Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1b7635-e6ff-4969-b2c0-89fb8fe69633/1/Uw6HvtktVdyZC4SYez7G4p0jDGg.roa
File: Uw6HvtktVdyZC4SYez7G4p0jDGg.roa (raw, json)
Hash identifier: tFlReTkEL+sNjt0A5PO9OQzeJY53/2SGp/jZWqhe4t0=
Subject key identifier: 53:0E:87:BE:D9:2D:55:DC:99:0B:84:98:7B:3E:C6:E2:9D:23:0C:68
Certificate issuer: /CN=9ba90d66d2ddeb646a61406912ffddfa14e39910
Certificate serial: 074B61F9
Authority key identifier: 9B:A9:0D:66:D2:DD:EB:64:6A:61:40:69:12:FF:DD:FA:14:E3:99:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m6kNZtLd62RqYUBpEv_d-hTjmRA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1b7635-e6ff-4969-b2c0-89fb8fe69633/1/Uw6HvtktVdyZC4SYez7G4p0jDGg.roa
Signing time: Sat 01 Jan 2022 10:56:56 +0000
ROA not before: Sat 01 Jan 2022 10:56:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197540
IP address blocks: 5.182.200.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122380793 (0x74b61f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ba90d66d2ddeb646a61406912ffddfa14e39910
Validity
Not Before: Jan 1 10:56:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=530e87bed92d55dc990b84987b3ec6e29d230c68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:91:49:89:6f:bb:d5:c8:7d:37:91:ac:99:ff:
03:55:c5:58:26:5c:a0:21:68:b1:ae:d5:ec:24:d4:
a7:4c:c4:29:a7:34:1e:f5:63:a2:c4:ee:2c:3b:68:
9b:33:05:e6:db:a6:ba:fe:d3:f8:0f:ec:40:03:02:
6a:bf:b5:7b:24:cf:97:79:08:ec:9f:91:f0:8c:1c:
11:5e:78:c5:50:e2:52:10:8c:1a:04:a1:0a:b8:9b:
24:c2:2c:7a:09:eb:cf:8f:96:40:25:f0:2a:6d:75:
d2:90:bb:b3:fd:ef:31:99:c2:e0:52:9a:4e:e1:24:
bf:6c:e1:7b:a6:09:58:47:20:04:19:3a:d1:1c:74:
ac:30:47:3b:ee:5d:f4:f4:15:ba:9d:60:d1:23:bf:
75:10:7a:3f:a3:5d:52:96:14:18:aa:92:b3:9b:49:
7b:dc:fe:d6:7d:58:17:d1:24:a1:98:c3:f9:e5:99:
4d:80:5d:e3:b2:c8:49:35:00:5a:5d:29:61:00:c4:
a9:0c:c4:38:fb:63:8d:2a:c1:20:2a:50:7c:b5:0a:
c6:24:ce:2b:b3:ac:a8:f9:3e:c5:d2:6e:f9:da:00:
e6:89:13:8a:8d:31:3d:10:d1:dd:d2:4e:af:74:97:
b3:85:e5:63:5c:14:78:cf:a7:61:ce:72:d2:f5:56:
4b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:0E:87:BE:D9:2D:55:DC:99:0B:84:98:7B:3E:C6:E2:9D:23:0C:68
X509v3 Authority Key Identifier:
keyid:9B:A9:0D:66:D2:DD:EB:64:6A:61:40:69:12:FF:DD:FA:14:E3:99:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m6kNZtLd62RqYUBpEv_d-hTjmRA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1b7635-e6ff-4969-b2c0-89fb8fe69633/1/Uw6HvtktVdyZC4SYez7G4p0jDGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1b7635-e6ff-4969-b2c0-89fb8fe69633/1/m6kNZtLd62RqYUBpEv_d-hTjmRA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.200.0/23
