Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/ujGCRpT97UEz9qRDvOyq_cgSyzE.roa
File: ujGCRpT97UEz9qRDvOyq_cgSyzE.roa (raw, json)
Hash identifier: XcBYUsGwmC0pk21KW2iN4STLAP1xtt7cVW/vwcsbBlU=
Subject key identifier: BA:31:82:46:94:FD:ED:41:33:F6:A4:43:BC:EC:AA:FD:C8:12:CB:31
Certificate issuer: /CN=75a856785392da27d00bdb27091c5926c3155d89
Certificate serial: 01DCA5
Authority key identifier: 75:A8:56:78:53:92:DA:27:D0:0B:DB:27:09:1C:59:26:C3:15:5D:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dahWeFOS2ifQC9snCRxZJsMVXYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/ujGCRpT97UEz9qRDvOyq_cgSyzE.roa
Signing time: Tue 04 Jan 2022 07:29:00 +0000
ROA not before: Tue 04 Jan 2022 07:29:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 185.199.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122021 (0x1dca5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75a856785392da27d00bdb27091c5926c3155d89
Validity
Not Before: Jan 4 07:29:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba31824694fded4133f6a443bcecaafdc812cb31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:0e:a8:25:09:d4:9e:3f:93:04:ee:08:0c:c2:
05:80:13:26:87:b3:e3:9d:c0:bd:53:8f:26:e2:3e:
0c:f3:8b:c9:b5:76:7f:71:a0:20:c0:a7:e0:92:07:
fe:e7:99:00:ab:b2:35:72:69:f3:2d:e2:3a:55:b3:
33:94:03:8e:f2:33:03:78:a9:d8:49:95:5d:70:b0:
8d:7c:72:b2:5f:4b:91:37:53:c4:02:19:4b:0a:ca:
bf:f3:11:de:eb:db:02:78:95:fd:c4:d3:6d:bb:e0:
33:8a:f8:2b:4f:6e:96:5f:cb:a5:bf:ba:d3:68:02:
4a:53:62:79:f6:ae:9d:99:6f:45:78:49:26:5f:0f:
5c:40:0b:43:66:f9:a4:5b:3e:25:18:e8:71:54:1a:
3a:12:1d:e3:73:a9:9d:c5:30:8e:9a:99:2c:45:51:
ed:db:0c:d9:67:e3:16:f0:27:f6:e3:9e:1d:6f:fe:
e2:2c:35:dd:8d:b6:58:61:bb:80:b5:ff:b2:c7:cb:
4b:22:0b:d3:e6:96:6a:a7:77:5c:86:f8:db:d9:17:
02:f8:cc:ac:48:53:98:1c:69:5e:ff:a4:ad:58:e0:
68:13:ec:09:59:50:54:39:c3:0a:bc:4e:ab:7d:e4:
7b:c9:4c:95:a4:b2:40:31:61:0d:88:ab:11:e2:6a:
b5:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:31:82:46:94:FD:ED:41:33:F6:A4:43:BC:EC:AA:FD:C8:12:CB:31
X509v3 Authority Key Identifier:
keyid:75:A8:56:78:53:92:DA:27:D0:0B:DB:27:09:1C:59:26:C3:15:5D:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dahWeFOS2ifQC9snCRxZJsMVXYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/ujGCRpT97UEz9qRDvOyq_cgSyzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.204.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:7b:0c:0f:05:18:c7:f8:9b:2d:fd:83:a5:39:e3:c0:14:93:
4f:29:59:b7:7b:34:56:90:b1:53:60:77:f1:93:3a:57:e8:29:
39:ab:da:20:a1:08:71:10:31:02:10:52:79:95:de:d6:1e:34:
94:3c:09:c5:65:d6:6a:ae:7d:85:a6:1d:dc:9b:1a:55:94:2b:
54:37:c8:73:74:fa:9d:e3:43:76:9b:32:92:c9:4f:cb:af:fa:
b3:05:f4:3b:67:63:ea:0d:38:ee:a4:73:4d:a3:fd:2e:15:f9:
3b:00:40:1c:44:32:51:8a:7f:34:07:09:68:51:c5:de:15:ac:
18:54:cb:1c:d6:e6:60:b5:69:5e:2c:e4:d5:39:97:6a:23:d3:
9d:8e:e8:df:d6:87:c8:74:ae:6e:1f:fc:ea:3e:0a:c5:27:eb:
7f:0e:24:84:33:10:b2:5d:ab:37:74:da:c3:9a:ef:0e:6b:9f:
ed:6a:93:a5:01:4f:dc:eb:ee:a1:f2:34:01:c6:e2:36:f6:7d:
bd:b0:10:25:52:bf:77:14:22:41:ca:11:ba:79:0a:23:f8:dd:
55:c2:f1:89:fd:31:c4:56:50:59:52:ce:94:90:e3:eb:d1:ff:
15:a1:9f:d3:da:ba:e5:23:66:dd:7d:61:d2:04:8a:0f:e9:9c:
fe:ee:a2:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:37 2023 by rpki-client on console-ams.rpki-client.org