Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/UIILgsgRXHHjT0oiKvj0jCwFWgI.roa
File: UIILgsgRXHHjT0oiKvj0jCwFWgI.roa (raw, json)
Hash identifier: 1wjpr8sbFP8lG2k+NwRyMTK5Ek+7fXoV0BCoR6bRL7U=
Subject key identifier: 50:82:0B:82:C8:11:5C:71:E3:4F:4A:22:2A:F8:F4:8C:2C:05:5A:02
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 428D6206
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/UIILgsgRXHHjT0oiKvj0jCwFWgI.roa
Signing time: Sat 01 Jan 2022 14:03:28 +0000
ROA not before: Sat 01 Jan 2022 14:03:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206884
IP address blocks: 194.14.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1116561926 (0x428d6206)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50820b82c8115c71e34f4a222af8f48c2c055a02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ba:0c:ad:a7:58:f6:69:84:be:0b:1d:22:82:
15:66:9a:48:ce:b7:cb:4b:34:17:a4:08:4e:20:be:
76:43:ef:a7:7d:ca:7b:18:a6:14:fa:21:5d:08:46:
45:b1:55:6e:ef:9c:e0:0e:78:6f:a5:d5:45:97:31:
45:80:6b:c4:dc:29:e3:32:d7:b0:f9:bf:16:4e:48:
9d:e2:0e:9f:56:67:20:2b:f3:10:0f:8b:5a:7d:1f:
52:33:8b:7e:46:52:a7:cc:da:a0:a6:13:02:e9:20:
af:a9:ea:72:e8:7e:35:a3:f4:d1:25:1f:5c:b5:82:
e6:81:14:7e:e8:89:ec:97:0b:81:41:9d:63:2a:1b:
68:2a:ef:1c:81:4a:21:a2:9d:5e:18:16:0b:d5:b6:
2a:35:7a:48:ea:d7:40:50:38:7d:5e:aa:68:d9:ee:
86:4b:87:44:67:1d:b6:68:a8:75:51:29:b3:d4:30:
59:87:06:0c:c1:ac:f1:41:e0:c4:a7:52:57:ad:32:
7e:71:73:34:c6:41:9c:3e:09:d9:14:85:cd:72:42:
c9:8e:e3:3c:db:ac:dc:70:6c:15:43:07:9f:bb:c0:
ca:48:a3:ec:ac:69:68:89:74:09:9c:76:39:9c:f3:
f3:10:11:0e:a4:5b:2d:e4:23:99:80:ac:19:69:15:
2a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:82:0B:82:C8:11:5C:71:E3:4F:4A:22:2A:F8:F4:8C:2C:05:5A:02
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/UIILgsgRXHHjT0oiKvj0jCwFWgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.14.76.0/24
Signature Algorithm: sha256WithRSAEncryption
89:41:be:a2:d7:e4:46:c3:3f:ea:26:56:9b:49:12:28:63:b2:
a6:e7:26:df:f8:9c:cd:22:cc:fb:a3:23:b5:9e:c2:57:aa:9d:
00:48:09:d8:9a:2b:fe:8a:63:8f:10:0c:94:fe:1a:ec:9f:89:
3b:85:f6:5f:7a:2d:45:6a:fb:78:7c:11:fd:89:a7:4c:76:b4:
38:bb:c9:75:a3:01:3b:8a:9b:89:bf:44:9d:73:8c:88:ec:75:
b0:0a:6a:ca:4a:d1:ba:28:ab:ea:5f:40:11:10:22:e8:10:92:
50:1d:46:e9:c7:6f:58:d2:a7:c1:12:85:ae:9e:59:2b:90:78:
91:83:55:3d:c7:51:b2:27:e0:8d:85:ce:38:bc:6f:d8:cc:f7:
35:90:83:ca:10:03:09:8d:6b:25:56:6f:6f:1d:7b:e4:74:4b:
88:a0:34:48:ed:27:c5:2e:73:47:fe:25:9c:fc:87:cb:01:1c:
90:22:61:4e:c9:3f:a5:eb:48:32:14:f9:9f:a4:9c:84:cd:13:
84:f9:ca:60:fc:4d:70:1d:d8:84:03:43:9b:a9:cc:90:31:2b:
6f:2e:b5:8b:ec:3d:1c:62:f3:28:d7:5d:f8:e7:19:8b:e9:76:
71:f2:00:d0:60:aa:14:f7:3b:0d:63:54:de:69:da:ea:c0:d3:
6a:e5:c0:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:38 2023 by rpki-client on console-ams.rpki-client.org