Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/UzkwayCAWAG67RMIHTJq8UdmNIM.roa
File: UzkwayCAWAG67RMIHTJq8UdmNIM.roa (raw, json)
Hash identifier: pKUOYj1xiVTbGKEM9LRBfkdQ3gPnHTrghRfqI6K2mi8=
Subject key identifier: 53:39:30:6B:20:80:58:01:BA:ED:13:08:1D:32:6A:F1:47:66:34:83
Certificate issuer: /CN=2631166de785a3531bdc8361f1190a8369a7ed6a
Certificate serial: 380C18A4
Authority key identifier: 26:31:16:6D:E7:85:A3:53:1B:DC:83:61:F1:19:0A:83:69:A7:ED:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/UzkwayCAWAG67RMIHTJq8UdmNIM.roa
Signing time: Sat 01 Jan 2022 04:04:07 +0000
ROA not before: Sat 01 Jan 2022 04:04:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206264
IP address blocks: 2a00:1ca8:2c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 940316836 (0x380c18a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2631166de785a3531bdc8361f1190a8369a7ed6a
Validity
Not Before: Jan 1 04:04:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5339306b20805801baed13081d326af147663483
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ee:b2:72:cc:98:a7:5d:91:04:51:c2:44:0f:
bf:6f:62:bd:d5:ce:d8:4b:1c:38:69:e0:54:c4:12:
b2:5c:63:18:f4:a8:09:a6:d1:35:22:44:70:a4:b9:
4b:15:5c:29:b1:5d:4e:5b:44:b2:0a:54:6d:35:73:
23:17:94:6d:38:93:91:49:5d:85:0f:b7:2c:7b:af:
2c:42:91:c3:ca:51:81:26:91:c3:e7:22:7b:37:0c:
85:e8:af:81:af:ae:19:8e:f6:5c:00:c8:b9:e0:66:
2b:fe:89:0f:07:a4:37:69:39:af:d8:67:33:fa:af:
74:9d:91:7f:d9:79:e3:27:3b:82:06:7e:17:a2:1f:
eb:db:e2:37:70:bb:ba:2c:94:b9:7b:9b:ec:a5:1b:
91:a6:08:3c:9f:94:2c:9b:95:f9:dc:5d:84:77:34:
4f:b1:e6:8e:26:ad:0b:57:64:f2:a2:80:c3:7c:70:
46:c3:24:68:d4:ad:4d:9f:aa:23:8c:7d:c1:a8:b3:
dd:a4:d9:08:94:58:94:14:f9:46:09:28:01:3a:86:
7e:73:32:1a:6b:d2:ae:41:eb:59:12:77:b8:ef:ad:
12:c5:84:a4:0f:3c:83:b6:55:f3:91:5d:9a:20:89:
42:ef:18:f8:1b:d2:7d:03:eb:5f:1c:fc:93:ee:b2:
31:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:39:30:6B:20:80:58:01:BA:ED:13:08:1D:32:6A:F1:47:66:34:83
X509v3 Authority Key Identifier:
keyid:26:31:16:6D:E7:85:A3:53:1B:DC:83:61:F1:19:0A:83:69:A7:ED:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/UzkwayCAWAG67RMIHTJq8UdmNIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1ca8:2c::/48
Signature Algorithm: sha256WithRSAEncryption
10:e8:aa:7e:e2:51:1e:b2:5a:06:65:a2:90:b5:b0:23:c1:88:
89:41:dc:d6:a8:2f:e6:30:b9:4f:81:6a:84:85:84:64:02:1b:
a0:23:5b:c3:b0:fe:11:9f:10:eb:cb:32:52:37:f9:52:1c:d5:
49:f6:06:34:3b:3f:5f:95:c5:22:5c:d8:e0:68:b5:92:f8:47:
04:84:64:8f:27:4e:48:f1:30:e6:0d:78:dd:7d:ac:cd:f0:e1:
1f:a2:e3:91:3b:35:47:03:d2:a4:c2:b8:6d:3c:a0:2c:45:a3:
93:41:e8:7c:ee:3e:0b:ee:6f:78:c5:3b:29:6a:7a:a1:66:61:
ac:18:88:39:d2:a1:fd:f1:eb:6b:4a:34:63:ad:04:21:7d:ed:
77:70:a9:f1:69:be:54:db:24:f7:7e:62:2b:8f:3a:f1:9e:b0:
44:57:d4:58:ca:fa:e1:fe:e5:8f:a5:d1:fa:44:e7:1a:b4:57:
34:8b:44:fa:31:8b:85:e4:b9:b1:59:db:4c:22:4a:e0:3c:fd:
47:97:96:31:6d:da:5e:23:6b:b2:3e:44:7c:9b:1f:2e:ac:53:
19:43:70:c4:13:5f:28:78:3a:26:7a:45:4a:3c:90:85:72:45:
ce:e4:92:31:f8:5a:3b:59:ab:01:cc:90:90:39:6e:df:2a:36:
c8:1d:43:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:45:49 2025 by rpki-client