Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/UUERwzu-jmzSToIUy4tqXHsXmo0.roa
File: UUERwzu-jmzSToIUy4tqXHsXmo0.roa (raw, json)
Hash identifier: GJNrEzgNRLhvHQxumYzoBiyZ0SpEy/8Wp0YcC9qouKs=
Subject key identifier: 51:41:11:C3:3B:BE:8E:6C:D2:4E:82:14:CB:8B:6A:5C:7B:17:9A:8D
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 07AD800E
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/UUERwzu-jmzSToIUy4tqXHsXmo0.roa
Signing time: Thu 28 Apr 2022 19:33:33 +0000
ROA not before: Thu 28 Apr 2022 19:33:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.240.123.0/24 maxlen: 24
194.124.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128811022 (0x7ad800e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 28 19:33:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=514111c33bbe8e6cd24e8214cb8b6a5c7b179a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:aa:63:68:6d:07:58:d1:d1:6a:fb:e9:d7:1c:
94:cd:e7:2f:db:e9:d8:8f:a4:43:72:c8:34:2f:ec:
a0:4d:f3:a6:28:db:10:15:2e:8b:fc:e5:29:4b:fd:
31:54:4d:50:db:21:1d:aa:ec:de:61:48:50:c0:09:
0a:db:33:24:c4:b3:83:fc:bf:23:f7:18:ed:74:54:
c7:9c:ba:30:7b:d1:b7:cf:2f:c8:00:7f:5b:60:18:
bf:23:b9:70:f1:4d:40:e0:9f:21:64:5d:50:62:2f:
f6:3c:4f:f7:3c:44:1c:25:de:da:73:d3:a2:91:e1:
42:37:80:9b:cf:d0:08:2b:ae:7e:fd:be:40:05:8c:
8e:fe:66:b3:21:74:93:2f:4d:34:2d:6a:17:1f:ea:
5c:e5:ff:4a:e1:15:0a:d9:57:d1:b3:ca:43:ff:d5:
78:cf:a6:8d:3b:60:c4:c8:04:fa:f4:af:58:20:bd:
6a:82:0d:5a:13:f7:42:24:d5:1e:d4:02:0b:77:c3:
a6:38:96:f3:7b:f9:e5:46:59:e1:02:2f:d5:28:c5:
df:28:e9:2b:bc:06:c9:00:b9:d2:6f:1b:6f:f9:29:
4b:25:4a:f0:70:f2:9e:71:e9:a2:65:f4:a8:ac:79:
d2:83:eb:cc:32:e7:52:a9:b0:a5:0b:db:53:17:dc:
10:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:41:11:C3:3B:BE:8E:6C:D2:4E:82:14:CB:8B:6A:5C:7B:17:9A:8D
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/UUERwzu-jmzSToIUy4tqXHsXmo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.123.0/24
194.124.69.0/24
Signature Algorithm: sha256WithRSAEncryption
56:5d:28:9d:cb:43:de:06:f9:58:7c:42:54:9a:5d:1d:ae:63:
e8:00:61:ec:44:ca:f5:16:35:1a:6b:ad:a4:4d:41:ca:70:1c:
f3:b9:dc:42:2d:64:c2:c9:f1:b1:34:99:8c:43:ec:64:8e:b2:
e6:73:16:f0:2e:64:24:46:b9:47:fd:61:b2:fc:f3:2f:dc:89:
a5:8a:52:f8:cc:46:46:38:1a:90:93:97:67:c0:3d:80:db:39:
03:a6:8b:a3:9c:cb:19:2f:46:22:1b:08:b4:ab:2f:e2:cd:8a:
02:cf:61:47:87:a6:32:6b:47:5a:62:3f:93:5f:9a:51:0a:f5:
5d:7b:bd:a9:5c:b5:7d:42:ab:4f:86:d1:d3:53:26:50:79:54:
e9:f2:ce:47:1b:f1:d3:1a:48:7b:4e:ab:dc:64:eb:2c:e9:11:
84:cb:c5:02:82:77:d4:2e:9e:9c:6b:b8:d7:a8:a4:b3:0c:c7:
64:63:9e:15:62:43:30:4c:e9:4c:78:97:04:98:51:81:b3:30:
56:6e:8a:07:93:07:14:2a:21:41:26:b8:d0:06:25:a0:78:24:
86:85:b2:f6:d8:c6:76:bd:dd:a2:4f:77:31:52:bf:40:0d:5d:
9a:9d:fe:86:9c:ec:f1:8a:3d:fb:6f:d9:8c:15:06:9b:eb:b1:
6c:ce:b7:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org