Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/f649a2-518d-4456-98a7-23c3df82c230/1/UJMogScrnbq1wQS5_liHyvyKA6g.roa
File: UJMogScrnbq1wQS5_liHyvyKA6g.roa (raw, json)
Hash identifier: ur1nj+34mwj9j04gD9jvdTCq4qa0yJmCFTT0QlNm9Vc=
Subject key identifier: 50:93:28:81:27:2B:9D:BA:B5:C1:04:B9:FE:58:87:CA:FC:8A:03:A8
Certificate issuer: /CN=a6947681da0db7fe79315ec6dbda28bf8d660fc0
Certificate serial: 1BF33E26
Authority key identifier: A6:94:76:81:DA:0D:B7:FE:79:31:5E:C6:DB:DA:28:BF:8D:66:0F:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ppR2gdoNt_55MV7G29oov41mD8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/f649a2-518d-4456-98a7-23c3df82c230/1/UJMogScrnbq1wQS5_liHyvyKA6g.roa
Signing time: Sat 01 Jan 2022 09:57:30 +0000
ROA not before: Sat 01 Jan 2022 09:57:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34867
IP address blocks: 185.48.196.0/22 maxlen: 22
95.67.0.0/17 maxlen: 17
2a00:17a0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 468925990 (0x1bf33e26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6947681da0db7fe79315ec6dbda28bf8d660fc0
Validity
Not Before: Jan 1 09:57:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50932881272b9dbab5c104b9fe5887cafc8a03a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4d:bc:a2:53:13:24:b1:d5:e0:ef:6e:6f:f1:
0a:39:ad:25:d1:16:73:d6:55:cd:38:47:16:b2:76:
5e:e0:1f:d9:51:64:1a:5c:64:fa:2f:50:3e:d6:b1:
f4:0f:f5:81:d7:06:c2:11:74:1f:f4:a6:df:0d:2f:
b4:b2:ab:56:0e:b0:35:94:9c:27:43:4d:00:7f:27:
71:fd:c8:65:b5:0f:a8:58:e3:1d:d0:a0:64:31:4b:
e9:32:92:28:28:cd:e7:7e:f5:3d:4d:b0:7c:9e:30:
08:3c:bc:6f:7b:d3:96:66:ce:b1:81:76:06:c2:34:
fe:fa:87:94:23:9b:40:ff:27:d8:0a:f8:66:c9:42:
7f:59:49:45:9b:7e:bf:76:20:6d:50:a9:8b:32:c5:
f8:eb:28:e5:91:03:3a:a7:a6:4d:61:d8:9b:e7:14:
f0:85:16:cd:08:3e:e5:35:a5:ac:57:ee:d9:f5:4f:
3d:51:51:31:6f:be:67:54:93:92:89:a8:70:68:ff:
f1:32:f7:64:89:f0:2d:1b:4e:e1:1c:72:fb:43:0f:
78:e5:d6:9c:c5:f7:13:82:32:27:50:99:cc:94:f2:
77:cd:b3:76:39:c4:db:ae:ef:e0:21:10:2c:0f:49:
d8:df:5d:69:16:ff:bd:8c:ff:2b:e2:f7:14:43:de:
d0:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:93:28:81:27:2B:9D:BA:B5:C1:04:B9:FE:58:87:CA:FC:8A:03:A8
X509v3 Authority Key Identifier:
keyid:A6:94:76:81:DA:0D:B7:FE:79:31:5E:C6:DB:DA:28:BF:8D:66:0F:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ppR2gdoNt_55MV7G29oov41mD8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/f649a2-518d-4456-98a7-23c3df82c230/1/UJMogScrnbq1wQS5_liHyvyKA6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/f649a2-518d-4456-98a7-23c3df82c230/1/ppR2gdoNt_55MV7G29oov41mD8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.67.0.0/17
185.48.196.0/22
IPv6:
2a00:17a0::/32
Signature Algorithm: sha256WithRSAEncryption
16:55:03:09:dc:22:11:07:5e:e1:4c:da:9c:ac:40:2a:a3:6a:
9e:f0:ac:2b:dc:ab:3b:c5:3e:80:06:bc:37:d9:5f:c1:cb:07:
66:b2:c2:0f:4a:c4:5e:8a:2d:f1:b6:86:60:27:76:00:26:0d:
d0:af:65:4c:32:53:fe:c7:a7:c3:d7:1b:45:cf:9c:63:9c:6a:
81:26:43:19:ea:35:f4:a5:b1:2e:06:74:61:e6:be:f7:f2:85:
cf:8f:91:8f:e9:6f:1b:ff:87:34:b0:7e:2b:32:3d:78:75:9b:
a8:ea:f3:17:21:b3:97:8b:df:71:61:0e:55:dc:ec:63:20:95:
80:54:6c:53:25:81:a3:47:36:b2:4f:fe:08:2a:69:fa:ce:41:
55:13:47:72:c8:11:03:30:3d:20:a4:d0:b8:2b:a4:28:a5:d1:
a6:b0:94:04:ba:fc:98:16:09:93:66:88:9e:0d:ae:74:bb:fa:
9c:74:55:92:0c:92:8f:23:e7:7c:60:ea:64:77:40:d6:7a:33:
63:e8:9d:0b:5e:9f:b4:f7:bb:a3:39:13:7f:1a:0b:d8:d5:0c:
8b:f2:da:90:b6:20:e9:f8:8e:e3:79:c6:ba:ec:58:94:3a:75:
a6:27:2b:1a:a6:08:a5:14:e6:05:7a:9a:d8:ec:2f:84:51:03:
17:b6:5e:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:31 2025 by rpki-client