Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/b745d8-abc6-477a-a459-ad7f9262a7c2/1/uosiDMtHUJa6ebAvfPHsnQUoxgM.roa
File: uosiDMtHUJa6ebAvfPHsnQUoxgM.roa (raw, json)
Hash identifier: n5GMBKeiURwAmjso7zsCfY9vn/bUNKpsAnKRDFmFjs4=
Subject key identifier: BA:8B:22:0C:CB:47:50:96:BA:79:B0:2F:7C:F1:EC:9D:05:28:C6:03
Certificate issuer: /CN=13d07e805a52c534cc6d33450575ff0239e807ce
Certificate serial: E753
Authority key identifier: 13:D0:7E:80:5A:52:C5:34:CC:6D:33:45:05:75:FF:02:39:E8:07:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E9B-gFpSxTTMbTNFBXX_AjnoB84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/b745d8-abc6-477a-a459-ad7f9262a7c2/1/uosiDMtHUJa6ebAvfPHsnQUoxgM.roa
Signing time: Tue 26 Apr 2022 06:45:38 +0000
ROA not before: Tue 26 Apr 2022 06:45:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50604
IP address blocks: 109.197.80.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59219 (0xe753)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13d07e805a52c534cc6d33450575ff0239e807ce
Validity
Not Before: Apr 26 06:45:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba8b220ccb475096ba79b02f7cf1ec9d0528c603
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:70:a8:07:6d:33:24:e3:e8:10:e3:b5:93:e4:
10:19:03:b5:5e:51:86:ef:01:2d:2d:ba:3f:50:69:
19:f8:c4:3a:ab:fd:e0:13:9d:9e:3c:8f:cb:80:16:
6e:c4:21:90:35:df:37:27:a4:ec:19:59:9d:52:f3:
6c:ef:a2:48:09:ec:34:77:71:d2:c4:12:cb:c4:6f:
cf:4e:06:b7:8e:bc:59:14:61:eb:a1:34:e8:2f:ff:
52:6e:6c:d6:09:38:32:fe:10:ec:04:0e:de:66:a9:
f8:12:ce:4a:31:de:45:84:2d:b1:6a:2a:d3:b5:fb:
63:62:24:dc:fe:2b:96:1a:b8:75:3a:51:39:54:e5:
32:47:2f:db:8c:ec:66:9e:09:75:b5:81:c0:d2:17:
2e:b9:d0:e4:ae:b4:f4:5d:5c:18:32:ec:36:14:5e:
e9:63:79:a8:28:c3:8b:b3:03:d8:fa:db:ae:ee:55:
2e:9e:64:07:0d:62:5a:ae:42:52:e7:86:8d:ba:89:
ca:5e:5b:a0:60:27:57:b5:c8:9e:85:6f:f2:1e:3f:
21:0a:86:ac:56:52:17:a3:11:32:dc:7f:2a:9a:93:
c6:a6:4e:51:5a:c3:01:fd:ea:64:a8:61:50:61:63:
a8:3e:9e:86:66:23:03:51:a8:4a:a4:94:08:6e:4b:
e0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:8B:22:0C:CB:47:50:96:BA:79:B0:2F:7C:F1:EC:9D:05:28:C6:03
X509v3 Authority Key Identifier:
keyid:13:D0:7E:80:5A:52:C5:34:CC:6D:33:45:05:75:FF:02:39:E8:07:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E9B-gFpSxTTMbTNFBXX_AjnoB84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/b745d8-abc6-477a-a459-ad7f9262a7c2/1/uosiDMtHUJa6ebAvfPHsnQUoxgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/b745d8-abc6-477a-a459-ad7f9262a7c2/1/E9B-gFpSxTTMbTNFBXX_AjnoB84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.197.80.0/21
Signature Algorithm: sha256WithRSAEncryption
61:de:5f:4b:fd:aa:3a:d9:c4:b3:aa:c1:e3:2a:10:b9:c9:f2:
c3:63:e8:b4:da:ac:dd:33:87:14:52:a5:98:a9:e5:7a:8b:c1:
9d:ed:6a:a5:54:ad:9c:db:de:ea:5a:32:d1:67:50:c2:05:2e:
91:3c:66:9c:68:ed:27:2b:28:19:7a:b0:e6:76:98:a6:bb:c0:
df:d8:9f:15:70:a6:2d:1a:cd:19:3d:9e:7c:1c:05:5d:41:ec:
8a:e3:ac:ed:d5:f2:e7:a7:b9:e9:7f:02:ae:e1:ee:73:22:b2:
07:a7:34:7a:e5:0f:31:a4:a4:47:09:80:f8:a9:a2:33:62:b8:
88:55:ed:96:a6:90:67:fa:34:16:86:06:47:53:36:81:89:98:
a7:7d:b1:19:0f:73:01:7d:d1:44:40:19:06:b8:b0:62:2a:fc:
68:f6:f7:ee:c5:5e:a9:1e:1f:db:01:0e:ff:aa:7a:79:2b:13:
ad:ff:f1:3c:4b:71:ca:4d:1a:7a:e1:c1:be:33:48:ae:18:5e:
8e:6a:7c:52:5b:45:3f:53:b3:94:53:40:5d:7b:a0:7e:b2:40:
09:8c:c7:e1:8c:c1:7a:d2:de:0b:51:26:74:ac:d5:49:a0:ab:
8c:f9:7f:a0:75:d3:dc:f2:65:81:a9:c2:4c:56:4c:15:4a:8b:
b9:bf:96:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:45 2023 by rpki-client on console-ams.rpki-client.org