Signature Algorithm: sha256WithRSAEncryption
d8:e5:2f:b2:15:87:23:cc:9a:42:75:fc:4c:e9:e8:7c:84:3f:
53:d6:85:8b:b3:a7:46:08:12:e7:c1:4b:f8:f7:ca:0a:55:ae:
6f:ad:42:ef:84:db:13:61:ce:c9:7c:ea:0a:d4:85:8a:a8:00:
72:50:80:95:96:14:17:c5:9c:32:03:2d:59:86:db:ae:ca:94:
11:73:4a:90:18:d7:ce:19:4d:fb:5c:43:e3:44:1d:07:b4:6d:
b2:2a:fe:30:f6:59:d2:93:2d:bc:31:cc:d9:fa:5f:cf:51:af:
6a:f2:78:95:a9:0a:e8:c1:90:02:dc:3f:55:b1:be:10:34:bb:
8e:fb:66:7a:9e:51:0c:aa:ec:5e:74:e6:35:ca:ca:b2:c5:e9:
78:92:bc:02:dd:2a:92:e7:4a:04:8c:c9:20:1e:d8:24:e9:3a:
0a:17:5a:15:f4:ab:2a:88:58:58:7e:99:ba:8e:a9:24:f7:45:
77:63:15:9c:dc:3e:ec:b7:4d:60:50:b0:ee:46:69:c4:f8:b9:
82:81:f5:dc:4a:90:78:26:b7:f8:f5:d1:ae:5a:c7:02:52:43:
4e:2f:cb:51:cb:f9:65:a8:ad:22:1d:e6:1a:b5:ff:c7:87:16:
e7:e0:dd:77:8b:13:4f:30:0f:2d:b0:d0:49:01:29:02:f9:52:
7c:69:e5:be
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB0th+TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
YmE5MGQ2NmQyZGRlYjY0NmE2MTQwNjkxMmZmZGRmYTE0ZTM5OTEwMB4XDTIyMDEw
MTEwNTY1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTMwZTg3YmVkOTJk
NTVkYzk5MGI4NDk4N2IzZWM2ZTI5ZDIzMGM2ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK2RSYlvu9XIfTeRrJn/A1XFWCZcoCFosa7V7CTUp0zEKac0
HvVjosTuLDtomzMF5tumuv7T+A/sQAMCar+1eyTPl3kI7J+R8IwcEV54xVDiUhCM
GgShCribJMIsegnrz4+WQCXwKm110pC7s/3vMZnC4FKaTuEkv2zhe6YJWEcgBBk6
0Rx0rDBHO+5d9PQVup1g0SO/dRB6P6NdUpYUGKqSs5tJe9z+1n1YF9EkoZjD+eWZ
TYBd47LISTUAWl0pYQDEqQzEOPtjjSrBICpQfLUKxiTOK7OsqPk+xdJu+doA5okT
io0xPRDR3dJOr3SXs4XlY1wUeM+nYc5y0vVWS6sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRTDoe+2S1V3JkLhJh7PsbinSMMaDAfBgNVHSMEGDAWgBSbqQ1m0t3rZGph
QGkS/936FOOZEDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L202a05adExkNjJScVlVQnBFdl9kLWhUam1SQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDgvMWI3NjM1LWU2ZmYtNDk2OS1iMmMwLTg5ZmI4ZmU2OTYzMy8x
L1V3Nkh2dGt0VmR5WkM0U1llejdHNHAwakRHZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDgv
MWI3NjM1LWU2ZmYtNDk2OS1iMmMwLTg5ZmI4ZmU2OTYzMy8xL202a05adExkNjJS
cVlVQnBFdl9kLWhUam1SQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAQW2yDANBgkqhkiG9w0BAQsFAAOC
AQEA2OUvshWHI8yaQnX8TOnofIQ/U9aFi7OnRggS58FL+PfKClWub61C74TbE2HO
yXzqCtSFiqgAclCAlZYUF8WcMgMtWYbbrsqUEXNKkBjXzhlN+1xD40QdB7Rtsir+
MPZZ0pMtvDHM2fpfz1GvavJ4lakK6MGQAtw/VbG+EDS7jvtmep5RDKrsXnTmNcrK
ssXpeJK8At0qkudKBIzJIB7YJOk6ChdaFfSrKohYWH6Zuo6pJPdFd2MVnNw+7LdN
YFCw7kZpxPi5goH13EqQeCa3+PXRrlrHAlJDTi/LUcv5ZaitIh3mGrX/x4cW5+Dd
d4sTTzAPLbDQSQEpAvlSfGnlvg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:55 2024 by rpki-client on console-fra.rpki-client.org