Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/UDa_d4AiRUjrAmF_1ygrmU7QyqI.roa
File: UDa_d4AiRUjrAmF_1ygrmU7QyqI.roa (raw, json)
Hash identifier: T6eb7K10monW5nBw+ctID/xjYuURmK6VSnwbhlYrYug=
Subject key identifier: 50:36:BF:77:80:22:45:48:EB:02:61:7F:D7:28:2B:99:4E:D0:CA:A2
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 449826FD
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/UDa_d4AiRUjrAmF_1ygrmU7QyqI.roa
Signing time: Sat 01 Jan 2022 03:58:42 +0000
ROA not before: Sat 01 Jan 2022 03:58:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209092
IP address blocks: 90.85.36.0/24 maxlen: 24
217.108.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1150822141 (0x449826fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 03:58:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5036bf7780224548eb02617fd7282b994ed0caa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fc:2c:34:f7:8a:77:b5:8e:54:f8:d3:2f:8c:
77:00:d5:b4:f7:99:27:0a:dc:1e:28:1f:3f:6d:72:
26:05:62:39:a1:58:53:2f:30:f3:b8:5c:60:21:7a:
8b:0e:8c:1b:8f:34:ed:d3:68:8c:2f:3d:92:9c:50:
2a:e3:42:51:85:98:44:fe:04:b5:29:c9:cc:16:36:
9c:e8:51:01:6a:48:01:b4:f3:ec:b0:1a:7c:a2:2a:
e0:f1:dd:69:02:9e:de:6f:a9:a0:66:04:37:62:48:
02:bb:ea:53:2a:08:17:c8:2b:da:a0:cb:6b:9c:b8:
74:3d:e7:a3:91:d4:15:ad:a1:a8:99:ae:bc:cc:33:
a2:1e:6f:4a:6b:17:83:6c:41:a0:eb:b5:40:9a:ef:
0a:40:d4:a0:b6:8e:81:19:7e:cb:85:3c:1b:32:bc:
f9:cd:cc:4b:76:b0:7e:8a:05:e5:f0:17:a7:35:7f:
94:80:60:ba:54:62:17:c1:a8:93:33:02:3b:67:c9:
40:fa:6e:09:77:b9:e6:b7:a9:d8:5a:5f:ce:de:01:
2b:78:c6:16:03:36:ec:7d:dc:aa:54:aa:6c:24:7f:
b5:b0:0b:78:44:4d:08:ee:0f:01:b5:73:7f:3c:87:
73:24:b4:60:66:8e:6a:b2:30:c9:1d:30:ee:84:d2:
0c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:36:BF:77:80:22:45:48:EB:02:61:7F:D7:28:2B:99:4E:D0:CA:A2
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/UDa_d4AiRUjrAmF_1ygrmU7QyqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.85.36.0/24
217.108.85.0/24
Signature Algorithm: sha256WithRSAEncryption
96:fd:33:96:08:ae:78:08:51:7d:45:eb:48:f9:7c:f7:61:00:
1a:ff:02:50:59:7a:4e:b0:88:38:16:ac:11:65:fa:78:42:d5:
df:c4:3e:7b:96:56:ff:f5:b0:51:2a:10:5b:8c:ae:8f:ea:63:
42:1d:6b:dc:bb:fd:fa:43:17:00:5d:e7:27:59:68:42:34:48:
36:fc:20:7b:0d:1e:15:25:06:fd:40:1d:23:4a:77:57:88:7c:
2e:c9:86:e5:60:79:ef:da:1b:cd:b2:bd:a3:0e:8f:b0:34:27:
01:bf:76:41:11:99:8f:1e:52:64:e4:eb:cd:fe:46:4c:80:20:
3d:43:ce:05:55:0f:85:06:ee:3a:84:fe:c7:1f:6d:97:3c:66:
a1:d3:0a:c8:25:99:a2:1f:c6:12:f5:ac:7e:c5:d4:67:22:8c:
00:4c:0b:20:5b:1d:1b:3d:29:e4:89:09:d6:06:55:b9:ca:36:
95:91:3d:71:4c:0a:11:90:70:a1:96:8a:26:2f:3c:cc:68:42:
0e:49:3b:fc:5a:4d:07:15:4b:29:6b:c7:af:ce:97:3e:13:82:
69:e7:ae:b9:03:7d:2a:dd:de:7d:f2:67:02:71:5b:ad:23:bc:
6f:6c:72:a7:c9:35:a2:de:d6:8e:d4:6e:67:75:07:84:e6:dd:
9d:cd:98:79
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIERJgm/TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YWYwOWJhMzNiNWFlNTgxYjBkMjkzMjMyNDkzMTRmNzZhYTEwNTExMB4XDTIyMDEw
MTAzNTg0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTAzNmJmNzc4MDIy
NDU0OGViMDI2MTdmZDcyODJiOTk0ZWQwY2FhMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALv8LDT3ine1jlT40y+MdwDVtPeZJwrcHigfP21yJgViOaFY
Uy8w87hcYCF6iw6MG4807dNojC89kpxQKuNCUYWYRP4EtSnJzBY2nOhRAWpIAbTz
7LAafKIq4PHdaQKe3m+poGYEN2JIArvqUyoIF8gr2qDLa5y4dD3no5HUFa2hqJmu
vMwzoh5vSmsXg2xBoOu1QJrvCkDUoLaOgRl+y4U8GzK8+c3MS3awfooF5fAXpzV/
lIBgulRiF8GokzMCO2fJQPpuCXe55rep2Fpfzt4BK3jGFgM27H3cqlSqbCR/tbAL
eERNCO4PAbVzfzyHcyS0YGaOarIwyR0w7oTSDDsCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRQNr93gCJFSOsCYX/XKCuZTtDKojAfBgNVHSMEGDAWgBQ68JujO1rlgbDS
kyMkkxT3aqEFETAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L092Q2JvenRhNVlHdzBwTWpKSk1VOTJxaEJSRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmIvMzNkNWQxLWM0NTAtNDEzYi1hZmU0LTQ1OTM1ZjUwNmExMi8x
L1VEYV9kNEFpUlVqckFtRl8xeWdybVU3UXlxSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmIv
MzNkNWQxLWM0NTAtNDEzYi1hZmU0LTQ1OTM1ZjUwNmExMi8xL092Q2JvenRhNVlH
dzBwTWpKSk1VOTJxaEJSRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFpVJAMEANlsVTANBgkqhkiG9w0B
AQsFAAOCAQEAlv0zlgiueAhRfUXrSPl892EAGv8CUFl6TrCIOBasEWX6eELV38Q+
e5ZW//WwUSoQW4yuj+pjQh1r3Lv9+kMXAF3nJ1loQjRINvwgew0eFSUG/UAdI0p3
V4h8LsmG5WB579obzbK9ow6PsDQnAb92QRGZjx5SZOTrzf5GTIAgPUPOBVUPhQbu
OoT+xx9tlzxmodMKyCWZoh/GEvWsfsXUZyKMAEwLIFsdGz0p5IkJ1gZVuco2lZE9
cUwKEZBwoZaKJi88zGhCDkk7/FpNBxVLKWvHr86XPhOCaeeuuQN9Kt3effJnAnFb
rSO8b2xyp8k1ot7WjtRuZ3UHhObdnc2YeQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org