Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/UODTKpObvzgNxrNkPnB-56E7Upg.roa
File: UODTKpObvzgNxrNkPnB-56E7Upg.roa (raw, json)
Hash identifier: p2YscG87J7fMpjGB3sc4hAvjbDeRJ/fr6s99aOXw8uc=
Subject key identifier: 50:E0:D3:2A:93:9B:BF:38:0D:C6:B3:64:3E:70:7E:E7:A1:3B:52:98
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 0804233B
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/UODTKpObvzgNxrNkPnB-56E7Upg.roa
Signing time: Sat 01 Jan 2022 06:58:26 +0000
ROA not before: Sat 01 Jan 2022 06:58:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62088
IP address blocks: 2a09:7c45::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134488891 (0x804233b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Jan 1 06:58:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50e0d32a939bbf380dc6b3643e707ee7a13b5298
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:68:ca:da:5c:a3:c9:31:a5:0d:b0:39:35:d4:
ad:c2:e4:5f:b1:1c:64:84:b5:51:ec:dd:db:3c:c2:
b8:f3:ab:12:53:a2:f6:e3:df:9c:1d:33:2e:56:a5:
a8:25:60:f4:0c:8c:bc:04:51:6e:13:55:f5:45:8b:
63:76:a0:34:4e:c8:a8:7d:df:98:54:ae:8a:49:03:
30:d8:91:97:1e:e6:90:86:1e:24:81:28:d3:52:4d:
38:14:11:76:24:1c:5b:56:3e:8c:4d:5c:64:97:76:
0f:3d:66:d8:0c:f3:94:48:8f:2c:e6:3d:35:8d:8c:
fb:e6:f9:38:0b:d6:57:2f:64:3a:28:2c:2f:93:73:
ca:55:f5:9b:29:0e:4f:f1:0c:9a:22:c0:0d:ca:6d:
a3:5a:f1:10:a5:06:23:14:fe:ac:70:c7:d2:c5:64:
e0:e6:7a:7d:fe:97:ba:90:3b:1c:3e:21:ea:e9:e3:
61:e7:5c:52:a6:a2:4f:2e:9c:97:97:bf:a4:91:07:
91:6b:4a:56:20:85:35:22:f4:cc:8f:08:f9:e7:8c:
45:b1:93:58:e6:7a:ce:de:00:44:b9:c5:39:0a:bd:
03:0b:e0:de:80:a6:3f:c6:b6:f7:85:24:b6:27:d9:
cd:6f:01:41:b7:e4:6f:d4:84:6c:7f:6d:4e:00:cb:
ad:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:E0:D3:2A:93:9B:BF:38:0D:C6:B3:64:3E:70:7E:E7:A1:3B:52:98
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/UODTKpObvzgNxrNkPnB-56E7Upg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:7c45::/32
Signature Algorithm: sha256WithRSAEncryption
2b:01:5b:b2:82:00:d5:fa:8c:6d:c1:3c:a4:48:ac:1b:c5:ef:
ad:9d:8d:82:a4:b6:93:49:ae:d8:2f:e0:5d:35:2f:da:e6:29:
49:dd:c6:c9:be:04:52:cf:f0:22:7b:49:72:83:de:97:92:6e:
73:b8:38:2e:27:47:23:ae:a3:54:03:85:68:ee:96:c7:34:82:
1b:32:14:70:3d:81:f8:fb:2f:c3:23:0a:cc:75:3d:80:1a:ac:
22:5c:cb:9c:1f:ff:aa:be:6b:e5:07:dd:64:10:90:f9:7b:55:
28:2c:0c:4d:08:5b:fc:fb:bf:79:3a:66:34:71:f4:fd:4f:5b:
8b:f5:9d:7b:2c:1e:b5:da:d6:ab:92:3a:a6:cd:39:a9:e7:be:
06:48:d8:2b:7d:c1:be:79:78:e9:ab:26:2e:08:e3:c5:c2:fc:
00:1c:9f:1c:27:02:c3:b9:f7:02:e6:78:b8:94:e2:b6:0a:07:
8b:6f:ea:57:c0:c3:78:5f:1c:2d:59:da:9b:08:4c:79:9e:fa:
38:7c:cf:1d:1a:c3:44:52:7e:73:64:00:23:21:44:63:6f:c0:
2b:2a:0a:d1:38:58:02:82:a7:ae:51:c4:3e:59:fe:f3:51:73:
f4:58:99:ba:ed:74:bc:4a:31:52:12:c9:62:b5:00:2d:92:73:
2c:f0:d6:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:06 2024 by rpki-client on console-fra.rpki-client.org