Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/066478-b066-4736-ad9f-53f41dfe407f/1/UvPIQEUmJ2uBp6irBM6RgCOohtA.roa
File: UvPIQEUmJ2uBp6irBM6RgCOohtA.roa (raw, json)
Hash identifier: XZ4g8y/WFz1LVAj9DhxfycD5E9hpW2Y8qebL2sr7KaM=
Subject key identifier: 52:F3:C8:40:45:26:27:6B:81:A7:A8:AB:04:CE:91:80:23:A8:86:D0
Certificate issuer: /CN=1ba5167888397ff9caa844f554ff837cfdbf9722
Certificate serial: 05616FF2
Authority key identifier: 1B:A5:16:78:88:39:7F:F9:CA:A8:44:F5:54:FF:83:7C:FD:BF:97:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G6UWeIg5f_nKqET1VP-DfP2_lyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/066478-b066-4736-ad9f-53f41dfe407f/1/UvPIQEUmJ2uBp6irBM6RgCOohtA.roa
Signing time: Sat 01 Jan 2022 13:59:10 +0000
ROA not before: Sat 01 Jan 2022 13:59:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9063
IP address blocks: 185.44.200.0/22 maxlen: 22
2a01:7820::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90271730 (0x5616ff2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ba5167888397ff9caa844f554ff837cfdbf9722
Validity
Not Before: Jan 1 13:59:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52f3c8404526276b81a7a8ab04ce918023a886d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bf:98:8b:12:3f:b8:b4:a1:45:74:3a:2e:a7:
1d:02:d5:91:a9:75:9b:aa:2e:df:35:5f:4d:0b:c3:
1d:fa:48:ed:d4:a8:ee:64:93:c2:eb:af:ee:8b:b6:
5d:cf:65:2b:5b:02:99:83:3d:e7:84:4a:43:e2:f4:
61:c4:03:f1:19:f9:92:d6:3e:1c:7d:49:74:55:e0:
a2:30:a6:c2:79:05:62:2f:27:58:d3:d1:16:78:4b:
50:cf:bc:7b:be:2f:94:d5:9e:f9:bb:2c:b9:bf:94:
d7:b9:69:80:9c:bd:32:ea:0d:94:30:95:f5:4c:23:
00:c9:02:a9:09:01:c5:e9:12:25:3c:0b:a7:50:26:
8d:45:31:03:ee:19:7c:7c:2f:93:5c:ec:e5:bf:1d:
87:41:96:a6:30:26:1f:95:3e:4a:b6:84:cc:f3:50:
10:07:7b:fa:ee:e5:29:81:c1:8e:1d:2e:81:97:59:
75:ae:fe:95:ba:4e:40:48:a2:cc:91:de:53:99:82:
ae:dc:d8:4d:a3:04:94:ca:78:36:59:36:ed:4a:68:
c5:be:a7:bc:cd:4d:f6:50:9c:2e:43:8c:4a:d4:41:
48:44:36:1a:3e:fd:eb:fb:d3:f4:1b:fe:bb:20:fb:
cb:70:4e:3f:f3:74:e1:14:a2:27:01:3b:c7:60:b4:
0f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:F3:C8:40:45:26:27:6B:81:A7:A8:AB:04:CE:91:80:23:A8:86:D0
X509v3 Authority Key Identifier:
keyid:1B:A5:16:78:88:39:7F:F9:CA:A8:44:F5:54:FF:83:7C:FD:BF:97:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G6UWeIg5f_nKqET1VP-DfP2_lyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/066478-b066-4736-ad9f-53f41dfe407f/1/UvPIQEUmJ2uBp6irBM6RgCOohtA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/066478-b066-4736-ad9f-53f41dfe407f/1/G6UWeIg5f_nKqET1VP-DfP2_lyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.200.0/22
IPv6:
2a01:7820::/32
Signature Algorithm: sha256WithRSAEncryption
30:7f:14:89:f4:6d:97:92:71:8e:52:47:57:39:91:57:5b:f0:
a4:da:00:32:15:8d:a8:6f:9a:c1:5f:22:29:d7:b7:1f:10:28:
fe:64:d6:9b:ba:df:05:12:6e:00:2f:38:3d:2b:38:fb:7f:4c:
74:eb:75:34:38:98:87:86:32:48:37:97:56:47:8e:d4:99:c0:
e8:ee:8e:b5:bf:8b:a6:e1:c5:f8:51:0e:e1:5c:a5:69:49:d2:
35:13:9b:45:e0:fe:5e:ca:ce:f3:57:87:b9:47:ad:cf:5b:23:
e1:1b:52:cf:19:a9:55:a4:8f:9a:db:27:5c:0d:b4:f1:96:9a:
b0:ec:9a:02:b6:70:8d:14:40:4d:1a:52:03:3d:14:c8:fe:bc:
6e:1b:e6:9b:21:c7:98:22:b6:52:5d:0b:d5:ba:70:38:b5:9a:
f8:da:f7:0c:c9:fa:25:92:0a:1f:86:2b:9e:80:9a:c0:b0:2e:
da:be:b4:4e:28:d2:88:40:0b:4a:c9:de:fa:03:5a:65:88:77:
b5:81:18:40:b5:89:b8:fe:a1:71:24:7f:a3:36:22:1b:0f:a5:
e4:65:af:cc:38:dd:37:4e:af:aa:b3:9a:19:e1:5e:02:e0:84:
f1:8b:81:98:d8:ed:b5:59:54:8b:d6:57:3e:b3:f0:ff:d8:33:
1c:48:a2:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:42 2023 by rpki-client on console-ams.rpki-client.org