Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/0aab78-66de-444c-a843-0b3cb4c6b79a/1/UIWWDmICeOPsE6SDL39Mk0b_W5c.roa
File: UIWWDmICeOPsE6SDL39Mk0b_W5c.roa (raw, json)
Hash identifier: MZp17/faLBA2sNaQJV6rGMfIuPUdXphtR8f7Onp65Ps=
Subject key identifier: 50:85:96:0E:62:02:78:E3:EC:13:A4:83:2F:7F:4C:93:46:FF:5B:97
Certificate issuer: /CN=95b81f4e45d711da0c148dc2baad1504ddbb427b
Certificate serial: 08E2EA3B
Authority key identifier: 95:B8:1F:4E:45:D7:11:DA:0C:14:8D:C2:BA:AD:15:04:DD:BB:42:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbgfTkXXEdoMFI3Cuq0VBN27Qns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/0aab78-66de-444c-a843-0b3cb4c6b79a/1/UIWWDmICeOPsE6SDL39Mk0b_W5c.roa
Signing time: Sat 01 Jan 2022 05:53:16 +0000
ROA not before: Sat 01 Jan 2022 05:53:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209189
IP address blocks: 2.57.188.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149088827 (0x8e2ea3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95b81f4e45d711da0c148dc2baad1504ddbb427b
Validity
Not Before: Jan 1 05:53:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5085960e620278e3ec13a4832f7f4c9346ff5b97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:74:30:2f:82:57:a3:c6:ca:85:d5:d8:bd:2a:
ac:e7:70:56:c9:cb:ce:6f:bd:5a:65:f1:78:9d:76:
26:a2:0e:27:ee:d9:03:8f:6f:e6:7f:18:f0:af:e2:
83:76:a1:9c:a2:9b:ad:67:0b:47:80:db:7c:1c:29:
79:64:08:21:c8:bf:0c:58:64:e5:26:2a:9d:ab:96:
ac:40:01:6b:4d:1c:16:ad:f7:38:84:a0:76:25:97:
8d:c4:30:d9:68:3b:89:20:78:1d:d3:de:44:23:e9:
8e:8f:1b:1d:fb:dd:8a:b7:e5:c0:a5:54:89:d2:a0:
19:98:34:95:c8:6e:6c:e1:8e:02:9c:be:db:5c:43:
27:94:69:bf:8b:14:00:8f:10:7c:2d:d3:91:23:10:
aa:38:63:5a:95:c4:fd:89:eb:96:33:67:29:b5:22:
61:68:c1:a6:59:07:e2:ea:a6:af:94:c8:bd:d6:83:
32:3e:99:50:21:d4:5b:b3:81:94:42:98:ba:93:f5:
62:db:90:ea:ca:99:0f:df:f7:85:2d:4c:7d:fb:9f:
53:1e:7a:cd:63:2f:4c:d8:f8:bc:bd:59:14:0e:6b:
9b:5e:a6:ad:48:52:1d:65:00:63:6f:65:0b:a3:2a:
84:e1:ff:55:f1:a2:a2:c8:66:aa:d0:53:8b:0c:e8:
d1:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:85:96:0E:62:02:78:E3:EC:13:A4:83:2F:7F:4C:93:46:FF:5B:97
X509v3 Authority Key Identifier:
keyid:95:B8:1F:4E:45:D7:11:DA:0C:14:8D:C2:BA:AD:15:04:DD:BB:42:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbgfTkXXEdoMFI3Cuq0VBN27Qns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/0aab78-66de-444c-a843-0b3cb4c6b79a/1/UIWWDmICeOPsE6SDL39Mk0b_W5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/0aab78-66de-444c-a843-0b3cb4c6b79a/1/lbgfTkXXEdoMFI3Cuq0VBN27Qns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.188.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:f3:f3:ca:8a:c4:88:c2:b0:1e:bd:78:b8:fb:a0:02:a0:1b:
