Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/UlO-xantGxwDnUC4rx5PAtF1UBg.roa
File: UlO-xantGxwDnUC4rx5PAtF1UBg.roa (raw, json)
Hash identifier: Xlb0jAz1mTa4wLm9n/sdEkRkcxHDSaATDDVaAlrqKqY=
Subject key identifier: 52:53:BE:C5:A9:ED:1B:1C:03:9D:40:B8:AF:1E:4F:02:D1:75:50:18
Certificate issuer: /CN=e2a10de6ffae590427244a03343db66ac564275a
Certificate serial: 03F0585C
Authority key identifier: E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/UlO-xantGxwDnUC4rx5PAtF1UBg.roa
Signing time: Sat 01 Jan 2022 04:56:18 +0000
ROA not before: Sat 01 Jan 2022 04:56:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212498
IP address blocks: 83.97.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66082908 (0x3f0585c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2a10de6ffae590427244a03343db66ac564275a
Validity
Not Before: Jan 1 04:56:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5253bec5a9ed1b1c039d40b8af1e4f02d1755018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:82:38:e6:50:c2:e4:92:89:0f:52:90:fe:e0:
88:0a:cf:37:8c:b5:cc:47:72:97:22:af:e1:a9:1f:
ef:a4:c6:ab:27:b8:de:2e:27:d6:4f:6c:30:f8:34:
f2:7e:0b:fd:f2:92:08:07:0e:bf:bb:fe:31:9a:94:
af:82:4b:ef:b7:83:b4:b2:b3:83:f4:0e:79:78:92:
9b:a0:f5:35:cc:e8:3a:49:48:ca:2a:d9:2a:ed:a8:
ce:9b:78:47:9f:10:13:cf:13:62:44:b6:ac:10:40:
ff:a9:3c:98:0e:f6:bf:0c:ae:fd:ab:14:90:1e:19:
9b:46:47:f4:3d:e4:e8:81:ce:e5:bc:4c:61:9d:44:
9b:cc:e3:c6:4c:5b:13:33:40:38:d9:29:e3:b0:df:
75:b9:72:72:9d:cf:2a:38:21:61:86:ae:e1:b3:f1:
0b:36:08:cb:75:a8:bf:22:36:23:73:c2:58:0f:c4:
da:3d:ec:ff:aa:9e:7a:32:e8:e7:ee:b0:66:23:91:
9e:85:b0:08:39:63:b0:43:bc:e5:b9:e1:c5:82:1f:
d2:cd:70:02:f7:25:fc:2d:cd:f0:76:80:8f:26:03:
c8:ec:30:12:12:e1:4d:dd:43:cd:c3:ba:bf:09:3a:
7c:11:b6:6b:13:c3:e4:0e:d2:03:d1:00:8c:04:5e:
fc:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:53:BE:C5:A9:ED:1B:1C:03:9D:40:B8:AF:1E:4F:02:D1:75:50:18
X509v3 Authority Key Identifier:
keyid:E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/UlO-xantGxwDnUC4rx5PAtF1UBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.37.0/24
Signature Algorithm: sha256WithRSAEncryption
34:ab:aa:57:fe:2d:af:73:98:35:cd:15:94:29:64:8d:3e:02:
16:42:db:15:60:c1:9e:58:4f:70:a4:98:94:92:10:60:5f:4f:
77:70:fd:18:a7:28:b8:3e:fd:56:ee:4e:aa:78:cc:f8:7d:c1:
4d:84:2d:2f:52:58:bd:41:5c:8e:da:c2:ab:61:75:8a:2f:65:
13:23:49:65:50:2e:2d:89:d8:0b:8f:f3:7d:0a:12:20:a8:fc:
c1:ae:84:0c:c2:d7:b8:a0:c5:f3:33:49:e9:e5:44:f2:34:38:
97:46:49:1e:66:7d:a9:b1:7a:74:de:a8:5a:d8:94:67:ac:1d:
5c:83:09:c2:0a:11:39:ea:93:5c:19:7f:e9:f5:5e:7b:43:05:
7b:d4:9e:16:29:8c:15:ed:53:f5:b1:98:c3:3b:ed:71:30:10:
0c:2c:0b:d8:89:13:79:9c:59:5c:14:4b:0f:70:93:e5:c1:1a:
8e:b4:fd:d5:f2:95:c7:71:88:b3:a9:bd:e6:e1:6c:33:9d:bb:
c1:6a:5f:50:4f:35:61:e5:d8:20:04:7b:69:37:91:92:69:38:
e5:3f:fe:3f:d1:9a:48:12:6a:90:fe:21:26:c5:25:55:d2:45:
1e:6f:f7:8d:4f:36:75:96:b6:22:74:10:53:d9:c7:a0:7a:eb:
22:40:52:58
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA/BYXDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MmExMGRlNmZmYWU1OTA0MjcyNDRhMDMzNDNkYjY2YWM1NjQyNzVhMB4XDTIyMDEw
MTA0NTYxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTI1M2JlYzVhOWVk
MWIxYzAzOWQ0MGI4YWYxZTRmMDJkMTc1NTAxODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALuCOOZQwuSSiQ9SkP7giArPN4y1zEdylyKv4akf76TGqye4
3i4n1k9sMPg08n4L/fKSCAcOv7v+MZqUr4JL77eDtLKzg/QOeXiSm6D1NczoOklI
yirZKu2ozpt4R58QE88TYkS2rBBA/6k8mA72vwyu/asUkB4Zm0ZH9D3k6IHO5bxM
YZ1Em8zjxkxbEzNAONkp47Dfdblycp3PKjghYYau4bPxCzYIy3WovyI2I3PCWA/E
2j3s/6qeejLo5+6wZiORnoWwCDljsEO85bnhxYIf0s1wAvcl/C3N8HaAjyYDyOww
EhLhTd1DzcO6vwk6fBG2axPD5A7SA9EAjARe/FUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRSU77Fqe0bHAOdQLivHk8C0XVQGDAfBgNVHSMEGDAWgBTioQ3m/65ZBCck
SgM0PbZqxWQnWjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzRxRU41di11V1FRbkpFb0RORDIyYXNWa0oxby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDcvYThiYjU3LWMxODEtNDY5NS05YmU3LTU3NTU0MDU4NjIwYi8x
L1VsTy14YW50R3h3RG5VQzRyeDVQQXRGMVVCZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDcv
YThiYjU3LWMxODEtNDY5NS05YmU3LTU3NTU0MDU4NjIwYi8xLzRxRU41di11V1FR
bkpFb0RORDIyYXNWa0oxby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFNhJTANBgkqhkiG9w0BAQsFAAOC
AQEANKuqV/4tr3OYNc0VlClkjT4CFkLbFWDBnlhPcKSYlJIQYF9Pd3D9GKcouD79
Vu5OqnjM+H3BTYQtL1JYvUFcjtrCq2F1ii9lEyNJZVAuLYnYC4/zfQoSIKj8wa6E
DMLXuKDF8zNJ6eVE8jQ4l0ZJHmZ9qbF6dN6oWtiUZ6wdXIMJwgoROeqTXBl/6fVe
e0MFe9SeFimMFe1T9bGYwzvtcTAQDCwL2IkTeZxZXBRLD3CT5cEajrT91fKVx3GI
s6m95uFsM527wWpfUE81YeXYIAR7aTeRkmk45T/+P9GaSBJqkP4hJsUlVdJFHm/3
jU82dZa2InQQU9nHoHrrIkBSWA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:52 2024 by rpki-client on console-fra.rpki-client.org