Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/6ba39c-ef1d-4d48-982b-cf4b900997a0/1/xUHZCkYbYTjnk8v9EGkdboiYl-w.roa
File: xUHZCkYbYTjnk8v9EGkdboiYl-w.roa (raw, json)
Hash identifier: 04GI5oXnDXvsBf7/Aci1FqWu6PEt8B+rnNA4ikier0Y=
Subject key identifier: C5:41:D9:0A:46:1B:61:38:E7:93:CB:FD:10:69:1D:6E:88:98:97:EC
Certificate issuer: /CN=ab71e9b13f5c339a58692eeabe72eaa406bbbd7d
Certificate serial: 0AE3535A
Authority key identifier: AB:71:E9:B1:3F:5C:33:9A:58:69:2E:EA:BE:72:EA:A4:06:BB:BD:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q3HpsT9cM5pYaS7qvnLqpAa7vX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/6ba39c-ef1d-4d48-982b-cf4b900997a0/1/xUHZCkYbYTjnk8v9EGkdboiYl-w.roa
Signing time: Tue 15 Feb 2022 02:14:21 +0000
ROA not before: Tue 15 Feb 2022 02:14:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60707
IP address blocks: 213.142.143.0/24 maxlen: 24
91.151.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182670170 (0xae3535a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab71e9b13f5c339a58692eeabe72eaa406bbbd7d
Validity
Not Before: Feb 15 02:14:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c541d90a461b6138e793cbfd10691d6e889897ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b2:3c:1f:1d:f4:ac:65:cf:15:73:fd:b1:27:
2e:c8:df:3e:5f:3a:80:4a:cc:e5:b0:d0:7b:89:25:
d9:ce:e6:7a:66:d2:2f:e4:e3:b5:7a:ae:d6:a0:a9:
6f:04:ca:d8:e0:a3:b5:fd:38:7e:8c:c5:76:4e:94:
cb:ea:4a:3a:c9:b8:66:e2:ee:f7:78:15:82:0f:b7:
a7:bf:41:61:c5:33:33:4e:6d:7e:89:ec:95:68:f8:
19:a6:b7:3b:55:2f:6f:02:0c:ce:60:45:88:2e:54:
da:be:60:dd:4b:f7:4c:db:c5:c6:ec:9a:2a:87:bc:
f1:e9:f1:79:eb:eb:3c:4f:b1:79:35:ea:2c:b3:e3:
88:59:33:b1:33:20:1c:ae:0f:44:b4:1d:95:bb:07:
ba:b4:7c:61:3a:1b:a9:6d:95:c5:25:4f:0d:6a:2d:
2f:28:c4:d0:2f:6d:8c:05:e2:08:3a:b5:3c:6b:77:
bd:57:9b:8e:a8:a0:a1:6f:02:b1:91:d3:e7:b7:99:
26:00:7e:6e:42:04:34:b4:ca:f0:62:13:de:7b:ed:
8b:06:ac:c7:f1:f9:70:ed:2e:15:8e:67:a8:7c:92:
03:df:a1:7d:6c:3f:a9:11:b6:b2:db:3a:33:16:48:
28:d1:58:7c:01:08:72:ca:8c:2b:ac:c6:61:11:be:
41:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:41:D9:0A:46:1B:61:38:E7:93:CB:FD:10:69:1D:6E:88:98:97:EC
X509v3 Authority Key Identifier:
keyid:AB:71:E9:B1:3F:5C:33:9A:58:69:2E:EA:BE:72:EA:A4:06:BB:BD:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q3HpsT9cM5pYaS7qvnLqpAa7vX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/6ba39c-ef1d-4d48-982b-cf4b900997a0/1/xUHZCkYbYTjnk8v9EGkdboiYl-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/6ba39c-ef1d-4d48-982b-cf4b900997a0/1/q3HpsT9cM5pYaS7qvnLqpAa7vX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.151.83.0/24
213.142.143.0/24
Signature Algorithm: sha256WithRSAEncryption
73:f7:49:cf:2f:e2:b2:50:c6:12:3a:c7:44:96:20:66:04:7d:
b4:64:bf:25:27:c2:3a:e7:ab:9a:24:2e:c2:e5:b3:ae:3e:4f:
9f:32:42:13:39:8b:20:3f:3b:55:1d:51:97:54:38:0d:7b:99:
b7:c0:e6:51:49:62:a2:82:73:f3:7c:78:b3:7a:8b:e8:f3:7a:
83:0f:4a:a3:9e:44:7d:a7:12:e6:9a:28:30:1d:4b:eb:44:8e:
86:3a:d1:75:61:b0:74:11:87:2d:03:5d:92:a5:c3:a3:03:e6:
e9:17:2f:e8:5f:ef:21:e2:c3:8d:dd:d7:02:ca:ea:16:58:a0:
86:62:53:83:be:f1:05:d2:37:4a:69:ff:11:22:df:85:a7:70:
29:4b:07:69:7f:7e:ad:da:1e:3b:64:ef:2d:23:f4:d3:51:89:
3f:06:1d:f4:8f:59:0f:c0:f6:32:3d:64:cc:0e:a4:b1:ed:57:
0f:c3:e7:ea:30:16:13:43:c4:6a:4d:ed:9b:cd:a7:c6:a8:ae:
f2:8c:03:a4:d9:a6:d4:b1:6d:a8:3a:41:49:92:68:8c:a2:f0:
ad:ab:58:45:48:2d:37:32:2d:49:43:3a:a9:1a:85:9d:b6:ad:
5f:0c:fb:9a:2c:0b:e5:48:da:c6:31:41:4e:42:5e:19:af:ee:
c5:90:2c:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:38 2024 by rpki-client on console-ams.rpki-client.org