Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/0047b7-f1e6-41a8-a8d2-4801198e75ca/1/UJr9Tcy8_LkJbrok3ADQLglLnfw.roa
File: UJr9Tcy8_LkJbrok3ADQLglLnfw.roa (raw, json)
Hash identifier: +x8+Og1yfRCbg87B6Wf04FspnsC8sdO2+iRetp8PloE=
Subject key identifier: 50:9A:FD:4D:CC:BC:FC:B9:09:6E:BA:24:DC:00:D0:2E:09:4B:9D:FC
Certificate issuer: /CN=beed14bf4e46b13579583f97ff85910d103a53f8
Certificate serial: 093A7B93
Authority key identifier: BE:ED:14:BF:4E:46:B1:35:79:58:3F:97:FF:85:91:0D:10:3A:53:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vu0Uv05GsTV5WD-X_4WRDRA6U_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/0047b7-f1e6-41a8-a8d2-4801198e75ca/1/UJr9Tcy8_LkJbrok3ADQLglLnfw.roa
Signing time: Sat 01 Jan 2022 16:07:42 +0000
ROA not before: Sat 01 Jan 2022 16:07:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137
IP address blocks: 192.55.101.0/24 maxlen: 24
192.132.34.0/24 maxlen: 24
192.135.165.0/24 maxlen: 24
192.133.28.0/24 maxlen: 24
143.225.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154827667 (0x93a7b93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beed14bf4e46b13579583f97ff85910d103a53f8
Validity
Not Before: Jan 1 16:07:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=509afd4dccbcfcb9096eba24dc00d02e094b9dfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:34:5b:06:81:0c:ae:94:ef:50:c7:4f:f4:3f:
7a:8b:53:ff:14:38:6d:36:f4:40:02:2c:96:c8:6c:
bb:18:c6:39:b3:cb:a9:f9:bb:e7:be:1c:92:e0:0d:
f8:7e:53:83:f5:22:1b:93:0c:78:33:0d:f1:ee:90:
e1:0c:9f:11:99:3a:e9:86:2d:c3:9d:97:9e:58:fb:
78:c8:4f:8b:e9:06:4d:2f:12:29:c9:3a:1a:02:30:
e3:12:9e:90:e8:a9:0b:c2:b0:dd:7b:4a:97:40:74:
9d:f5:ca:fc:e0:99:d7:32:b9:ea:db:8b:16:b5:1c:
db:e7:de:66:e5:db:4f:52:f5:f1:a4:55:60:4a:d7:
62:27:0d:7f:01:7b:81:48:5f:c9:2f:0f:4e:a5:91:
ad:4e:7d:47:33:78:b5:48:f4:8d:e2:52:7a:90:2d:
d8:b7:fb:77:38:e8:ee:98:62:93:7c:f1:c1:c1:9d:
13:62:07:0d:f3:18:2a:50:ee:c3:b8:05:14:d0:b8:
49:3e:80:43:51:ea:94:ac:0e:4b:09:9b:38:c8:6c:
2e:11:17:48:5d:5a:02:43:0e:2b:76:97:e8:d4:bc:
25:cc:e2:f2:fa:fc:45:5e:84:11:03:76:59:e6:99:
45:ef:b4:11:8f:6f:53:73:3c:e2:58:52:a2:43:5b:
51:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:9A:FD:4D:CC:BC:FC:B9:09:6E:BA:24:DC:00:D0:2E:09:4B:9D:FC
X509v3 Authority Key Identifier:
keyid:BE:ED:14:BF:4E:46:B1:35:79:58:3F:97:FF:85:91:0D:10:3A:53:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vu0Uv05GsTV5WD-X_4WRDRA6U_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/0047b7-f1e6-41a8-a8d2-4801198e75ca/1/UJr9Tcy8_LkJbrok3ADQLglLnfw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/0047b7-f1e6-41a8-a8d2-4801198e75ca/1/vu0Uv05GsTV5WD-X_4WRDRA6U_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.225.0.0/16
192.55.101.0/24
192.132.34.0/24
192.133.28.0/24
192.135.165.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:fd:af:fb:f0:d3:fe:d1:bd:8b:02:7c:13:5d:d4:ea:67:17:
9c:8c:72:81:39:7a:ce:97:21:55:bf:43:ac:bd:6b:3d:e2:e5:
7a:95:bc:fd:89:17:df:61:23:94:c0:fe:5b:f9:3f:1a:76:84:
c1:7d:7e:b6:d1:b9:e4:11:e2:26:4c:ed:15:47:ca:a3:fd:d8:
8c:a6:e6:4e:e0:9d:6e:02:ec:b1:cb:c8:9e:57:46:d6:4f:8f:
5e:6e:2a:06:bd:d5:47:ec:53:41:29:45:e8:72:c6:68:3c:42:
ed:b1:6f:10:d1:07:06:60:14:4c:6a:9a:e6:33:fb:cb:9c:2f:
b2:3e:65:f0:8a:1c:d1:e8:31:43:a7:7d:fd:50:19:1a:d4:86:
c4:37:48:24:65:be:6a:2a:e0:bd:cd:34:f6:c3:d3:a4:38:c1:
68:ee:3e:72:b3:28:11:b2:ee:d5:9c:fe:f3:95:14:40:4d:ec:
6e:8f:10:8e:48:c6:38:47:fd:e8:0f:fb:72:b6:e1:8b:10:73:
47:a2:54:b1:9f:bb:5f:74:23:13:ea:fe:ea:a6:4b:c5:94:70:
5c:f7:d6:da:2a:6a:88:16:88:ae:26:5a:e7:17:39:be:81:28:
af:2c:fa:49:a4:1b:9a:c1:7f:d0:32:5d:83:9a:79:a3:25:b7:
18:5f:ff:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:54 2024 by rpki-client on console-ams.rpki-client.org