Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/uA7MHGJDeiP9zpappEpjmUCwKn4.roa
File: uA7MHGJDeiP9zpappEpjmUCwKn4.roa (raw, json)
Hash identifier: iTwyWuokFOpJi1ifcIgKaQrKEQBRBS7dfA/srou1t2Q=
Subject key identifier: B8:0E:CC:1C:62:43:7A:23:FD:CE:96:A9:A4:4A:63:99:40:B0:2A:7E
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 41883692
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/uA7MHGJDeiP9zpappEpjmUCwKn4.roa
Signing time: Sat 01 Jan 2022 10:05:57 +0000
ROA not before: Sat 01 Jan 2022 10:05:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5483
IP address blocks: 85.204.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1099445906 (0x41883692)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 1 10:05:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b80ecc1c62437a23fdce96a9a44a639940b02a7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ef:8e:63:d0:f8:6f:ff:ee:f0:73:48:03:77:
15:f1:f5:e4:6a:23:25:22:c7:97:cc:b0:90:00:c2:
d4:b1:88:96:bf:ec:f6:2a:57:7a:cd:bc:ba:65:d8:
d7:8f:09:f6:6f:c0:53:89:ee:6c:9f:79:74:42:91:
a0:28:69:86:11:06:8a:23:93:f4:b3:30:83:62:35:
79:6e:59:7d:ef:ad:19:ec:54:3d:f0:ea:1e:9e:b7:
81:b2:51:1a:77:a0:a1:f5:87:7a:54:36:2d:30:74:
3e:b7:5b:bf:18:21:05:12:21:30:aa:7f:fc:6d:81:
b6:56:05:4a:e7:eb:e0:54:bb:28:49:6d:95:63:4e:
a9:ef:65:54:e8:90:d3:36:3d:5f:99:87:20:36:08:
ed:3b:63:33:15:5a:4c:74:78:5a:a8:00:2f:d8:5a:
54:37:aa:d2:9c:bc:9b:aa:13:9c:b1:5d:e0:1b:39:
7f:b9:7f:42:79:59:f6:42:f8:72:d5:f6:dc:97:f7:
62:ce:57:ec:a4:9f:8a:58:e3:52:e8:bf:69:43:fe:
5c:af:e3:bd:67:73:57:4f:03:e3:0a:e8:09:b4:ca:
71:0d:9e:7f:a7:d1:ed:6a:a5:f1:ea:82:75:78:4d:
eb:3a:21:23:6c:26:46:36:94:7a:0e:37:6d:10:d3:
0b:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:0E:CC:1C:62:43:7A:23:FD:CE:96:A9:A4:4A:63:99:40:B0:2A:7E
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/uA7MHGJDeiP9zpappEpjmUCwKn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.99.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:63:95:a9:75:99:04:36:ba:5c:30:3f:5e:12:ab:8a:c8:22:
73:52:10:a1:13:2d:d2:f2:e6:9c:47:09:d1:0d:6d:c4:a6:96:
27:5a:98:0b:00:62:3e:06:cd:9e:51:f1:5b:5e:57:ac:39:a4:
b0:bd:bc:50:b3:87:6b:46:eb:2f:91:e7:a6:5f:5a:e2:1a:67:
e5:92:e9:c8:d3:96:a5:16:47:b8:89:4f:56:a4:8b:46:21:23:
7b:a5:a8:47:c8:cc:34:2a:77:26:42:d6:6c:4b:c0:1d:8a:8e:
ea:44:b1:13:b4:2a:35:3f:89:33:6f:56:f6:1f:ad:b8:72:f1:
c6:95:5d:d6:3e:37:ee:0f:b5:03:97:7c:4a:01:55:ab:dc:84:
97:55:e9:0d:d8:56:ae:3e:20:2a:01:12:23:05:dc:62:6e:5c:
85:56:f8:81:6d:41:dc:11:80:f9:7d:c7:c7:9c:25:22:d4:6a:
68:7d:2e:ed:10:82:50:ee:f5:49:36:da:59:4d:14:98:4c:2e:
44:e4:41:4c:06:4a:b0:ae:3e:34:83:b5:19:a3:95:11:dc:aa:
4d:35:e0:02:6d:8b:ba:b1:79:58:51:9c:73:c2:41:10:44:c1:
b1:a1:fd:bd:8c:f7:bc:93:dd:f4:ba:02:d1:a6:85:32:b7:fd:
97:e6:93:8a
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEQYg2kjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
OGU2MjYzNGUxYmQ1MTMzYTlkZTQ1MTJhZTk4Y2FkMWIyMjE5YjU5MB4XDTIyMDEw
MTEwMDU1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjgwZWNjMWM2MjQz
N2EyM2ZkY2U5NmE5YTQ0YTYzOTk0MGIwMmE3ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMrvjmPQ+G//7vBzSAN3FfH15GojJSLHl8ywkADC1LGIlr/s
9ipXes28umXY148J9m/AU4nubJ95dEKRoChphhEGiiOT9LMwg2I1eW5Zfe+tGexU
PfDqHp63gbJRGnegofWHelQ2LTB0PrdbvxghBRIhMKp//G2BtlYFSufr4FS7KElt
lWNOqe9lVOiQ0zY9X5mHIDYI7TtjMxVaTHR4WqgAL9haVDeq0py8m6oTnLFd4Bs5
f7l/QnlZ9kL4ctX23Jf3Ys5X7KSfiljjUui/aUP+XK/jvWdzV08D4wroCbTKcQ2e
f6fR7Wql8eqCdXhN6zohI2wmRjaUeg43bRDTC/UCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBS4DswcYkN6I/3OlqmkSmOZQLAqfjAfBgNVHSMEGDAWgBT45iY04b1RM6ne
RRKumMrRsiGbWTAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzc4L2RhMzM5OC02Njk4LTQ1ZjItYmFhZS05MmUyNWZlMTYzMzEv
MS91QTdNSEdKRGVpUDl6cGFwcEVwam1VQ3dLbjQucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc4
L2RhMzM5OC02Njk4LTQ1ZjItYmFhZS05MmUyNWZlMTYzMzEvMS8xLU9ZbU5PRzlV
VE9wM2tVU3JwakswYklobTFrLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVcxjMA0GCSqGSIb3DQEBCwUA
A4IBAQBdY5WpdZkENrpcMD9eEquKyCJzUhChEy3S8uacRwnRDW3EppYnWpgLAGI+
Bs2eUfFbXlesOaSwvbxQs4drRusvkeemX1riGmflkunI05alFke4iU9WpItGISN7
pahHyMw0KncmQtZsS8Adio7qRLETtCo1P4kzb1b2H624cvHGlV3WPjfuD7UDl3xK
AVWr3ISXVekN2FauPiAqARIjBdxiblyFVviBbUHcEYD5fcfHnCUi1GpofS7tEIJQ
7vVJNtpZTRSYTC5E5EFMBkqwrj40g7UZo5UR3KpNNeACbYu6sXlYUZxzwkEQRMGx
of29jPe8k930ugLRpoUyt/2X5pOK
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org