Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/uovnH1nl998NWCllpuHKSZkx15I.roa
File: uovnH1nl998NWCllpuHKSZkx15I.roa (raw, json)
Hash identifier: 9Kxym6T6zNM+Hg8/TtWmS7PvYAvYqoCTG5fbpycTjjI=
Subject key identifier: BA:8B:E7:1F:59:E5:F7:DF:0D:58:29:65:A6:E1:CA:49:99:31:D7:92
Certificate issuer: /CN=cf1df6667da38e57a25b1945fa40e593e5adfa00
Certificate serial: 01DF50
Authority key identifier: CF:1D:F6:66:7D:A3:8E:57:A2:5B:19:45:FA:40:E5:93:E5:AD:FA:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zx32Zn2jjleiWxlF-kDlk-Wt-gA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/uovnH1nl998NWCllpuHKSZkx15I.roa
Signing time: Fri 04 Feb 2022 10:55:44 +0000
ROA not before: Fri 04 Feb 2022 10:55:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206448
IP address blocks: 192.109.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122704 (0x1df50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf1df6667da38e57a25b1945fa40e593e5adfa00
Validity
Not Before: Feb 4 10:55:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba8be71f59e5f7df0d582965a6e1ca499931d792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:48:3b:7b:35:ee:43:b0:b4:73:69:c4:a0:0a:
47:0d:10:bf:51:df:fa:04:45:4c:e9:9c:b3:c0:b8:
57:9b:23:4c:03:a7:58:a8:6d:f0:08:62:6a:76:50:
27:93:aa:2f:79:be:d0:f4:b9:d9:77:2a:59:4d:58:
79:59:12:d0:a4:f9:91:7a:a5:41:64:e0:18:3d:50:
24:a4:f5:e8:3b:fd:16:a5:a8:07:5d:69:6e:b8:ba:
9a:97:07:f6:05:ff:5c:d9:9c:8c:17:2b:87:f3:d5:
89:bc:40:5c:96:11:a7:bf:67:00:36:7d:ad:b6:d7:
30:e4:32:40:69:8f:77:5c:c8:59:8c:ce:f5:04:50:
23:96:0c:61:9a:22:51:01:2a:9f:14:d2:c0:78:90:
22:b2:03:70:0c:11:62:35:bf:95:14:e6:69:f9:f5:
6c:4c:6f:d4:c1:b8:4b:66:f9:30:7c:a1:d1:5f:91:
ec:b7:8b:2d:69:50:6b:50:d7:b2:5a:4c:53:43:e1:
6c:8d:a9:63:a7:21:bb:5f:09:d3:0f:ae:c8:e3:e5:
a8:df:c4:58:89:ad:85:a6:57:9a:eb:36:d4:b9:5c:
64:34:3d:5f:61:9a:0c:38:dc:dc:db:33:9e:3e:8e:
11:b6:fd:b1:db:81:07:2c:86:e6:9f:56:f5:87:64:
0f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:8B:E7:1F:59:E5:F7:DF:0D:58:29:65:A6:E1:CA:49:99:31:D7:92
X509v3 Authority Key Identifier:
keyid:CF:1D:F6:66:7D:A3:8E:57:A2:5B:19:45:FA:40:E5:93:E5:AD:FA:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zx32Zn2jjleiWxlF-kDlk-Wt-gA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/uovnH1nl998NWCllpuHKSZkx15I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/zx32Zn2jjleiWxlF-kDlk-Wt-gA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.109.243.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:51:3a:61:11:cc:32:00:f3:b2:f5:1e:36:56:e1:82:e8:1c:
a7:47:8c:25:08:94:66:e7:23:99:94:84:c7:fa:49:85:14:16:
da:f3:dc:98:a4:f6:a2:8b:0c:1a:f6:42:a2:bb:4a:f8:ee:75:
f5:7e:d9:9e:ed:5a:3f:02:6e:7c:7b:02:94:c3:3d:46:f1:2d:
2a:96:67:70:bd:4f:f8:3c:dd:4d:7f:18:19:2c:b3:09:e3:f5:
e4:50:e2:67:64:9a:51:f6:a5:7b:43:60:b0:c7:8e:e8:5d:d7:
f2:1b:b8:00:3f:0d:a8:60:85:6b:56:38:f4:a8:79:9c:23:72:
95:3f:8f:2d:4d:8c:00:54:6c:91:7b:c2:51:77:3f:52:1f:7f:
f3:ff:00:83:e6:cb:bf:35:14:a8:a9:e3:9f:d1:f7:60:a9:46:
4d:1c:3c:73:be:46:ac:f4:1f:73:27:e8:79:e2:8e:fd:12:4b:
75:f5:91:a3:a1:c0:3d:68:be:31:62:28:de:c4:1d:b1:3f:c1:
03:e3:5c:c7:e6:4f:94:46:9a:e6:c6:2a:8b:41:a0:c3:1f:5d:
45:5f:e0:25:09:ea:a2:50:67:4d:df:27:cc:f9:93:f1:93:0b:
4d:35:38:84:ee:c4:db:73:af:ed:fa:9f:ca:c8:c0:a6:9f:3a:
9a:43:cb:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:17 2024 by rpki-client on console-fra.rpki-client.org