Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/05d8ba-9433-4a2e-bfe6-37b21bab3b00/1/uYp8YvPn0iouV9gRJ2WvHMsxorE.roa
File: uYp8YvPn0iouV9gRJ2WvHMsxorE.roa (raw, json)
Hash identifier: moZiKZxycuGW273Pwmf/Y1NrF+SBx0j6y5/dseCWE8s=
Subject key identifier: B9:8A:7C:62:F3:E7:D2:2A:2E:57:D8:11:27:65:AF:1C:CB:31:A2:B1
Certificate issuer: /CN=82d7fe7312efb42bd8d1ecd82ac76191ea26c356
Certificate serial: 6254
Authority key identifier: 82:D7:FE:73:12:EF:B4:2B:D8:D1:EC:D8:2A:C7:61:91:EA:26:C3:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gtf-cxLvtCvY0ezYKsdhkeomw1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/05d8ba-9433-4a2e-bfe6-37b21bab3b00/1/uYp8YvPn0iouV9gRJ2WvHMsxorE.roa
Signing time: Tue 15 Feb 2022 15:11:01 +0000
ROA not before: Tue 15 Feb 2022 15:11:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44465
IP address blocks: 92.43.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25172 (0x6254)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82d7fe7312efb42bd8d1ecd82ac76191ea26c356
Validity
Not Before: Feb 15 15:11:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b98a7c62f3e7d22a2e57d8112765af1ccb31a2b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:66:93:73:77:54:18:8d:a5:2f:4e:85:21:d5:
6c:71:51:6b:51:ee:90:0f:ef:c3:1d:1c:49:26:74:
ba:7b:b9:b1:a0:0d:51:50:55:c6:f0:ad:e5:5c:c6:
66:a9:56:52:d3:14:a1:e5:2f:a3:15:51:71:54:3e:
15:4b:e8:47:2d:31:71:e0:ac:cd:07:d6:e4:ea:f7:
e0:67:7e:e5:db:92:86:cf:8b:23:09:6c:b8:fd:23:
14:f6:29:7e:98:ad:df:dc:f2:f7:67:2c:2f:3a:0f:
3b:d6:27:7d:0f:85:78:41:98:05:37:3a:2a:a2:79:
d5:bb:c2:ef:2a:37:85:c5:8a:0c:43:4b:74:02:20:
af:96:e4:60:f6:b6:18:54:9b:ef:a8:26:dd:52:89:
d4:ec:ff:87:60:32:eb:85:f8:10:28:d1:03:af:c7:
ef:8d:b2:ca:15:b1:70:06:f8:d8:50:ca:98:fe:8a:
bb:de:0b:12:7f:f8:a5:18:aa:37:46:f7:8f:b2:1f:
20:93:fe:29:b0:fe:29:c0:d1:f9:4c:21:79:c4:f9:
42:a7:bc:b7:67:27:db:5c:e4:bc:4b:2e:a3:9c:4f:
2c:54:7c:dd:3f:96:70:3e:33:4b:47:34:6f:19:f1:
0d:ca:e2:cd:e4:5e:c9:5f:ac:33:df:9e:c0:e1:eb:
ca:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:8A:7C:62:F3:E7:D2:2A:2E:57:D8:11:27:65:AF:1C:CB:31:A2:B1
X509v3 Authority Key Identifier:
keyid:82:D7:FE:73:12:EF:B4:2B:D8:D1:EC:D8:2A:C7:61:91:EA:26:C3:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gtf-cxLvtCvY0ezYKsdhkeomw1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/05d8ba-9433-4a2e-bfe6-37b21bab3b00/1/uYp8YvPn0iouV9gRJ2WvHMsxorE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/05d8ba-9433-4a2e-bfe6-37b21bab3b00/1/gtf-cxLvtCvY0ezYKsdhkeomw1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.43.172.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:0e:f0:1f:23:88:08:95:54:db:a1:67:db:26:e0:a4:47:b2:
68:2a:e3:42:ae:54:f7:23:8e:1e:b6:ec:01:89:aa:bc:21:bf:
48:d4:1c:77:a8:07:47:3b:b9:3d:d1:6b:87:4d:c2:79:a2:bf:
bd:3a:4f:d1:72:9d:7c:c4:c6:25:21:17:17:5d:b1:48:28:9f:
d2:a3:fa:d2:a5:a7:69:19:2f:56:83:a0:67:50:24:db:67:a5:
7b:d2:9b:20:c2:a9:05:21:1a:20:38:70:3b:57:51:b3:f5:dd:
81:6a:97:22:11:7a:c2:99:c5:c7:73:ac:1c:61:e1:bc:84:d1:
0c:dc:e0:69:45:29:11:1e:74:0f:7d:5b:05:0c:ff:e8:f1:c9:
9e:92:68:ba:69:29:ba:73:cc:f1:ae:46:c3:78:90:2e:a1:8d:
9c:24:36:ff:ed:a2:dd:63:da:39:32:4f:40:5a:85:07:7d:ac:
7b:8b:fa:db:2a:af:bf:40:09:40:21:d7:43:26:cc:1d:94:5b:
bc:a3:ee:db:e8:cc:25:42:d2:cd:ee:04:1c:d5:1e:9f:38:88:
c9:3d:3e:68:41:90:1b:85:f5:f5:ff:40:b4:3e:62:02:02:94:
88:d9:77:16:a3:cf:e4:24:2e:0b:2f:d8:8d:97:fc:a1:9c:17:
0f:fd:45:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:08 2024 by rpki-client on console-fra.rpki-client.org