Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/ade410-4e8c-412e-9754-451a9ae4ce51/1/UMJQTUZXWLwyxk32zALqdfjyfCg.roa
File: UMJQTUZXWLwyxk32zALqdfjyfCg.roa (raw, json)
Hash identifier: A+R8uC5BThajm2miyXCdzpFOqfwIhVL+V4GSmbdIh8k=
Subject key identifier: 50:C2:50:4D:46:57:58:BC:32:C6:4D:F6:CC:02:EA:75:F8:F2:7C:28
Certificate issuer: /CN=8fb6133d5c2109d8a6f9bbcaa496dbeae347975c
Certificate serial: 0920CA48
Authority key identifier: 8F:B6:13:3D:5C:21:09:D8:A6:F9:BB:CA:A4:96:DB:EA:E3:47:97:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j7YTPVwhCdim-bvKpJbb6uNHl1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/ade410-4e8c-412e-9754-451a9ae4ce51/1/UMJQTUZXWLwyxk32zALqdfjyfCg.roa
Signing time: Sat 01 Jan 2022 01:00:48 +0000
ROA not before: Sat 01 Jan 2022 01:00:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137
IP address blocks: 160.97.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153143880 (0x920ca48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fb6133d5c2109d8a6f9bbcaa496dbeae347975c
Validity
Not Before: Jan 1 01:00:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50c2504d465758bc32c64df6cc02ea75f8f27c28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:33:7e:0f:60:ba:ec:c3:30:e7:6b:3a:5c:6a:
f2:07:2a:63:7a:c2:fe:fe:29:cb:e5:69:95:8f:cf:
68:d4:f9:57:13:89:1f:cf:ba:c1:bc:c1:ac:71:f3:
6b:8c:dc:5d:45:d0:85:93:31:29:85:00:d2:6e:f6:
df:44:74:73:cf:09:1c:72:6f:a5:32:d4:eb:a8:3c:
2b:72:45:36:a4:36:a3:3b:96:3a:63:e8:bc:b7:25:
9e:c5:6c:45:6e:97:a6:8e:13:bb:ab:b8:81:80:5b:
ce:22:8e:63:9e:84:33:fe:64:cd:a3:50:b4:d8:38:
2e:fd:5f:02:38:32:55:ab:8b:92:01:3b:46:cc:6d:
67:e9:7b:00:82:cc:54:f3:b3:54:42:b0:2d:c9:2d:
64:2a:f5:41:f3:a4:72:5d:1c:7f:78:fc:ff:21:2c:
0d:b6:3c:f5:11:14:aa:2e:2f:c6:30:80:f7:e8:22:
97:cc:11:90:22:0d:a9:39:7d:3c:26:c0:f6:15:b8:
b1:70:f3:27:11:b3:70:ff:94:e0:2e:cd:db:31:66:
61:fc:9a:38:82:98:5e:c6:f9:a3:9d:63:f8:03:ab:
0e:27:72:10:9a:f7:f3:7e:f2:11:ab:e4:a1:27:83:
83:9d:a8:45:19:8e:8c:e0:ec:ed:ff:b9:ba:cd:8a:
48:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:C2:50:4D:46:57:58:BC:32:C6:4D:F6:CC:02:EA:75:F8:F2:7C:28
X509v3 Authority Key Identifier:
keyid:8F:B6:13:3D:5C:21:09:D8:A6:F9:BB:CA:A4:96:DB:EA:E3:47:97:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j7YTPVwhCdim-bvKpJbb6uNHl1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ade410-4e8c-412e-9754-451a9ae4ce51/1/UMJQTUZXWLwyxk32zALqdfjyfCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ade410-4e8c-412e-9754-451a9ae4ce51/1/j7YTPVwhCdim-bvKpJbb6uNHl1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.97.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ad:86:c1:ac:dc:15:2d:21:5f:29:90:35:b7:df:c3:cc:76:66:
82:19:30:a6:22:ca:40:fd:29:45:e2:b0:42:cf:44:71:28:9a:
cd:5b:1c:ae:c4:df:12:18:26:2c:df:0b:13:7a:be:b4:de:14:
a7:9a:4f:d0:0d:0f:24:a3:35:fd:0c:d7:4d:e9:f6:a7:d5:b6:
44:0e:ff:ec:aa:6b:3a:a0:1e:84:e3:f7:f7:23:78:f9:54:89:
9c:06:68:be:55:b0:1f:8c:37:18:df:b5:ce:fd:bc:dd:bc:20:
5e:82:26:bf:2c:cd:03:1e:1a:ee:bd:e9:13:00:3f:04:db:87:
c9:01:e9:44:8c:ed:6b:ac:23:91:96:97:00:7b:69:5c:51:d1:
bd:e5:df:9a:7e:4d:b3:a7:3d:f1:14:05:b1:6f:f5:23:e8:01:
40:cd:55:7f:88:5d:be:10:3f:c9:df:e3:8e:e7:e7:9c:a9:83:
2e:8d:3c:cc:a7:39:74:7d:36:47:20:81:91:dd:6a:4c:81:1d:
d0:bd:87:92:80:09:89:ad:30:e4:c5:f6:0b:f4:5d:a5:d0:60:
52:3c:a5:c3:e0:e1:41:9b:2c:5a:af:f9:41:67:1c:38:e7:a3:
d4:b7:30:35:b5:c0:6e:b5:de:3b:a2:d2:e2:7a:9a:b5:bd:72:
4e:63:c9:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:09 2024 by rpki-client on console-ams.rpki-client.org