Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/uPELrMrxH81kpK4raWQQjIlDaVo.roa
File: uPELrMrxH81kpK4raWQQjIlDaVo.roa (raw, json)
Hash identifier: sostj3GQTOWn0vUmcHKxl4lgCyGDgaNhUHHCzMnky0Y=
Subject key identifier: B8:F1:0B:AC:CA:F1:1F:CD:64:A4:AE:2B:69:64:10:8C:89:43:69:5A
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 03C77921
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/uPELrMrxH81kpK4raWQQjIlDaVo.roa
Signing time: Wed 18 May 2022 14:16:17 +0000
ROA not before: Wed 18 May 2022 14:16:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202147
IP address blocks: 91.245.200.0/21 maxlen: 24
88.98.112.0/20 maxlen: 24
185.51.108.0/22 maxlen: 24
188.241.96.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63404321 (0x3c77921)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: May 18 14:16:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8f10baccaf11fcd64a4ae2b6964108c8943695a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:51:35:06:cc:0b:d4:37:a3:14:c8:8e:18:57:
cb:ed:da:89:96:50:cd:53:e5:b7:c0:f1:5a:4f:e1:
51:0c:71:6a:49:ec:8e:fb:67:c8:75:e6:06:9c:05:
3b:d3:8d:a2:2f:b7:9e:fe:11:7a:dd:5a:1a:0e:cc:
41:ad:f2:07:f7:de:16:b2:63:7d:04:a4:23:c5:81:
4f:d8:52:2d:e0:2c:f5:46:c1:a9:55:8c:92:63:79:
07:57:41:04:4a:34:ee:6c:b7:42:79:d4:24:8a:ff:
3f:b4:4a:8e:c8:3e:1a:33:cf:8b:29:a7:bf:f0:e7:
55:14:56:01:14:94:85:b9:5d:79:27:c5:89:b2:62:
c3:95:09:a9:57:d9:64:7e:d6:3d:5e:fa:7a:14:b5:
0e:5c:b7:3f:fd:4f:d6:3e:a2:67:ae:f8:16:2b:12:
a9:e2:62:97:4b:e5:5d:6f:c3:f7:2c:35:32:27:ad:
fb:c7:fb:50:c1:63:f6:e0:1c:3a:77:65:e5:ce:56:
2a:52:74:cb:59:fd:88:ab:34:3a:2b:a2:52:cc:62:
c4:35:d0:70:22:b4:7d:7f:07:00:10:12:8d:13:f2:
2e:db:fc:b4:c8:9a:57:d2:8c:ae:26:39:58:74:be:
6e:76:08:6c:a1:39:2d:93:45:3c:b5:90:7d:0b:1e:
33:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:F1:0B:AC:CA:F1:1F:CD:64:A4:AE:2B:69:64:10:8C:89:43:69:5A
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/uPELrMrxH81kpK4raWQQjIlDaVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.98.112.0/20
91.245.200.0/21
185.51.108.0/22
188.241.96.0/21
Signature Algorithm: sha256WithRSAEncryption
05:75:df:90:2a:0d:fb:37:96:83:0e:9b:8f:8e:7e:d6:07:38:
33:14:b1:d8:a5:88:d0:26:e1:97:8e:83:01:17:6b:95:ca:d8:
11:5a:59:dc:94:0f:c1:62:1a:39:f6:e1:55:f4:4b:2e:90:32:
ab:b3:a9:83:b7:e1:cd:42:d9:6f:cc:f4:33:39:77:bf:25:20:
4d:39:2b:0f:69:48:c0:63:73:9f:73:cf:c5:76:d7:52:ba:12:
e5:9d:87:95:ea:80:83:9f:ad:8c:68:c8:51:5c:d2:9d:ba:3f:
b5:20:a4:fd:69:3f:d3:24:cd:7a:55:40:60:ed:b5:8a:5f:38:
d3:31:7c:25:b6:ac:88:fc:58:a0:34:da:8a:2f:69:36:7a:12:
91:bf:51:e9:03:8c:c9:d7:c2:03:71:b0:ea:83:92:ec:99:4a:
8d:6f:50:5f:82:a6:2b:11:9b:b3:8c:b1:92:78:d4:52:d7:5e:
0a:29:54:75:3e:25:5d:d2:f7:67:2e:81:7c:9d:ad:eb:8d:db:
b7:cf:f0:92:d7:b0:2c:b4:45:85:95:d4:e3:d2:38:62:59:41:
0d:8a:fa:f1:6f:92:05:22:5d:25:1c:3f:6c:65:cd:76:84:0d:
0e:1b:ef:69:67:b8:40:4c:50:fd:d7:0c:c7:22:30:c2:d4:89:
f0:49:b5:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:51 2024 by rpki-client on console-ams.rpki-client.org