Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/UmQEsa1jCMgNGa-OMlvBAYPj_gM.roa
File: UmQEsa1jCMgNGa-OMlvBAYPj_gM.roa (raw, json)
Hash identifier: 6j8S69/8JLpnuW/WBcqvtZT9HsGca54W0QzwKubXTps=
Subject key identifier: 52:64:04:B1:AD:63:08:C8:0D:19:AF:8E:32:5B:C1:01:83:E3:FE:03
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018342B193517C0743CFF36D54EF8DE1616F
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/UmQEsa1jCMgNGa-OMlvBAYPj_gM.roa
Signing time: Thu 15 Sep 2022 19:47:57 +0000
ROA not before: Thu 15 Sep 2022 19:47:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60117
IP address blocks: 185.252.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:42:b1:93:51:7c:07:43:cf:f3:6d:54:ef:8d:e1:61:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Sep 15 19:47:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=526404b1ad6308c80d19af8e325bc10183e3fe03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:05:63:bd:b6:c6:40:03:b2:bb:73:cf:6c:05:
93:eb:cb:13:12:66:a7:6b:f8:bc:cd:c4:48:29:8f:
1f:5a:bb:a2:58:de:c7:2d:e1:3a:3b:b5:cd:56:9a:
1b:a5:3e:d5:5e:44:b1:b5:06:24:f2:50:9d:51:c4:
42:92:9e:21:7e:ac:4b:55:de:42:18:39:ea:c1:36:
c7:e0:9e:d3:6f:74:30:98:28:ed:bf:a8:1c:10:b5:
7e:01:a6:6e:1e:52:4c:83:31:0e:9f:99:18:63:7d:
a7:5e:c5:9d:1f:07:37:ca:31:c8:93:6c:34:82:47:
9b:44:36:1f:ed:5b:32:a3:e5:51:e3:2e:1a:3c:a4:
98:20:8d:dd:5b:88:fe:f3:d7:6a:1f:dd:69:01:87:
84:a9:f0:0d:fd:e0:67:03:2f:46:96:84:d9:4b:3b:
9d:2c:66:27:96:9d:df:65:e5:2c:cc:a5:81:c3:96:
44:38:a0:80:b9:7e:54:06:0f:62:bd:d8:bf:fd:18:
71:05:24:2a:a7:af:c3:df:4d:9b:3a:d6:b9:74:ec:
b0:c3:dc:5b:2c:14:de:64:04:bf:01:e1:66:6b:7e:
63:43:55:6f:cd:e5:29:ef:54:83:a2:1c:c7:fb:27:
ed:b4:aa:84:c5:45:96:31:e1:9a:48:94:90:dd:d8:
3c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:64:04:B1:AD:63:08:C8:0D:19:AF:8E:32:5B:C1:01:83:E3:FE:03
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/UmQEsa1jCMgNGa-OMlvBAYPj_gM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.176.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:a3:42:1d:53:e4:a8:83:ac:2e:f8:31:2a:40:4a:5e:04:c2:
6b:70:b3:73:a5:bf:76:47:a7:01:bb:b6:1b:48:db:14:cf:e8:
a5:fd:84:17:d7:45:6b:3c:5e:60:c0:4f:a0:1d:b7:85:70:30:
4b:87:6b:ac:fe:3d:7f:78:c1:35:e4:05:f8:de:c2:76:af:70:
f3:48:48:d7:34:f8:09:84:9a:45:70:a3:d9:fb:51:0c:b4:d1:
6e:a8:d2:df:b1:ec:92:4f:95:e6:db:d7:41:9a:da:11:27:49:
df:e6:a1:b0:73:3b:01:53:02:a1:b9:aa:6c:71:4b:d3:95:2d:
5e:bb:66:bd:dc:bc:b8:d9:71:97:b4:14:c0:a9:67:16:bb:b5:
9a:f0:57:21:ec:8f:a3:a3:15:76:50:b1:5e:91:d1:35:30:7a:
5f:0e:e8:8a:c3:53:65:03:a3:15:6c:bb:b5:50:a2:a1:49:23:
fc:38:90:42:f1:70:de:73:3c:88:a4:2b:12:2d:42:55:72:13:
31:5f:07:80:53:aa:01:be:b3:cb:7a:c3:7b:ed:d7:35:58:c5:
57:45:d9:2a:2e:e1:98:14:4d:0a:8e:6d:60:69:68:d7:f6:b1:
01:e4:3b:b6:39:ef:4e:ab:8b:d3:93:b5:f5:79:3e:60:fd:53:
3f:33:bb:19
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYNCsZNRfAdDz/NtVO+N4WFvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjIwOTE1MTk0NzU3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MjY0MDRiMWFkNjMwOGM4MGQxOWFmOGUzMjViYzEwMTgzZTNmZTAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlgVjvbbGQAOyu3PPbAWT68sTEman
a/i8zcRIKY8fWruiWN7HLeE6O7XNVpobpT7VXkSxtQYk8lCdUcRCkp4hfqxLVd5C
GDnqwTbH4J7Tb3QwmCjtv6gcELV+AaZuHlJMgzEOn5kYY32nXsWdHwc3yjHIk2w0
gkebRDYf7Vsyo+VR4y4aPKSYII3dW4j+89dqH91pAYeEqfAN/eBnAy9GloTZSzud
LGYnlp3fZeUszKWBw5ZEOKCAuX5UBg9ivdi//RhxBSQqp6/D302bOta5dOyww9xb
LBTeZAS/AeFma35jQ1VvzeUp71SDohzH+yfttKqExUWWMeGaSJSQ3dg8SwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFJkBLGtYwjIDRmvjjJbwQGD4/4DMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvVW1RRXNhMWpDTWdOR2EtT01sdkJBWVBqX2dNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufywMA0G
CSqGSIb3DQEBCwUAA4IBAQA8o0IdU+Sog6wu+DEqQEpeBMJrcLNzpb92R6cBu7Yb
SNsUz+il/YQX10VrPF5gwE+gHbeFcDBLh2us/j1/eME15AX43sJ2r3DzSEjXNPgJ
hJpFcKPZ+1EMtNFuqNLfseyST5Xm29dBmtoRJ0nf5qGwczsBUwKhuapscUvTlS1e
u2a93Ly42XGXtBTAqWcWu7Wa8Fch7I+joxV2ULFekdE1MHpfDuiKw1NlA6MVbLu1
UKKhSSP8OJBC8XDeczyIpCsSLUJVchMxXweAU6oBvrPLesN77dc1WMVXRdkqLuGY
FE0Kjm1gaWjX9rEB5Du2Oe9Oq4vTk7X1eT5g/VM/M7sZ
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:37 2023 by rpki-client on console-ams.rpki-client.org