Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/0a50d0-564f-40e0-8589-c9f7d02f90c0/1/uwmP2JE-mYPssq2YcN8dx17cby8.roa
File: uwmP2JE-mYPssq2YcN8dx17cby8.roa (raw, json)
Hash identifier: /FT9z4voukrZSMFQotJLRTf7clIep0hgg9ThOD8f8kQ=
Subject key identifier: BB:09:8F:D8:91:3E:99:83:EC:B2:AD:98:70:DF:1D:C7:5E:DC:6F:2F
Certificate issuer: /CN=fbf2a5a5df4d95ac0115caedad194b62688f2bba
Certificate serial: 02CB21E2
Authority key identifier: FB:F2:A5:A5:DF:4D:95:AC:01:15:CA:ED:AD:19:4B:62:68:8F:2B:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-_Klpd9NlawBFcrtrRlLYmiPK7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/0a50d0-564f-40e0-8589-c9f7d02f90c0/1/uwmP2JE-mYPssq2YcN8dx17cby8.roa
Signing time: Wed 20 Apr 2022 09:28:19 +0000
ROA not before: Wed 20 Apr 2022 09:28:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208603
IP address blocks: 45.90.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46866914 (0x2cb21e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbf2a5a5df4d95ac0115caedad194b62688f2bba
Validity
Not Before: Apr 20 09:28:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb098fd8913e9983ecb2ad9870df1dc75edc6f2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:34:d7:f0:47:1c:ae:36:f1:fe:36:88:22:92:
f6:16:de:e8:43:86:c5:94:73:ce:7b:b4:b4:85:30:
dd:a1:20:48:f5:64:c5:99:d7:7e:5d:35:61:8f:79:
16:72:3e:85:bb:d4:a6:69:31:fc:69:98:3e:f3:09:
e1:a8:fe:1a:e2:2d:88:0a:af:a4:b9:06:5d:e5:fb:
97:34:f6:9e:6b:50:39:ac:70:6c:0e:e0:3d:19:ba:
d0:60:84:05:e7:73:cb:15:3e:cd:63:38:d4:0d:b0:
be:a1:86:67:b0:3e:9d:e9:0e:ac:6d:f8:75:c3:c9:
23:77:76:50:d1:a3:47:9b:ef:2c:37:79:c6:e9:98:
42:19:18:77:7d:a6:46:20:25:6e:e6:36:47:dc:32:
5a:af:ae:c3:00:fd:98:66:72:62:21:49:57:e4:59:
bb:cb:43:17:6b:b5:36:49:d9:1d:80:d2:69:c9:0b:
e5:de:6e:bb:0b:79:92:a2:0e:ac:d5:65:d3:1e:e8:
65:c0:ae:40:4e:65:ab:f3:84:51:77:1f:36:bc:8d:
50:87:a3:3c:05:f0:a7:6f:d2:20:6f:ce:6e:37:0f:
61:91:ea:48:1f:47:2e:92:2f:74:fc:08:e3:50:aa:
7d:ec:c6:59:1d:85:f1:4d:72:16:c7:e3:ba:17:e1:
0d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:09:8F:D8:91:3E:99:83:EC:B2:AD:98:70:DF:1D:C7:5E:DC:6F:2F
X509v3 Authority Key Identifier:
keyid:FB:F2:A5:A5:DF:4D:95:AC:01:15:CA:ED:AD:19:4B:62:68:8F:2B:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-_Klpd9NlawBFcrtrRlLYmiPK7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/0a50d0-564f-40e0-8589-c9f7d02f90c0/1/uwmP2JE-mYPssq2YcN8dx17cby8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/0a50d0-564f-40e0-8589-c9f7d02f90c0/1/1-_Klpd9NlawBFcrtrRlLYmiPK7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.252.0/22
Signature Algorithm: sha256WithRSAEncryption
90:81:23:e6:cd:91:ae:86:0a:6b:d1:9e:9b:73:d6:2a:d2:26:
b1:42:c8:80:d6:80:b0:e3:f9:02:17:4e:1b:ef:0a:31:4b:f3:
8d:f0:35:6e:16:a8:a7:11:53:df:ae:50:e2:ec:a3:55:82:23:
8c:53:e0:cf:2b:db:82:75:d0:5b:cf:2f:f3:cd:61:f7:e1:1f:
e9:77:9e:17:d8:05:33:73:4c:ce:9a:bd:f5:80:b4:cf:f0:17:
40:43:c7:32:58:8a:ae:48:40:fe:3f:db:94:72:a7:04:b7:49:
1c:a7:da:c6:3c:09:5f:97:87:a4:13:9e:c9:65:b7:00:8c:86:
64:8c:db:60:3f:26:6e:9e:d9:e5:86:e7:36:5d:e4:d9:40:77:
11:42:0a:b6:73:6e:ad:d2:21:1d:c3:b0:0b:d4:02:b0:ad:d5:
53:ec:83:d5:54:a1:3b:a7:cc:fb:5b:b9:08:f7:76:25:fd:be:
6c:17:c3:79:25:98:cb:9d:3a:a9:01:fd:f6:3f:23:85:75:1b:
2a:b0:fb:fa:07:ef:2c:ae:77:4f:6b:d0:74:a9:fa:a3:38:c3:
8b:53:62:ca:df:57:08:39:0b:10:7d:dd:fc:d5:15:6d:dd:f3:
8b:97:30:db:46:df:4a:05:d2:e6:80:e2:3f:0d:13:13:98:7b:
28:0a:c3:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:15 2024 by rpki-client on console-ams.rpki-client.org