Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/b13164-2fc3-4e31-bfc3-c58c5393cff8/1/uuW77kLX1Pop30gaxPlsUUH8AOA.roa
File: uuW77kLX1Pop30gaxPlsUUH8AOA.roa (raw, json)
Hash identifier: qkgQ82s2A46KNvh+l8FVGFN3J6pTGFwWjEnJcooDM7Q=
Subject key identifier: BA:E5:BB:EE:42:D7:D4:FA:29:DF:48:1A:C4:F9:6C:51:41:FC:00:E0
Certificate issuer: /CN=570d1b39385a3ded1ef063d1a1be93593b71fc2e
Certificate serial: 133DB939
Authority key identifier: 57:0D:1B:39:38:5A:3D:ED:1E:F0:63:D1:A1:BE:93:59:3B:71:FC:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vw0bOThaPe0e8GPRob6TWTtx_C4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/b13164-2fc3-4e31-bfc3-c58c5393cff8/1/uuW77kLX1Pop30gaxPlsUUH8AOA.roa
Signing time: Sat 01 Jan 2022 16:04:49 +0000
ROA not before: Sat 01 Jan 2022 16:04:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31102
IP address blocks: 195.225.140.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 322812217 (0x133db939)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=570d1b39385a3ded1ef063d1a1be93593b71fc2e
Validity
Not Before: Jan 1 16:04:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bae5bbee42d7d4fa29df481ac4f96c5141fc00e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:97:85:e6:df:ee:7e:26:61:3f:47:13:e5:5f:
3a:ac:ce:53:06:62:1f:cf:8a:00:8b:7f:80:00:19:
e6:d2:c2:44:19:99:36:f7:eb:e4:d8:49:f6:39:af:
27:5e:ab:2d:aa:97:49:32:77:18:c9:2f:19:cc:53:
36:43:24:d4:1d:9e:61:25:96:c0:f6:bd:b0:d0:98:
4b:06:91:e5:87:9d:e9:8d:a2:80:33:ce:40:8b:7f:
02:1f:9c:a0:12:98:c9:e1:74:f4:50:d1:a7:b7:d9:
9f:04:8b:2f:f7:80:84:42:83:ba:75:29:4c:ee:8d:
d7:e9:7d:fc:ef:8f:0f:35:7b:b1:04:fa:aa:60:79:
a7:78:df:6f:ff:dd:7c:e6:3a:2c:77:81:00:15:ae:
fa:be:68:a9:87:73:c2:c3:f9:71:0c:2c:3c:4b:5d:
c0:4f:3b:0b:3e:a3:b3:aa:89:72:2a:f4:0a:a3:57:
10:f4:0b:1d:e4:ef:d0:06:a6:73:81:a5:d0:6f:49:
05:f9:16:56:81:4b:98:5b:d0:08:ba:bb:2b:75:08:
31:84:c4:34:07:43:ad:59:16:dd:50:29:db:63:af:
ed:00:88:7f:55:70:13:c7:70:28:4a:9f:e7:33:a3:
90:8f:9d:94:d6:bb:3a:3d:c6:bb:c9:2e:32:bc:a9:
75:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:E5:BB:EE:42:D7:D4:FA:29:DF:48:1A:C4:F9:6C:51:41:FC:00:E0
X509v3 Authority Key Identifier:
keyid:57:0D:1B:39:38:5A:3D:ED:1E:F0:63:D1:A1:BE:93:59:3B:71:FC:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vw0bOThaPe0e8GPRob6TWTtx_C4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/b13164-2fc3-4e31-bfc3-c58c5393cff8/1/uuW77kLX1Pop30gaxPlsUUH8AOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/b13164-2fc3-4e31-bfc3-c58c5393cff8/1/Vw0bOThaPe0e8GPRob6TWTtx_C4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.225.140.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:8b:3b:32:72:c1:41:78:44:b4:4a:38:70:65:12:73:af:67:
3a:69:1f:62:bd:8a:ca:79:52:4d:d5:c7:83:f4:ec:73:e6:f1:
ac:f2:e0:fe:11:7f:80:f7:b3:26:ea:4b:01:66:e7:97:fa:83:
5e:15:8b:ae:07:4c:6b:98:e9:88:af:eb:9f:f7:ba:2e:95:16:
96:bc:68:a1:80:5f:d4:b0:e5:38:d2:b5:f3:fe:75:04:a2:cd:
ec:75:c2:0f:75:75:a4:d4:85:26:4b:b9:6a:c7:b1:ee:18:5f:
d5:2e:b9:3a:eb:d8:81:21:6c:cc:0f:53:97:8d:8f:be:84:b3:
be:42:cd:c3:a7:e2:4c:4a:6b:52:78:be:d2:2d:26:46:64:da:
db:74:7e:59:09:a6:c4:5b:1a:aa:45:a9:cd:bc:7b:f4:80:fc:
d5:69:1c:80:5b:ac:ad:7c:a1:60:7f:01:5b:24:e3:5b:94:c7:
83:29:8a:59:48:a6:21:a8:b2:25:38:e5:52:1d:e3:11:f5:2f:
01:7d:d6:34:18:d1:a5:b5:cd:a2:5f:a2:6e:88:6a:e5:06:b5:
02:ec:2f:66:d3:d2:c2:7a:6e:fd:8b:8e:27:1b:e4:28:16:d6:
d9:9e:da:8d:47:6d:50:fe:6a:0d:d2:2f:ec:35:ce:f5:14:2d:
39:e5:f6:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:34 2023 by rpki-client on console.sobornost.net