Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/uol7voty7zLSydAvW6dsFL4CPTU.roa
File: uol7voty7zLSydAvW6dsFL4CPTU.roa (raw, json)
Hash identifier: udmXkpvLUjEPanaWSoI+kqhgMKoV7+jiN+jZBKr/7Uk=
Subject key identifier: BA:89:7B:BE:8B:72:EF:32:D2:C9:D0:2F:5B:A7:6C:14:BE:02:3D:35
Certificate issuer: /CN=c42708df93954aac601aef1835bd5d69245fb02f
Certificate serial: 0182F2D0BDED461AE8696DC5807591501455
Authority key identifier: C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/uol7voty7zLSydAvW6dsFL4CPTU.roa
Signing time: Wed 31 Aug 2022 07:32:22 +0000
ROA not before: Wed 31 Aug 2022 07:32:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24973
IP address blocks: 185.117.248.0/22 maxlen: 22
81.88.32.0/20 maxlen: 20
2001:880::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f2:d0:bd:ed:46:1a:e8:69:6d:c5:80:75:91:50:14:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c42708df93954aac601aef1835bd5d69245fb02f
Validity
Not Before: Aug 31 07:32:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba897bbe8b72ef32d2c9d02f5ba76c14be023d35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:84:6a:d8:9b:cf:3f:26:11:72:a6:ab:74:9c:
1a:ae:0b:ab:ba:27:a1:bf:63:3e:76:f0:da:77:3b:
48:d8:4f:b3:eb:a3:9d:5a:e0:89:8f:8d:03:e1:e8:
1a:e8:42:34:e8:cc:95:4c:9b:f0:15:d2:69:86:99:
1d:6c:95:6b:8e:d7:bf:1d:3c:d3:0a:0f:13:91:fa:
7f:d2:1c:91:03:89:8e:03:70:97:05:a0:c4:98:a5:
b4:bf:39:45:c1:df:1b:bb:26:18:a2:e2:5b:b2:69:
1f:97:ec:51:5a:fd:ea:92:c5:60:e9:e0:dd:c8:9c:
22:43:9d:e3:34:61:6c:be:b9:85:4b:71:86:9b:f0:
6c:43:1a:5f:35:1c:70:65:22:5a:68:1b:58:dd:9c:
9d:7e:21:cc:ca:f1:9e:6d:26:08:c7:69:cd:c9:4e:
90:e2:09:d4:65:1f:47:a4:2a:74:4b:f5:9c:8c:bf:
e3:a6:ae:14:db:8b:94:5d:49:52:ee:3a:15:b4:ba:
69:42:58:e7:a2:90:eb:6d:af:f3:1d:37:ed:a1:7c:
75:ff:ae:7e:25:d9:99:08:f7:90:10:1d:da:85:2e:
94:db:6e:5f:7e:89:d7:4c:70:ec:f4:b8:fb:5e:b8:
cc:c9:5d:e7:59:ce:39:57:9f:d8:a0:82:63:ba:87:
62:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:89:7B:BE:8B:72:EF:32:D2:C9:D0:2F:5B:A7:6C:14:BE:02:3D:35
X509v3 Authority Key Identifier:
keyid:C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/uol7voty7zLSydAvW6dsFL4CPTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xCcI35OVSqxgGu8YNb1daSRfsC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.88.32.0/20
185.117.248.0/22
IPv6:
2001:880::/32
Signature Algorithm: sha256WithRSAEncryption
25:1c:b1:11:56:8e:d5:8e:55:2e:3d:78:ea:1d:6c:e3:2f:f4:
4a:6e:d4:96:7f:23:72:be:95:4f:e3:d3:b9:4f:bb:f8:a4:f1:
f6:88:e1:19:53:1a:b7:83:95:06:28:8c:8c:b8:10:e5:c9:cf:
d5:0f:45:59:19:02:f9:db:e4:ba:b1:c5:06:1e:04:89:01:ae:
ba:75:93:7d:b6:75:a8:e1:5a:15:54:97:a4:96:73:3e:d3:89:
e4:d4:51:58:fc:e5:92:7f:d4:97:c3:fb:3c:0a:6f:88:aa:77:
40:76:59:23:c6:e9:5b:34:91:48:83:36:a8:99:2d:44:36:57:
0a:86:4a:e1:ea:92:13:63:a4:3a:7f:17:6a:a4:51:be:c4:b1:
ca:d2:3c:11:c3:98:8f:7a:98:5d:c9:87:fc:c9:18:24:cf:36:
3c:fa:a6:ed:87:d9:f7:fd:e8:4a:31:99:22:bb:0d:42:2f:2d:
16:37:fe:74:88:71:ed:a9:82:5a:0f:f0:e4:04:ba:86:c5:65:
63:41:7f:88:48:30:6a:49:83:f3:3d:f1:dd:02:e2:9a:c1:58:
07:82:85:15:a4:b4:6a:de:cd:60:6e:c5:f4:73:d4:06:8a:e4:
c9:21:4d:b8:03:d9:ab:f3:54:fa:e1:18:47:ee:99:8b:7b:74:
b2:14:88:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:44 2024 by rpki-client on console-ams.rpki-client.org