Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9eed05-1477-4f05-8ae3-618e89b12c41/1/U9PWsUqvs12hNINIuJTRfSguDFk.roa
File: U9PWsUqvs12hNINIuJTRfSguDFk.roa (raw, json)
Hash identifier: ZOjQh+8YOp20BCaDnyX2ilsobX+R0DebJ5rjUwRYeYM=
Subject key identifier: 53:D3:D6:B1:4A:AF:B3:5D:A1:34:83:48:B8:94:D1:7D:28:2E:0C:59
Certificate issuer: /CN=5b1d228b6acbd1803cff560fa4b42f832d28324f
Certificate serial: 0A38C2B1
Authority key identifier: 5B:1D:22:8B:6A:CB:D1:80:3C:FF:56:0F:A4:B4:2F:83:2D:28:32:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wx0ii2rL0YA8_1YPpLQvgy0oMk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9eed05-1477-4f05-8ae3-618e89b12c41/1/U9PWsUqvs12hNINIuJTRfSguDFk.roa
Signing time: Sat 01 Jan 2022 03:54:22 +0000
ROA not before: Sat 01 Jan 2022 03:54:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2418
IP address blocks: 192.54.175.0/24 maxlen: 24
192.54.176.0/24 maxlen: 24
192.54.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171492017 (0xa38c2b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b1d228b6acbd1803cff560fa4b42f832d28324f
Validity
Not Before: Jan 1 03:54:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53d3d6b14aafb35da1348348b894d17d282e0c59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a3:15:da:ab:73:46:34:e5:70:a3:5a:d7:8b:
b1:70:e8:57:58:e3:26:31:ef:5c:ee:7d:28:cc:d4:
34:26:f5:f6:3b:b2:5c:d6:e7:da:47:55:3b:bf:41:
c5:9d:f1:d6:ee:bf:de:66:95:f4:40:75:5d:c2:94:
7c:62:da:c9:3b:78:c8:d1:30:60:88:d7:69:09:3d:
e8:a8:1e:b3:58:25:bb:61:e5:74:1a:9d:1f:0f:70:
b5:5f:44:5c:fc:23:3f:9a:f7:39:6a:2b:bf:51:b3:
71:54:25:9a:4f:0c:20:11:0a:ca:ab:21:cc:34:60:
3e:8b:13:dd:d0:e1:b9:47:82:ea:63:de:55:36:ec:
f2:a4:7a:64:8b:ad:cd:b3:ee:54:2d:c6:ec:71:b5:
d5:36:27:6c:fa:01:74:c3:98:49:ab:98:da:a8:db:
95:4d:34:1f:33:9b:7e:f6:92:e7:18:2e:6e:69:f4:
38:9c:17:04:0b:90:2c:fb:e4:69:15:5d:65:76:cd:
12:20:df:f3:39:04:51:0a:9e:45:50:06:f8:8e:86:
91:ba:4c:d6:d0:51:6a:aa:a0:0a:3b:1d:89:dc:4a:
f3:f4:36:c8:9d:5a:a5:d6:bc:6a:2b:2e:7d:f3:aa:
fb:fe:22:c8:37:6e:e9:87:fd:fb:81:25:1a:cd:b2:
16:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:D3:D6:B1:4A:AF:B3:5D:A1:34:83:48:B8:94:D1:7D:28:2E:0C:59
X509v3 Authority Key Identifier:
keyid:5B:1D:22:8B:6A:CB:D1:80:3C:FF:56:0F:A4:B4:2F:83:2D:28:32:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wx0ii2rL0YA8_1YPpLQvgy0oMk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9eed05-1477-4f05-8ae3-618e89b12c41/1/U9PWsUqvs12hNINIuJTRfSguDFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9eed05-1477-4f05-8ae3-618e89b12c41/1/Wx0ii2rL0YA8_1YPpLQvgy0oMk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.54.174.0-192.54.176.255
