Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/15fee7-d411-4c1d-a7cd-570d17f9f2a5/1/uvpd6YgSNJpuJo7hbbvYNKnH2NQ.roa
File: uvpd6YgSNJpuJo7hbbvYNKnH2NQ.roa (raw, json)
Hash identifier: 8pD9wVtME1Uc4Ru+/dHV0dCjZeoHBkiN0IOY6lWgaic=
Subject key identifier: BA:FA:5D:E9:88:12:34:9A:6E:26:8E:E1:6D:BB:D8:34:A9:C7:D8:D4
Certificate issuer: /CN=62cbfa24a488327b730775e329d51a1921612531
Certificate serial: 0272330E
Authority key identifier: 62:CB:FA:24:A4:88:32:7B:73:07:75:E3:29:D5:1A:19:21:61:25:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ysv6JKSIMntzB3XjKdUaGSFhJTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/15fee7-d411-4c1d-a7cd-570d17f9f2a5/1/uvpd6YgSNJpuJo7hbbvYNKnH2NQ.roa
Signing time: Sat 01 Jan 2022 14:03:59 +0000
ROA not before: Sat 01 Jan 2022 14:03:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196956
IP address blocks: 109.71.232.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41038606 (0x272330e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62cbfa24a488327b730775e329d51a1921612531
Validity
Not Before: Jan 1 14:03:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bafa5de98812349a6e268ee16dbbd834a9c7d8d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3b:e7:5d:d0:15:e1:4d:12:95:8e:c9:94:75:
fb:8c:c1:0a:15:01:8e:53:bc:88:80:95:ca:5b:30:
8f:c6:ff:90:0e:51:da:52:78:ad:bd:bf:d4:e9:8a:
fb:fc:95:f5:59:20:8d:b3:fe:4e:f7:e0:bf:29:28:
25:00:09:4a:21:30:84:80:82:28:78:db:d5:cf:d7:
d4:e0:d2:92:a9:73:c8:32:5f:76:2b:8b:5b:c2:77:
7d:bf:bd:1a:e5:d8:a2:d8:29:99:f7:15:07:7e:8b:
7a:25:4d:7f:9f:63:31:92:bd:f0:d2:8b:dc:e9:e6:
1d:c1:99:e2:3c:be:e0:c9:7f:2e:9c:77:aa:8d:94:
59:cf:fc:9f:56:d6:31:d1:b2:8b:1f:bf:4b:5e:07:
24:fa:e6:d7:8a:27:e5:1a:5d:3d:6d:ef:3f:89:f0:
1a:1d:fd:46:61:09:86:0c:2e:bb:8f:80:00:18:ab:
37:5b:2c:8c:0c:36:8c:d2:5d:3e:29:fa:99:09:2b:
f9:b3:a3:b1:9c:cd:2f:9b:27:67:29:e5:77:10:87:
57:ed:3d:27:2b:6c:31:5e:1a:34:98:6a:a8:c7:b6:
24:ae:40:4d:45:b7:f0:f4:d5:14:cc:58:72:72:96:
c8:d3:e1:c7:3e:ac:06:b2:3e:16:a4:20:f6:54:68:
62:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:FA:5D:E9:88:12:34:9A:6E:26:8E:E1:6D:BB:D8:34:A9:C7:D8:D4
X509v3 Authority Key Identifier:
keyid:62:CB:FA:24:A4:88:32:7B:73:07:75:E3:29:D5:1A:19:21:61:25:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ysv6JKSIMntzB3XjKdUaGSFhJTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/15fee7-d411-4c1d-a7cd-570d17f9f2a5/1/uvpd6YgSNJpuJo7hbbvYNKnH2NQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/15fee7-d411-4c1d-a7cd-570d17f9f2a5/1/Ysv6JKSIMntzB3XjKdUaGSFhJTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.71.232.0/21
Signature Algorithm: sha256WithRSAEncryption
85:ee:4b:34:eb:ed:78:24:f1:7e:6a:aa:f1:5c:9c:7d:78:54:
22:ff:98:2a:a7:8e:e5:71:7b:9d:18:d6:44:8b:c9:c4:d6:2e:
73:d7:68:58:0e:d2:ca:1c:96:b7:91:72:50:39:6a:c3:79:03:
5e:32:36:aa:ed:24:9a:b3:c9:1a:2e:c4:f9:aa:19:61:f1:42:
8c:12:af:cf:b5:77:ce:a6:a3:29:ec:10:ed:ce:e7:81:f7:41:
52:fe:4b:68:bb:fb:78:a6:9a:94:0d:c1:2c:de:d7:fb:af:fc:
51:dd:8a:3d:d8:49:c9:8e:6e:c8:3e:27:1d:79:cb:0f:b9:b5:
49:a4:fc:2a:6b:06:fe:6d:fa:dc:3e:e7:fa:d6:e8:dd:fc:81:
24:02:99:4f:d7:e4:10:53:ca:75:ad:7b:16:f1:14:b9:7d:a9:
73:bf:35:ab:3d:4e:7f:ad:21:e1:f5:c8:49:14:f4:23:5b:7b:
50:62:34:05:01:79:87:8a:f0:f1:32:2f:25:5b:0f:cb:38:1f:
f0:95:5a:90:bb:79:ac:23:3a:02:bc:a1:75:ae:0f:ff:f3:7b:
07:77:c2:e1:f8:8f:f2:8d:e8:e7:da:cc:7c:0d:1e:5c:4c:03:
8f:41:6d:da:88:ca:db:3d:b1:85:7e:a5:0a:e0:cb:b8:73:99:
eb:60:e1:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:07 2024 by rpki-client on console-ams.rpki-client.org