Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/UEXsWvdCD4R_CgXfDFKWWJ7UshE.roa
File: UEXsWvdCD4R_CgXfDFKWWJ7UshE.roa (raw, json)
Hash identifier: xxswJD9IQ8APzR4cRt9NICIyYlHdLCnV7ff8VFxV0Ag=
Subject key identifier: 50:45:EC:5A:F7:42:0F:84:7F:0A:05:DF:0C:52:96:58:9E:D4:B2:11
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 018505A42C7ED3425CF3C65FC1B4B2B609D6
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/UEXsWvdCD4R_CgXfDFKWWJ7UshE.roa
Signing time: Mon 12 Dec 2022 09:22:03 +0000
ROA not before: Mon 12 Dec 2022 09:22:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42891
IP address blocks: 193.201.228.0/22 maxlen: 24
188.162.0.0/16 maxlen: 24
195.16.96.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
91.193.212.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:a4:2c:7e:d3:42:5c:f3:c6:5f:c1:b4:b2:b6:09:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 12 09:22:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5045ec5af7420f847f0a05df0c5296589ed4b211
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:9e:8d:33:30:85:7b:fc:56:ac:f7:56:c2:f4:
fe:de:94:96:d3:3b:4e:b1:3e:87:b3:09:7e:f4:94:
cd:12:3e:58:f5:24:0b:da:d2:83:75:70:f8:fa:50:
eb:0f:99:42:7f:e1:b3:58:d3:8c:ed:ba:92:96:f0:
3d:4c:17:4c:9d:1b:7c:e6:b0:97:fc:d6:f1:4c:34:
a0:a0:62:b7:8c:23:63:2c:fc:23:5e:c0:5c:09:d9:
c0:88:78:68:5f:6b:f4:2e:67:b5:f8:ea:7d:f4:c6:
2e:e3:ea:1f:05:41:0d:cb:78:60:6c:10:e1:4c:49:
3b:23:b4:f6:c6:88:24:fc:d8:a1:cf:45:02:b1:8c:
45:cd:4c:5f:56:c8:d9:3d:ff:c0:75:31:05:da:84:
24:4e:5e:c1:ee:aa:78:ff:08:4e:42:c7:fa:96:9a:
f5:f1:5d:c4:66:aa:93:f9:bb:65:f7:e9:d8:33:ce:
6b:12:bb:71:ed:3e:9b:00:c2:0c:30:d2:09:49:51:
ff:66:07:6e:68:5d:67:55:27:c4:1c:1c:3b:93:58:
18:ff:c8:14:c7:af:50:fa:b8:a3:d0:c8:93:99:06:
89:0a:ff:16:d6:55:d2:ee:e8:53:e4:db:3b:63:e7:
81:14:9c:db:7b:a6:82:94:b9:65:0e:fa:ca:d1:10:
06:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:45:EC:5A:F7:42:0F:84:7F:0A:05:DF:0C:52:96:58:9E:D4:B2:11
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/UEXsWvdCD4R_CgXfDFKWWJ7UshE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.212.0/22
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
Signature Algorithm: sha256WithRSAEncryption
02:f3:75:ab:83:d6:ad:11:bd:d8:b6:53:d5:2b:48:d2:e0:f5:
fb:b7:2c:af:bf:03:9d:95:75:91:d6:db:56:f9:10:b8:ca:57:
98:35:18:bc:ed:a6:02:27:dd:22:b5:7c:2d:ee:1e:94:1b:4c:
71:50:bd:0b:1f:68:27:2b:74:75:f3:f4:5d:09:6d:77:b0:b7:
d7:39:10:75:68:4c:54:9e:50:32:bf:c4:57:d1:79:e8:05:c2:
fb:95:a2:91:98:b4:ef:65:a5:b3:9e:75:34:46:e8:d9:70:fd:
81:81:0e:af:f3:79:a2:2f:0a:e2:f2:95:66:ee:e8:4c:c2:6e:
68:e2:aa:74:34:a6:2c:f4:47:20:2b:7d:a6:97:36:30:9c:51:
98:dc:78:c0:97:cb:36:bc:1b:20:2e:c6:7f:10:52:ce:8b:a2:
78:6c:91:9e:35:b1:08:d7:6b:05:69:2c:90:00:18:e5:a6:50:
fe:2f:ef:41:a0:ac:2a:28:00:f9:a4:30:db:b7:8e:16:2c:1a:
93:88:f7:01:b0:fe:ff:17:ad:f0:15:ac:42:aa:2b:7b:e7:59:
66:27:44:c5:33:8a:77:8e:16:70:da:e8:f7:89:cd:6d:99:63:
4c:aa:99:bd:77:fc:32:01:ef:2d:0d:b0:40:55:77:ab:11:dc:
00:1c:d3:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:25 2024 by rpki-client on console-fra.rpki-client.org