Signature Algorithm: sha256WithRSAEncryption
35:11:a1:2d:1e:92:7c:33:7d:9b:9c:ee:ec:ac:42:4c:1e:d0:
cf:31:81:05:bc:29:46:9d:17:8b:26:12:ac:02:4f:c6:63:36:
d1:38:e8:3b:c0:f1:a0:5e:ed:0f:9d:10:1d:2b:25:80:9d:7d:
49:d0:db:39:5e:22:53:cb:6c:51:61:e9:85:26:86:df:8a:c1:
3a:70:b8:5b:a7:d2:55:d7:52:c0:23:3d:0f:7d:bb:db:2e:1a:
7d:ce:91:d3:3d:07:13:d0:46:23:d0:bb:39:e6:9e:8e:87:07:
fe:5d:37:69:65:7a:cf:d1:ca:d0:8a:b3:d6:7e:2f:fc:60:32:
c3:01:af:88:9d:a4:56:99:94:80:ad:20:03:1c:94:9a:e4:92:
fc:52:d4:25:dd:cd:d3:18:ff:d6:63:0a:c3:8c:d9:f2:e9:09:
c8:4c:ed:cb:93:42:bc:ff:85:ec:91:db:61:18:be:6a:c2:31:
ce:bd:0c:33:bc:f1:7b:3d:06:c4:ef:a5:a1:69:64:55:3c:49:
d1:4d:71:83:f7:d8:cd:95:5e:ef:7b:47:99:3b:a3:85:dd:9c:
ce:33:fb:dc:b8:4a:94:db:df:9a:1c:2d:87:67:7f:7e:0a:ff:
8b:45:1b:53:eb:ad:f7:bd:69:e4:dc:0f:a8:ad:13:d7:f4:ee:
05:e7:c9:c9
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIECjjCsTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
YjFkMjI4YjZhY2JkMTgwM2NmZjU2MGZhNGI0MmY4MzJkMjgzMjRmMB4XDTIyMDEw
MTAzNTQyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTNkM2Q2YjE0YWFm
YjM1ZGExMzQ4MzQ4Yjg5NGQxN2QyODJlMGM1OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANijFdqrc0Y05XCjWteLsXDoV1jjJjHvXO59KMzUNCb19juy
XNbn2kdVO79BxZ3x1u6/3maV9EB1XcKUfGLayTt4yNEwYIjXaQk96Kges1glu2Hl
dBqdHw9wtV9EXPwjP5r3OWorv1GzcVQlmk8MIBEKyqshzDRgPosT3dDhuUeC6mPe
VTbs8qR6ZIutzbPuVC3G7HG11TYnbPoBdMOYSauY2qjblU00HzObfvaS5xgubmn0
OJwXBAuQLPvkaRVdZXbNEiDf8zkEUQqeRVAG+I6GkbpM1tBRaqqgCjsdidxK8/Q2
yJ1apda8aisuffOq+/4iyDdu6Yf9+4ElGs2yFhECAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBRT09axSq+zXaE0g0i4lNF9KC4MWTAfBgNVHSMEGDAWgBRbHSKLasvRgDz/
Vg+ktC+DLSgyTzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1d4MGlpMnJMMFlBOF8xWVBwTFF2Z3kwb01rOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTgvOWVlZDA1LTE0NzctNGYwNS04YWUzLTYxOGU4OWIxMmM0MS8x
L1U5UFdzVXF2czEyaE5JTkl1SlRSZlNndURGay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTgv
OWVlZDA1LTE0NzctNGYwNS04YWUzLTYxOGU4OWIxMmM0MS8xL1d4MGlpMnJMMFlB
OF8xWVBwTFF2Z3kwb01rOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQBwDauAwQAwDawMA0GCSqGSIb3
DQEBCwUAA4IBAQA1EaEtHpJ8M32bnO7srEJMHtDPMYEFvClGnReLJhKsAk/GYzbR
OOg7wPGgXu0PnRAdKyWAnX1J0Ns5XiJTy2xRYemFJobfisE6cLhbp9JV11LAIz0P
fbvbLhp9zpHTPQcT0EYj0Ls55p6Ohwf+XTdpZXrP0crQirPWfi/8YDLDAa+InaRW
mZSArSADHJSa5JL8UtQl3c3TGP/WYwrDjNny6QnITO3Lk0K8/4XskdthGL5qwjHO
vQwzvPF7PQbE76WhaWRVPEnRTXGD99jNlV7ve0eZO6OF3ZzOM/vcuEqU29+aHC2H
Z39+Cv+LRRtT6633vWnk3A+orRPX9O4F58nJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:08 2024 by rpki-client on console-ams.rpki-client.org