74:5c:cb:b6:79:
91:2e:1b:83:d0:9d:40:a8:5f:41:6d:82:13:2a:74:
83:97:ab:29:8e:90:b5:c9:88:52:16:c1:5a:fb:9c:
72:e5:88:a1:f7:29:42:33:51:3d:35:8b:ab:dc:34:
c1:3e:15:a6:b0:45:aa:e8:a5:14:14:e7:ba:69:0d:
ce:f5:59:93:c5:bb:f4:bd:12:0c:5f:f6:06:df:53:
e8:30:27:37:6b:96:da:3d:56:29:35:35:40:74:a8:
9e:4c:5f:bf:9c:b9:ec:90:88:ab:ce:d1:89:3d:4a:
2f:84:7f:d3:6b:fe:fc:97:c2:3d:51:7e:af:ae:b6:
56:89:a9:13:09:f9:f1:93:fc:72:7c:89:b9:4f:c3:
81:23:16:45:06:c9:e9:c1:17:f0:9f:a1:00:ed:a8:
ae:98:6a:cd:33:51:bd:a3:e9:8a:ab:a0:eb:00:52:
cb:81:b0:4a:1a:a4:56:5b:32:8f:fd:07:ac:76:84:
63:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:29:63:3A:94:B1:4F:A9:A6:5B:10:7D:E3:26:D5:8C:B7:A2:F6:DB
X509v3 Authority Key Identifier:
keyid:05:EB:8C:BB:AA:F2:5A:71:BF:2F:CA:B6:E1:10:57:EB:F9:1F:01:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BeuMu6ryWnG_L8q24RBX6_kfAeM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/UCljOpSxT6mmWxB94ybVjLei9ts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/BeuMu6ryWnG_L8q24RBX6_kfAeM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.241.212.0/24
193.241.244.0/23
193.241.252.0/23
Signature Algorithm: sha256WithRSAEncryption
09:59:2f:e6:46:b5:ee:26:9f:85:d7:42:3c:f7:a3:72:98:12:
ee:16:2a:3c:b3:c4:88:86:44:0a:53:d6:3f:d5:99:5b:09:96:
7f:01:0a:ba:5f:47:a6:a3:e6:14:1a:c5:0f:13:46:37:26:8e:
e7:9a:75:64:df:a5:2b:ce:3d:03:fc:e9:fc:96:70:48:0f:3e:
f0:0b:df:78:e5:5a:d7:17:ad:8a:e9:6e:b0:73:de:f1:f3:db:
d0:0a:46:8c:82:97:c5:73:0d:be:6a:bf:54:42:78:16:2c:95:
fd:3a:be:d5:53:f0:2c:99:1c:8a:89:89:d3:19:4d:b7:aa:31:
5d:a0:ad:5d:6d:16:4b:b8:5f:4d:86:18:7d:9d:3e:01:05:85:
87:c6:96:5b:56:a9:15:14:c2:2d:f8:8a:fe:5f:8a:6a:0c:e8:
e8:c4:22:ed:16:f9:8b:58:e7:f9:03:6d:c6:cc:b2:b7:d3:89:
02:8c:91:ef:8f:43:ff:d0:61:f3:f6:45:52:1e:73:01:1c:6d:
68:2e:fc:57:b8:4c:80:24:b3:15:6e:90:04:45:5e:82:96:64:
75:b6:70:07:00:71:ee:64:42:a1:cd:e0:47:c7:07:22:9f:a2:
ca:c6:54:d6:ac:13:af:bd:f3:c4:38:d0:5a:37:0b:8f:93:f6:
ab:11:a5:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:17 2023 by rpki-client on console-ams.rpki-client.org