Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/UjoOeucBd3BladePkJD2EbGeH4s.roa
File: UjoOeucBd3BladePkJD2EbGeH4s.roa (raw, json)
Hash identifier: beC62TmedskD1PonDAEAH3wx+Vzz6eyboYtzozZNhLQ=
Subject key identifier: 52:3A:0E:7A:E7:01:77:70:65:69:D7:8F:90:90:F6:11:B1:9E:1F:8B
Certificate issuer: /CN=c9b232958097b5863eafd047bb315171eaa01fb7
Certificate serial: 390D73D1
Authority key identifier: C9:B2:32:95:80:97:B5:86:3E:AF:D0:47:BB:31:51:71:EA:A0:1F:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ybIylYCXtYY-r9BHuzFRceqgH7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/UjoOeucBd3BladePkJD2EbGeH4s.roa
Signing time: Fri 29 Apr 2022 05:19:05 +0000
ROA not before: Fri 29 Apr 2022 05:19:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57326
IP address blocks: 95.128.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 957182929 (0x390d73d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9b232958097b5863eafd047bb315171eaa01fb7
Validity
Not Before: Apr 29 05:19:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=523a0e7ae70177706569d78f9090f611b19e1f8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:8c:d9:62:55:fd:46:ea:31:89:7d:3c:bf:f0:
e6:76:f5:2b:5c:9b:99:95:e3:dc:08:de:8d:ca:75:
06:8b:9d:36:8d:ca:ca:4a:13:68:10:79:da:f4:86:
6a:91:03:82:67:a1:b2:21:db:15:66:6e:11:0d:42:
b6:6f:8e:9d:74:da:5f:19:a2:4a:21:df:16:9d:a8:
a4:42:8a:b7:55:3f:86:f1:e6:c5:f5:7f:33:da:e9:
52:bf:b7:a1:24:90:f1:02:fd:39:a4:bd:6d:5e:aa:
98:1c:6b:2f:4b:5e:83:a6:56:0c:cc:2b:f6:e1:f4:
fe:ce:0f:3e:70:91:40:a2:43:f9:9b:47:5f:78:bc:
83:7c:d3:1a:b4:6b:e3:ea:d0:99:fc:f4:16:c4:f8:
a4:1e:fe:cd:c1:14:c9:2c:84:52:b4:3b:53:73:ef:
c7:da:fd:a2:6a:76:71:79:7a:46:e4:ed:c7:fc:78:
b7:39:11:51:6f:a8:60:92:43:4a:06:f6:f0:c2:3a:
1b:c7:7c:6c:16:ab:45:9e:83:63:ef:f4:33:0f:ba:
99:f9:12:9a:98:dd:87:52:b3:43:93:91:9d:98:86:
4c:c6:0c:3a:20:da:58:4b:74:05:06:f2:d2:85:44:
47:be:71:61:37:67:5f:83:56:85:6d:ba:78:46:9d:
75:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:3A:0E:7A:E7:01:77:70:65:69:D7:8F:90:90:F6:11:B1:9E:1F:8B
X509v3 Authority Key Identifier:
keyid:C9:B2:32:95:80:97:B5:86:3E:AF:D0:47:BB:31:51:71:EA:A0:1F:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ybIylYCXtYY-r9BHuzFRceqgH7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/UjoOeucBd3BladePkJD2EbGeH4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/ybIylYCXtYY-r9BHuzFRceqgH7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.128.172.0/24
Signature Algorithm: sha256WithRSAEncryption
54:eb:fd:4f:ea:10:77:a8:db:20:77:fc:4a:25:66:fe:19:ba:
13:e1:9a:a9:8f:e4:98:13:d6:c8:76:bb:81:68:d2:98:82:45:
b8:1e:16:68:40:d1:e4:e1:02:0b:46:f9:54:66:2e:4b:4e:0c:
09:d9:f1:05:ef:b4:b0:0f:03:db:14:6f:5c:ef:0f:9a:02:7d:
f3:28:94:f1:bc:cc:4b:d7:49:de:ad:50:62:61:d6:38:c8:98:
08:ea:d8:e1:bd:e3:ec:b5:61:3d:f3:35:4f:3c:25:ce:3e:eb:
f0:f3:2c:d1:e9:34:87:95:66:f6:bf:12:9a:1f:1b:19:71:79:
ac:26:c5:6a:c1:cc:60:a1:f6:f5:25:1f:99:cb:11:12:fc:01:
c6:52:60:3a:8d:41:2e:c6:55:67:bf:8c:ce:fb:c8:9a:77:7d:
e4:4e:39:e5:1e:34:7a:0f:59:7c:6c:4d:9a:d6:88:98:9c:7d:
26:d2:fb:f3:2b:23:20:f8:d8:93:5d:31:cf:4b:8a:1c:e9:2f:
14:09:46:a6:5c:46:bf:52:32:3c:d9:1f:45:76:89:93:fc:39:
a3:2a:ff:dc:3e:e2:c2:bf:d3:50:a9:ca:84:82:54:23:f4:51:
34:11:63:7a:38:5c:43:e1:c9:55:d5:55:86:3b:0e:8d:e6:d4:
ae:04:d3:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:56 2023 by rpki-client on console-ams.rpki-client.org