Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/689109-1723-4bf1-b63a-dc64ae72578e/1/UWuz5q5iRZJMMr6W64gzRaaIA1Y.roa
File: UWuz5q5iRZJMMr6W64gzRaaIA1Y.roa (raw, json)
Hash identifier: 2U/LUgORxCMAZD4Oudmr+3aP6WDzvaNVfvx8ynnvclo=
Subject key identifier: 51:6B:B3:E6:AE:62:45:92:4C:32:BE:96:EB:88:33:45:A6:88:03:56
Certificate issuer: /CN=e1ba4b2867dad38b73a46918241efc72a21262f7
Certificate serial: 0D075167
Authority key identifier: E1:BA:4B:28:67:DA:D3:8B:73:A4:69:18:24:1E:FC:72:A2:12:62:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4bpLKGfa04tzpGkYJB78cqISYvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/689109-1723-4bf1-b63a-dc64ae72578e/1/UWuz5q5iRZJMMr6W64gzRaaIA1Y.roa
Signing time: Sat 01 Jan 2022 02:53:35 +0000
ROA not before: Sat 01 Jan 2022 02:53:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50226
IP address blocks: 89.16.192.0/19 maxlen: 24
185.228.40.0/22 maxlen: 22
185.56.124.0/22 maxlen: 22
2a00:17e8::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 218583399 (0xd075167)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1ba4b2867dad38b73a46918241efc72a21262f7
Validity
Not Before: Jan 1 02:53:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=516bb3e6ae6245924c32be96eb883345a6880356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f1:0e:ed:3c:85:9f:41:64:c8:85:e1:b8:79:
df:47:ee:e5:f9:d5:64:65:7e:3d:1c:4e:8a:43:1e:
16:0f:ce:29:82:f4:31:a3:dc:05:39:f9:8a:5f:a2:
3a:c0:1b:53:0b:c4:52:b6:de:37:82:93:05:3a:a6:
a7:e6:b9:cc:44:e1:2a:10:3e:11:89:3d:2d:b3:da:
53:3d:bf:c3:9d:d9:93:01:17:98:a4:d9:2d:28:06:
3a:ab:35:10:41:b1:7a:3f:f6:c8:13:ac:96:f4:3f:
e8:df:dc:57:06:91:13:60:f4:bf:1d:9a:d0:e0:08:
ba:4b:f4:9c:ca:58:a1:5a:36:b1:f8:bd:e5:3f:ec:
b5:ac:6a:62:c7:f2:52:b4:32:ce:f7:5e:07:1d:6e:
b4:d6:c8:e8:b5:da:46:24:3a:3e:71:94:53:4b:f6:
fb:98:70:44:86:39:a7:c2:eb:74:00:dd:f4:1b:01:
b9:74:d0:5a:02:9e:6d:09:a8:1b:7f:e7:2f:00:db:
a9:8e:b0:d0:69:44:d9:03:30:3b:83:09:f5:c5:81:
88:05:6a:73:8a:85:3f:f5:53:73:aa:20:0d:6d:94:
21:77:82:18:a6:4d:17:6a:86:27:0f:aa:70:86:68:
2c:a3:8a:10:25:bc:f2:1e:cb:27:07:eb:26:18:f0:
8d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:6B:B3:E6:AE:62:45:92:4C:32:BE:96:EB:88:33:45:A6:88:03:56
X509v3 Authority Key Identifier:
keyid:E1:BA:4B:28:67:DA:D3:8B:73:A4:69:18:24:1E:FC:72:A2:12:62:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4bpLKGfa04tzpGkYJB78cqISYvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/689109-1723-4bf1-b63a-dc64ae72578e/1/UWuz5q5iRZJMMr6W64gzRaaIA1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/689109-1723-4bf1-b63a-dc64ae72578e/1/4bpLKGfa04tzpGkYJB78cqISYvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.16.192.0/19
185.56.124.0/22
185.228.40.0/22
IPv6:
2a00:17e8::/29
Signature Algorithm: sha256WithRSAEncryption
19:61:2a:72:07:b2:37:ef:e4:2e:83:4f:38:49:42:e5:ee:e4:
b2:9c:83:57:5a:7f:a5:1d:fc:b3:d8:3d:4e:f3:3a:d3:57:91:
1d:c5:8d:75:b4:4e:03:96:8e:65:44:2a:e3:df:99:1b:82:88:
f2:5b:57:39:3a:f8:53:d6:b2:09:05:07:16:d5:d9:79:ac:5f:
63:08:c9:02:d6:a4:2c:16:f1:df:95:bf:72:6e:fc:d0:0f:78:
36:b4:05:c4:b9:10:df:24:e3:5f:f7:a7:ca:a2:7f:6e:7f:ed:
a2:67:9d:dc:1f:5a:92:d3:81:e2:d9:11:47:d7:1d:64:d3:31:
0f:db:d8:c8:34:ce:3b:93:25:3b:c1:98:72:c4:3f:aa:f1:25:
66:0d:55:b0:33:10:1b:11:51:10:c9:a3:71:df:c9:2a:3f:cf:
ef:f2:da:ad:e6:95:fb:c0:c2:ce:34:91:d4:e9:e8:f0:ce:82:
31:15:8a:67:34:d9:e1:0d:44:8e:84:28:26:24:96:db:0e:2e:
d3:f3:45:38:15:19:79:c8:b3:fa:6a:95:57:06:39:5e:37:33:
2f:44:29:11:70:80:10:a7:8f:ce:28:8c:0d:7a:b8:7d:c6:2a:
28:fe:2d:71:51:e1:cf:81:76:d7:8f:0f:85:51:63:c5:8b:c3:
84:10:9f:8d
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:35 2024 by rpki-client on console-fra.rpki-client.org