Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/2a4bfe-7688-46a1-9aff-ceb0710a0751/1/uhBXoCxBlW0L3DYCgLBVcEmHT04.roa
File: uhBXoCxBlW0L3DYCgLBVcEmHT04.roa (raw, json)
Hash identifier: duV0sxRpon8q4FzMbBxMsWAX7PakxWrakI/CpyTERQE=
Subject key identifier: BA:10:57:A0:2C:41:95:6D:0B:DC:36:02:80:B0:55:70:49:87:4F:4E
Certificate issuer: /CN=2fcdb505d1da136d009e20ef1b363b02e332519f
Certificate serial: 02562A
Authority key identifier: 2F:CD:B5:05:D1:DA:13:6D:00:9E:20:EF:1B:36:3B:02:E3:32:51:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L821BdHaE20AniDvGzY7AuMyUZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/2a4bfe-7688-46a1-9aff-ceb0710a0751/1/uhBXoCxBlW0L3DYCgLBVcEmHT04.roa
Signing time: Mon 17 Jan 2022 09:18:13 +0000
ROA not before: Mon 17 Jan 2022 09:18:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57469
IP address blocks: 194.26.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153130 (0x2562a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fcdb505d1da136d009e20ef1b363b02e332519f
Validity
Not Before: Jan 17 09:18:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba1057a02c41956d0bdc360280b0557049874f4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:05:2a:52:52:88:25:92:f5:fb:2a:b6:d2:cf:
f5:b8:23:63:ab:f9:9d:8e:e9:a2:3a:d3:d5:e1:e8:
58:f2:52:92:a6:43:22:b0:8c:b2:cd:a8:69:bf:c0:
81:ef:30:92:82:47:ec:5e:0d:58:62:1c:b2:3d:c8:
66:53:84:b1:21:e6:2f:ae:61:1f:2d:9f:b0:db:05:
d6:77:3c:36:f6:39:45:3e:e0:a3:d2:31:25:2e:ef:
81:3f:c4:e7:62:8b:28:59:8f:be:8e:c3:bb:bd:7d:
22:f4:90:89:8f:26:50:66:be:27:54:69:8e:39:ce:
fd:d5:bb:c1:59:dc:eb:12:4a:60:6b:05:02:a7:c3:
d7:be:11:e9:5a:64:56:29:83:b5:99:69:44:b2:a8:
1e:05:e3:e1:9f:2c:39:9f:82:1c:9d:10:59:d8:66:
6d:32:41:90:99:77:fc:9a:34:7a:92:f2:2f:33:46:
6b:b6:e9:f8:01:bb:c1:a1:d3:1c:6f:57:e8:91:fd:
28:1c:6b:74:22:e0:0b:b7:2c:f3:4c:89:5b:e4:b3:
ad:34:89:fa:b1:f1:9b:e5:b3:6b:fb:db:3f:6f:62:
f2:ed:6f:dd:35:ea:61:87:6a:97:6c:33:97:96:d1:
eb:c0:f9:88:aa:c0:bc:c2:48:97:29:5c:c8:5a:77:
4a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:10:57:A0:2C:41:95:6D:0B:DC:36:02:80:B0:55:70:49:87:4F:4E
X509v3 Authority Key Identifier:
keyid:2F:CD:B5:05:D1:DA:13:6D:00:9E:20:EF:1B:36:3B:02:E3:32:51:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L821BdHaE20AniDvGzY7AuMyUZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/2a4bfe-7688-46a1-9aff-ceb0710a0751/1/uhBXoCxBlW0L3DYCgLBVcEmHT04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/2a4bfe-7688-46a1-9aff-ceb0710a0751/1/L821BdHaE20AniDvGzY7AuMyUZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.225.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:0f:18:0b:40:f3:85:85:a8:f8:6c:28:9e:17:26:13:3d:40:
5c:b8:6c:b4:da:5b:31:16:85:0b:ae:0f:ae:37:99:cd:4e:00:
4f:7e:3d:bf:07:6f:70:56:51:df:79:85:54:cd:62:04:11:6b:
79:6e:3d:28:95:d0:d3:e2:54:89:23:d9:eb:0b:be:39:87:4e:
ce:08:18:10:a1:97:10:48:7b:fd:65:f6:03:ba:18:d9:2d:ef:
92:c4:cc:88:82:f8:c6:aa:eb:59:14:ea:98:78:db:96:33:a2:
63:ad:91:4a:14:f4:4d:cf:84:3d:31:44:51:c0:f9:bc:41:6b:
ca:dc:39:d4:ff:b2:fd:fd:2f:1e:7a:6a:f4:4c:a2:88:01:a9:
7b:d3:32:50:a2:67:4e:f1:d9:67:b4:39:41:8e:70:9f:b6:6c:
ad:b8:54:81:30:3a:65:5d:01:d7:a8:7a:c8:13:0f:d2:4b:25:
2b:b5:70:04:50:e5:82:99:c0:4f:16:61:16:7e:ee:a5:ea:d1:
14:8d:65:43:1f:14:e8:b3:1e:99:b3:20:ca:55:cd:0b:b3:b8:
7b:89:31:2e:d5:56:40:91:c9:34:c1:9b:28:f2:fc:38:c4:5f:
be:4b:a6:cb:32:0a:c0:93:de:ec:45:a8:42:7f:d0:5a:40:1f:
32:ff:3c:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:50 2024 by rpki-client on console-fra.rpki-client.org