Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a4debb-27b7-4140-b27e-ea653824b1f2/1/UXamhRyrvVcr1HPaiGdOGU_LX10.roa
File: UXamhRyrvVcr1HPaiGdOGU_LX10.roa (raw, json)
Hash identifier: M0qwdmFLEFoJZOn2qgk7tDVFUOQlvihxnJCsmDjRjHI=
Subject key identifier: 51:76:A6:85:1C:AB:BD:57:2B:D4:73:DA:88:67:4E:19:4F:CB:5F:5D
Certificate issuer: /CN=7e1540fdd5add6b775498c1e3f25c90e213a612f
Certificate serial: 091AB4FA
Authority key identifier: 7E:15:40:FD:D5:AD:D6:B7:75:49:8C:1E:3F:25:C9:0E:21:3A:61:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fhVA_dWt1rd1SYwePyXJDiE6YS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/a4debb-27b7-4140-b27e-ea653824b1f2/1/UXamhRyrvVcr1HPaiGdOGU_LX10.roa
Signing time: Sat 01 Jan 2022 14:58:06 +0000
ROA not before: Sat 01 Jan 2022 14:58:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44821
IP address blocks: 185.148.252.0/22 maxlen: 22
2a07:6380::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152745210 (0x91ab4fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e1540fdd5add6b775498c1e3f25c90e213a612f
Validity
Not Before: Jan 1 14:58:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5176a6851cabbd572bd473da88674e194fcb5f5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:08:41:b5:8b:f2:8a:b8:52:01:dd:ca:9b:82:
bf:7e:b2:8c:12:68:c4:c7:a9:f4:e3:ee:6a:c5:48:
f5:b4:97:ac:10:ef:b2:1b:a2:28:62:2c:db:73:7e:
a4:20:af:a7:d8:a7:a7:61:c8:80:52:ca:a4:ce:87:
e1:9c:e7:e8:14:87:f8:e2:42:2d:e1:9c:07:d6:0b:
63:5a:13:26:a2:41:bb:84:ac:6b:99:9e:cc:62:12:
fa:b2:d9:ea:65:73:ca:f7:fa:81:48:c5:d8:05:37:
e9:04:7f:8e:49:94:26:02:89:c2:95:2b:a4:3e:ff:
b7:16:a9:55:fb:31:85:37:f2:bc:01:73:2f:b2:38:
0a:71:1c:f1:f8:64:30:d3:a7:a3:8c:ab:9c:10:82:
e4:2d:55:15:8b:ca:1b:ef:06:55:3c:18:3b:c7:4d:
7a:45:65:78:28:0d:53:70:0a:4a:d7:3c:e2:d5:01:
09:d8:70:3b:15:d8:b0:b2:8b:71:93:e2:21:33:87:
64:c0:64:40:ef:1f:a2:fc:5a:72:42:dc:dd:ac:c7:
7d:69:74:a1:8c:89:cd:08:b7:40:8d:47:c2:1a:28:
38:90:2f:46:aa:ff:16:22:f0:71:41:08:f4:ee:83:
24:76:e4:68:8a:d2:71:9b:c7:bd:29:7e:5d:68:f2:
d3:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:76:A6:85:1C:AB:BD:57:2B:D4:73:DA:88:67:4E:19:4F:CB:5F:5D
X509v3 Authority Key Identifier:
keyid:7E:15:40:FD:D5:AD:D6:B7:75:49:8C:1E:3F:25:C9:0E:21:3A:61:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fhVA_dWt1rd1SYwePyXJDiE6YS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a4debb-27b7-4140-b27e-ea653824b1f2/1/UXamhRyrvVcr1HPaiGdOGU_LX10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a4debb-27b7-4140-b27e-ea653824b1f2/1/fhVA_dWt1rd1SYwePyXJDiE6YS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.252.0/22
IPv6:
2a07:6380::/29
Signature Algorithm: sha256WithRSAEncryption
59:3d:f6:a6:3f:be:ce:e5:82:1a:4c:e6:aa:77:d1:2a:a8:ee:
29:a9:e9:2a:dc:8d:c2:e9:51:a7:88:03:d3:0b:e0:6b:34:2e:
82:67:bc:84:ce:44:cf:b3:8e:65:41:4c:de:fd:80:95:28:ba:
d9:4a:cc:34:38:c6:03:76:97:01:75:05:c3:ad:55:30:ff:66:
0d:63:d2:9b:6d:bb:fb:72:63:60:7f:16:16:29:19:df:cc:2f:
a6:4e:6d:5a:e8:27:f7:2f:7e:75:99:2e:5b:ef:af:c0:e8:05:
4d:ef:4f:98:41:30:d3:7a:4f:e1:66:1a:87:89:1c:6f:3e:8f:
b9:d6:f5:9c:21:40:36:ae:ee:fd:4d:4b:ec:53:e4:a1:de:9f:
e4:89:51:7f:f0:e8:4b:68:48:8f:88:04:27:a8:a7:08:06:5e:
28:cf:5c:ca:06:69:96:2e:a8:10:ef:3b:e0:06:2b:01:21:d9:
d7:ec:eb:99:52:7a:61:3a:f4:f8:bb:eb:56:d6:c8:03:a8:34:
c4:fb:f6:ec:7f:a2:4b:df:a9:47:62:29:84:8b:4b:a2:f4:e7:
a7:19:74:48:7a:93:d0:ae:94:4c:88:e2:95:f9:07:ac:25:1e:
48:84:c0:ae:84:85:43:83:61:50:6c:a0:84:af:28:28:0e:a3:
4d:96:c2:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:29 2024 by rpki-client on console-ams.rpki-client.org