Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/bbbafb-a396-4b91-b4be-3a9bc40edd4c/1/uGBE3d9Qj-zmLLmx0oqT3RHtD0U.roa
File: uGBE3d9Qj-zmLLmx0oqT3RHtD0U.roa (raw, json)
Hash identifier: foxiV3thmUwMSpz5y14bJ6b4Y8XTHQMbB41QQAKV77c=
Subject key identifier: B8:60:44:DD:DF:50:8F:EC:E6:2C:B9:B1:D2:8A:93:DD:11:ED:0F:45
Certificate issuer: /CN=121a56a3e7b5b7acfee88ba1860fab9f02090c7d
Certificate serial: BD7E24
Authority key identifier: 12:1A:56:A3:E7:B5:B7:AC:FE:E8:8B:A1:86:0F:AB:9F:02:09:0C:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EhpWo-e1t6z-6Iuhhg-rnwIJDH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/bbbafb-a396-4b91-b4be-3a9bc40edd4c/1/uGBE3d9Qj-zmLLmx0oqT3RHtD0U.roa
Signing time: Sat 01 Jan 2022 08:59:49 +0000
ROA not before: Sat 01 Jan 2022 08:59:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 217.114.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12418596 (0xbd7e24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=121a56a3e7b5b7acfee88ba1860fab9f02090c7d
Validity
Not Before: Jan 1 08:59:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b86044dddf508fece62cb9b1d28a93dd11ed0f45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d5:3e:dc:d1:c3:c8:57:fd:3b:f3:e0:36:dd:
af:8c:26:50:9d:6c:7f:df:ba:95:f2:1f:fb:27:c6:
a5:d5:a3:f4:b7:3e:7b:27:4e:20:11:43:64:5d:47:
46:9b:da:fb:8f:12:49:9b:f1:1f:2a:22:da:8b:46:
3d:8f:00:78:9b:09:47:2c:1f:23:55:7d:30:2a:f3:
9d:a1:79:ab:65:07:36:c1:1c:04:ea:df:e9:a6:7f:
5f:94:56:a5:25:9f:0a:0b:95:8b:3e:b8:ec:5d:ff:
80:f3:b9:82:e1:e3:ef:6b:31:e5:2c:52:ee:b0:4b:
25:6d:a1:84:ec:9c:6a:3c:ba:51:ca:7c:6b:b9:b2:
5f:b5:50:be:17:d5:88:5f:9c:55:e5:72:83:48:a2:
ba:b7:47:88:b6:25:3a:86:28:51:fa:f7:de:dd:58:
11:9d:f3:63:3a:63:19:77:e4:ad:5f:de:c2:8f:be:
8d:69:4d:5c:47:ed:45:24:1f:4a:04:ca:fe:58:fc:
5f:89:b5:39:cf:cf:ba:4c:28:4b:86:74:1a:f8:56:
ec:67:7a:4a:f6:07:6e:08:52:04:28:c4:e4:45:fd:
a8:3f:44:a0:10:33:4d:c3:98:31:e7:42:98:cf:0e:
79:c1:25:19:f3:32:57:e6:a8:27:27:45:47:22:00:
a9:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:60:44:DD:DF:50:8F:EC:E6:2C:B9:B1:D2:8A:93:DD:11:ED:0F:45
X509v3 Authority Key Identifier:
keyid:12:1A:56:A3:E7:B5:B7:AC:FE:E8:8B:A1:86:0F:AB:9F:02:09:0C:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EhpWo-e1t6z-6Iuhhg-rnwIJDH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/bbbafb-a396-4b91-b4be-3a9bc40edd4c/1/uGBE3d9Qj-zmLLmx0oqT3RHtD0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/bbbafb-a396-4b91-b4be-3a9bc40edd4c/1/EhpWo-e1t6z-6Iuhhg-rnwIJDH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.114.41.0/24
Signature Algorithm: sha256WithRSAEncryption
52:84:28:f2:6a:03:99:c0:92:a0:dd:4e:aa:50:98:40:8c:df:
6a:e8:b5:5f:a7:27:6d:15:96:e1:52:5a:45:90:3a:b9:37:0e:
1d:15:79:3c:fd:9e:f8:37:43:fb:51:4c:2b:27:87:6b:c3:63:
e4:5a:1f:a1:39:6a:68:3f:97:72:40:9d:ae:5e:d6:b6:5c:3a:
a6:48:88:c4:72:20:d2:f9:16:30:8a:a8:6e:14:31:5c:13:fc:
ac:e5:36:4f:43:ca:05:fa:3c:61:42:af:41:a6:54:c2:b4:73:
eb:0d:80:8c:7d:02:52:43:18:cd:a6:4d:8d:ae:51:f1:80:07:
95:e7:50:a8:f8:03:55:aa:21:b1:e4:9d:7e:87:f5:d4:77:af:
f3:8d:2a:af:a8:06:d8:22:d4:4b:bd:ef:3e:84:87:d2:b4:09:
e1:4f:e2:13:f3:b9:ab:18:dd:8d:63:58:20:14:9a:b4:78:38:
5d:6c:11:27:ed:87:27:e3:66:45:c7:dd:3c:18:bc:95:4a:4d:
2c:6f:c3:3f:97:a4:00:a4:c8:4f:99:cd:5d:58:3b:45:7a:86:
a6:14:3c:ad:8e:4a:e3:20:1a:d6:5e:3e:58:c1:3e:cd:15:31:
21:c0:79:12:f5:68:0f:5f:28:2d:a7:9e:c8:f6:bf:40:72:dc:
df:c2:e8:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:47 2023 by rpki-client on console-ams.rpki-client.org