Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/ad1c69-ce56-4eda-87ea-987719ee6a0c/1/UEklcle0ihH6neD_nHbErYmrRHY.roa
File: UEklcle0ihH6neD_nHbErYmrRHY.roa (raw, json)
Hash identifier: Xyj3vFG2mJxlcu6+6jm1BiJJl3e9ErnJkID0UrPi6GQ=
Subject key identifier: 50:49:25:72:57:B4:8A:11:FA:9D:E0:FF:9C:76:C4:AD:89:AB:44:76
Certificate issuer: /CN=a49b83f5bde1a1dc93de69476837e9e3a37797af
Certificate serial: 0F68A535
Authority key identifier: A4:9B:83:F5:BD:E1:A1:DC:93:DE:69:47:68:37:E9:E3:A3:77:97:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pJuD9b3hodyT3mlHaDfp46N3l68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/ad1c69-ce56-4eda-87ea-987719ee6a0c/1/UEklcle0ihH6neD_nHbErYmrRHY.roa
Signing time: Sat 01 Jan 2022 07:58:20 +0000
ROA not before: Sat 01 Jan 2022 07:58:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 553
IP address blocks: 134.60.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 258516277 (0xf68a535)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a49b83f5bde1a1dc93de69476837e9e3a37797af
Validity
Not Before: Jan 1 07:58:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5049257257b48a11fa9de0ff9c76c4ad89ab4476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:52:7f:97:fe:d4:4b:76:03:49:ee:6c:0b:58:
95:dd:83:24:15:b7:e6:2a:e2:5f:5f:bd:ad:dc:91:
b9:87:53:bc:69:05:a0:03:01:a7:dc:fb:94:ce:da:
d5:7e:a6:21:06:fa:50:14:44:6f:54:1f:12:3f:9a:
f4:c2:6a:e3:9c:56:ca:60:66:b8:2f:89:6b:ba:e4:
4c:7c:bf:3d:85:3f:94:02:69:87:69:e9:75:42:a0:
08:eb:63:fb:32:24:9c:46:6b:ff:4c:1a:68:9c:45:
2c:f3:60:25:6a:81:49:cc:f1:ee:a2:91:f4:13:91:
a6:08:80:7d:74:7e:60:ea:0a:5a:cf:45:2f:16:06:
40:02:ab:a3:8f:2b:fd:ab:34:05:fb:2e:f0:50:7f:
47:55:49:42:b7:65:82:96:79:6d:b1:24:b7:54:d2:
b0:8f:57:a1:2d:b0:01:28:9c:eb:f7:be:39:dc:dc:
de:6d:a2:80:0c:bb:f2:28:11:4a:cb:e2:92:a0:12:
9f:91:72:9f:35:d1:e3:db:17:f6:58:75:c1:b7:2d:
db:5f:39:61:3a:6f:6f:49:77:e7:8c:fc:e8:8d:7e:
dc:6a:13:ae:d1:d1:c8:28:94:7d:40:7b:0f:d4:05:
79:60:3a:45:c4:b4:00:ad:cb:b6:59:1b:06:18:d2:
4f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:49:25:72:57:B4:8A:11:FA:9D:E0:FF:9C:76:C4:AD:89:AB:44:76
X509v3 Authority Key Identifier:
keyid:A4:9B:83:F5:BD:E1:A1:DC:93:DE:69:47:68:37:E9:E3:A3:77:97:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pJuD9b3hodyT3mlHaDfp46N3l68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ad1c69-ce56-4eda-87ea-987719ee6a0c/1/UEklcle0ihH6neD_nHbErYmrRHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ad1c69-ce56-4eda-87ea-987719ee6a0c/1/pJuD9b3hodyT3mlHaDfp46N3l68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.60.0.0/16
Signature Algorithm: sha256WithRSAEncryption
12:19:62:b6:60:79:f9:60:60:62:2c:5c:5b:01:ed:53:f5:f1:
63:d5:54:ee:31:a6:f5:98:c1:7d:78:82:b9:f6:59:73:24:d0:
19:88:07:75:05:32:fa:41:ff:a1:d4:4d:96:8e:7d:4d:e0:1b:
79:dd:5a:d7:cf:34:3a:48:2f:96:82:70:f0:bd:64:5d:26:bf:
e7:5c:ab:9a:e7:e9:11:2e:c2:7e:cf:17:b8:02:d7:e8:1c:a2:
7f:c0:b8:95:10:72:e9:d2:0d:1e:f8:c6:53:eb:59:f6:aa:5a:
f2:ef:18:3f:b2:9c:29:b2:e9:7c:9c:a5:3f:46:93:09:12:57:
08:68:5f:0c:c3:ce:98:c8:ba:49:ff:77:ff:c5:e4:0c:4c:d1:
11:3e:91:00:b2:e3:01:b2:3d:76:a4:0c:f4:1f:a8:c2:8d:61:
6a:33:f9:18:50:a7:69:38:f3:00:5c:cd:95:87:b3:e4:0f:2b:
48:f2:6a:fd:6d:4f:27:12:c8:1a:5b:cd:67:b7:00:f3:79:2c:
68:39:53:cd:2d:bd:b3:1c:98:54:f0:27:51:fa:26:79:c4:ec:
f9:20:97:1f:0f:ee:96:c1:00:6b:5d:79:b1:72:84:57:4a:23:
11:58:b3:0a:ad:5b:ea:25:70:8e:3d:9b:d7:bc:43:8d:de:89:
12:e8:05:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:58 2025 by rpki-client