69:46:8e:b8:8e:8d:6a:14:0c:4f:2f:38:a3:0f:4d:d3:f8:bf:
78:67:0a:2e:57:bc:1b:66:ae:fa:fc:53:9e:f6:0e:8b:be:f9:
00:b1:b0:5d:51:96:21:56:63:48:90:dc:0a:be:52:27:35:42:
24:4b:1c:11:f1:02:8d:7f:86:1c:a2:3f:da:3d:d9:e1:b2:b9:
83:2a:c8:b3:c1:5f:b4:79:32:9a:42:16:b5:aa:a0:76:f5:61:
b6:8b:52:a1:75:de:67:1a:05:fb:ce:1d:6f:24:67:83:0a:a7:
da:a4:9f:e4:63:4b:e4:e1:7b:b8:69:cf:97:b6:29:3c:b9:7b:
da:1f:6c:77:e7:12:dc:a0:ec:ca:ee:f3:9d:78:5e:2a:c3:0f:
10:8d:19:44:68:20:19:40:24:b5:9a:b2:6e:c6:36:dc:23:f2:
53:7c:a8:5f:8e:23:ff:df:c3:95:34:61:29:10:a3:72:7b:4f:
68:12:d1:44:e2:fc:3a:52:fb:a8:01:fc:e5:8d:d6:88:ac:43:
e2:82:95:fe:a6:88:01:2d:df:b7:bd:af:3d:dc:aa:af:fb:dd:
2e:a5:30:90:8f:8d:e3:b4:62:24:0c:dc:7d:3b:ca:97:b1:71:
4c:0d:96:dc
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECOLqOzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NWI4MWY0ZTQ1ZDcxMWRhMGMxNDhkYzJiYWFkMTUwNGRkYmI0MjdiMB4XDTIyMDEw
MTA1NTMxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTA4NTk2MGU2MjAy
NzhlM2VjMTNhNDgzMmY3ZjRjOTM0NmZmNWI5NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMx0MC+CV6PGyoXV2L0qrOdwVsnLzm+9WmXxeJ12JqIOJ+7Z
A49v5n8Y8K/ig3ahnKKbrWcLR4DbfBwpeWQIIci/DFhk5SYqnauWrEABa00cFq33
OISgdiWXjcQw2Wg7iSB4HdPeRCPpjo8bHfvdirflwKVUidKgGZg0lchubOGOApy+
21xDJ5Rpv4sUAI8QfC3TkSMQqjhjWpXE/YnrljNnKbUiYWjBplkH4uqmr5TIvdaD
Mj6ZUCHUW7OBlEKYupP1YtuQ6sqZD9/3hS1MffufUx56zWMvTNj4vL1ZFA5rm16m
rUhSHWUAY29lC6MqhOH/VfGioshmqtBTiwzo0dsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRQhZYOYgJ44+wTpIMvf0yTRv9blzAfBgNVHSMEGDAWgBSVuB9ORdcR2gwU
jcK6rRUE3btCezAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2xiZ2ZUa1hYRWRvTUZJM0N1cTBWQk4yN1Fucy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWUvMGFhYjc4LTY2ZGUtNDQ0Yy1hODQzLTBiM2NiNGM2Yjc5YS8x
L1VJV1dEbUlDZU9Qc0U2U0RMMzlNazBiX1c1Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWUv
MGFhYjc4LTY2ZGUtNDQ0Yy1hODQzLTBiM2NiNGM2Yjc5YS8xL2xiZ2ZUa1hYRWRv
TUZJM0N1cTBWQk4yN1Fucy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAgI5vDANBgkqhkiG9w0BAQsFAAOC
AQEAqfPzyorEiMKwHr14uPugAqAbaUaOuI6NahQMTy84ow9N0/i/eGcKLle8G2au
+vxTnvYOi775ALGwXVGWIVZjSJDcCr5SJzVCJEscEfECjX+GHKI/2j3Z4bK5gyrI
s8FftHkymkIWtaqgdvVhtotSoXXeZxoF+84dbyRngwqn2qSf5GNL5OF7uGnPl7Yp
PLl72h9sd+cS3KDsyu7znXheKsMPEI0ZRGggGUAktZqybsY23CPyU3yoX44j/9/D
lTRhKRCjcntPaBLRROL8OlL7qAH85Y3WiKxD4oKV/qaIAS3ft72vPdyqr/vdLqUw
kI+N47RiJAzcfTvKl7FxTA2W3A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:23 2024 by rpki-client on console-ams.rpki-client.org