Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/QUzReizTSVf_YV722eMDr_urd24.roa
File: QUzReizTSVf_YV722eMDr_urd24.roa (raw, json)
Hash identifier: yxb8oIvgRn/w3EwWcchnI9bOos5hNY5i7m9/OPE5Utk=
Subject key identifier: 41:4C:D1:7A:2C:D3:49:57:FF:61:5E:F6:D9:E3:03:AF:FB:AB:77:6E
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B1E6902
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/QUzReizTSVf_YV722eMDr_urd24.roa
Signing time: Sat 01 Jan 2022 13:58:15 +0000
ROA not before: Sat 01 Jan 2022 13:58:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208817
IP address blocks: 85.202.60.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 723413250 (0x2b1e6902)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:58:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=414cd17a2cd34957ff615ef6d9e303affbab776e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a5:9e:87:c5:04:0b:64:41:99:09:12:b3:2f:
19:9f:e2:54:7f:c8:a4:15:8e:a6:af:18:91:50:6b:
ba:6b:42:d4:57:40:7c:44:cf:b4:68:c7:e2:99:e4:
62:45:29:4f:9b:9a:80:00:63:31:33:2d:98:99:92:
5b:23:43:a7:d2:0d:b4:a6:f9:77:23:cf:2f:4a:f8:
a0:af:65:5c:d4:47:30:a8:96:fb:62:0e:bc:97:75:
0d:ca:39:3e:f8:76:eb:68:11:47:59:cf:02:46:6b:
28:10:c9:c9:02:18:0e:a4:da:03:8a:a2:ba:b0:58:
88:8a:15:f4:e7:87:92:55:49:be:f8:63:0d:60:46:
36:5f:5d:9b:03:17:a4:e1:b9:47:bf:45:93:20:f7:
cc:ba:af:c9:d2:21:6a:f5:5b:b2:5a:ac:88:41:01:
03:ff:6a:03:7b:99:36:3d:ac:01:c8:2b:58:8f:13:
0b:4d:22:1d:a6:0f:2b:01:0d:7c:ae:9b:20:a6:03:
a7:90:13:80:b4:64:cc:15:cd:e7:86:34:b1:86:f2:
86:ae:97:fe:52:e4:61:01:e9:5f:72:3e:eb:c9:13:
fd:06:97:5c:6e:3d:7b:07:49:9b:4e:33:fc:db:b6:
32:1f:e0:10:9c:7d:29:62:64:dd:03:35:62:0f:99:
ad:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:4C:D1:7A:2C:D3:49:57:FF:61:5E:F6:D9:E3:03:AF:FB:AB:77:6E
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/QUzReizTSVf_YV722eMDr_urd24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.202.60.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:0e:12:2e:86:a9:60:1b:c4:56:26:3d:bc:41:b8:62:fd:57:
5d:ed:0c:eb:0b:37:f0:32:b4:92:22:90:f4:25:88:7b:e8:27:
91:db:c2:20:46:b7:d1:47:05:f8:3a:40:1f:bc:49:91:2e:71:
69:91:46:2c:de:be:08:2f:04:a1:b9:a8:9d:3f:6c:5a:09:d5:
cd:44:ea:9c:ae:a9:e6:80:59:e2:2e:d2:72:83:2c:0e:9e:7e:
bc:bd:3c:4c:38:64:30:54:18:d3:9a:ef:39:94:a5:e0:8f:df:
b3:26:04:05:8c:9a:3e:8d:10:44:72:39:56:58:93:c2:23:6a:
14:bc:1b:4b:bd:50:74:13:73:e5:d9:f4:46:4f:ab:bd:b6:da:
ed:ca:d8:e5:32:25:cf:3e:29:8b:d6:e5:6a:94:05:c1:fa:5d:
d1:8d:32:82:44:34:ea:99:47:38:6a:82:ee:d9:86:7c:2c:33:
23:0c:e7:c2:1b:a8:65:dc:fd:e6:d5:ee:7b:44:9a:c9:3a:fd:
9e:b8:aa:4a:7d:cd:ee:cd:a1:67:d3:81:2f:b0:2e:0a:6c:33:
1e:45:6d:99:47:9e:76:24:57:56:eb:8b:4e:cc:2b:52:73:c8:
a5:ca:fb:47:c0:22:c5:cd:f8:a3:e7:da:37:eb:47:6e:f5:14:
21:ba:94:5a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEKx5pAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
OTk1NDQ5OTk3NzI3OGE3NTU3MGIzNDAzZjRkM2FhMDBiMWIzNmU4MB4XDTIyMDEw
MTEzNTgxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDE0Y2QxN2EyY2Qz
NDk1N2ZmNjE1ZWY2ZDllMzAzYWZmYmFiNzc2ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJKlnofFBAtkQZkJErMvGZ/iVH/IpBWOpq8YkVBrumtC1FdA
fETPtGjH4pnkYkUpT5uagABjMTMtmJmSWyNDp9INtKb5dyPPL0r4oK9lXNRHMKiW
+2IOvJd1Dco5Pvh262gRR1nPAkZrKBDJyQIYDqTaA4qiurBYiIoV9OeHklVJvvhj
DWBGNl9dmwMXpOG5R79FkyD3zLqvydIhavVbslqsiEEBA/9qA3uZNj2sAcgrWI8T
C00iHaYPKwENfK6bIKYDp5ATgLRkzBXN54Y0sYbyhq6X/lLkYQHpX3I+68kT/QaX
XG49ewdJm04z/Nu2Mh/gEJx9KWJk3QM1Yg+ZrasCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRBTNF6LNNJV/9hXvbZ4wOv+6t3bjAfBgNVHSMEGDAWgBS5lUSZl3J4p1Vw
s0A/TTqgCxs26DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VaVkVtWmR5ZUtkVmNMTkFQMDA2b0FzYk51Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDcvNzg4ODAzLWJlMTItNDMzZi1hOGQwLTAyNGIxNjU1YzI0Ny8x
L1FVelJlaXpUU1ZmX1lWNzIyZU1Ecl91cmQyNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDcv
Nzg4ODAzLWJlMTItNDMzZi1hOGQwLTAyNGIxNjU1YzI0Ny8xL3VaVkVtWmR5ZUtk
VmNMTkFQMDA2b0FzYk51Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAlXKPDANBgkqhkiG9w0BAQsFAAOC
AQEACw4SLoapYBvEViY9vEG4Yv1XXe0M6ws38DK0kiKQ9CWIe+gnkdvCIEa30UcF
+DpAH7xJkS5xaZFGLN6+CC8EobmonT9sWgnVzUTqnK6p5oBZ4i7ScoMsDp5+vL08
TDhkMFQY05rvOZSl4I/fsyYEBYyaPo0QRHI5VliTwiNqFLwbS71QdBNz5dn0Rk+r
vbba7crY5TIlzz4pi9blapQFwfpd0Y0ygkQ06plHOGqC7tmGfCwzIwznwhuoZdz9
5tXue0SayTr9nriqSn3N7s2hZ9OBL7AuCmwzHkVtmUeediRXVuuLTswrUnPIpcr7
R8Aixc34o+faN+tHbvUUIbqUWg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org