Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/umjuWynT32Rlg5cn5QU9Zjzq9Zs.roa
File: umjuWynT32Rlg5cn5QU9Zjzq9Zs.roa (raw, json)
Hash identifier: yEITWgyTL+HSeEWD82SPU1Ncl9gsqwx5g9WDhJpNcZ0=
Subject key identifier: BA:68:EE:5B:29:D3:DF:64:65:83:97:27:E5:05:3D:66:3C:EA:F5:9B
Certificate issuer: /CN=860d9f01a98b514ebd3c2723d7f7eb448326f5e2
Certificate serial: 148E96D9
Authority key identifier: 86:0D:9F:01:A9:8B:51:4E:BD:3C:27:23:D7:F7:EB:44:83:26:F5:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hg2fAamLUU69PCcj1_frRIMm9eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/umjuWynT32Rlg5cn5QU9Zjzq9Zs.roa
Signing time: Sun 22 May 2022 18:22:29 +0000
ROA not before: Sun 22 May 2022 18:22:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39788
IP address blocks: 193.23.244.0/24 maxlen: 24
2001:678:558::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 344889049 (0x148e96d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=860d9f01a98b514ebd3c2723d7f7eb448326f5e2
Validity
Not Before: May 22 18:22:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba68ee5b29d3df6465839727e5053d663ceaf59b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5b:a1:e7:68:9e:9a:51:8d:e0:44:ee:bd:88:
ef:3d:93:85:e3:09:00:ba:22:c4:47:e6:06:14:9d:
b0:90:4b:39:d9:dd:0e:86:42:c1:3a:41:14:cd:68:
62:b4:4d:83:c9:09:83:61:c8:57:ec:ac:66:05:7a:
4c:51:40:ac:15:a0:11:ef:31:5e:a0:1e:77:7b:19:
e2:f0:0d:ae:32:ef:ef:6a:7e:76:bd:30:39:5d:10:
aa:b6:62:3e:f7:4e:9a:98:43:7e:ec:c3:0b:15:7f:
08:c1:56:01:0e:05:fc:a5:d3:a7:b6:c4:6f:bd:9e:
a2:2f:b5:84:18:24:f4:39:5f:c7:42:54:bb:d1:30:
8a:8b:62:58:9f:55:a1:2e:5e:c5:8c:b5:7e:dc:21:
c5:99:ae:94:64:ae:0f:c6:80:ff:b3:61:ce:8e:97:
00:bf:6b:03:ee:e3:5d:84:8d:09:fa:5d:0b:8f:54:
a3:48:d7:8f:16:1a:eb:e2:2d:b3:f5:28:70:c4:63:
e4:0c:23:fc:65:fe:75:47:fc:60:f3:71:22:58:92:
f1:16:75:99:ee:61:2a:3e:76:9f:e5:35:39:db:d6:
4d:87:9c:28:49:63:33:fc:f1:d9:ac:2f:a6:cf:49:
a0:af:29:df:62:6c:f9:46:b4:85:1e:30:13:d8:16:
6f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:68:EE:5B:29:D3:DF:64:65:83:97:27:E5:05:3D:66:3C:EA:F5:9B
X509v3 Authority Key Identifier:
keyid:86:0D:9F:01:A9:8B:51:4E:BD:3C:27:23:D7:F7:EB:44:83:26:F5:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hg2fAamLUU69PCcj1_frRIMm9eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/umjuWynT32Rlg5cn5QU9Zjzq9Zs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/hg2fAamLUU69PCcj1_frRIMm9eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.244.0/24
IPv6:
2001:678:558::/48
Signature Algorithm: sha256WithRSAEncryption
3d:e4:d8:ec:ef:7f:71:13:cb:ec:9b:14:69:6e:20:af:5e:5f:
7b:f7:f4:d5:4b:6b:26:4f:1f:57:03:e3:60:03:be:f6:47:b5:
0c:4b:c4:03:79:66:fd:93:10:25:49:b1:ce:be:2d:e0:6d:0e:
60:39:66:43:0e:a8:60:db:fa:95:ed:1f:39:b3:b7:c9:cd:86:
fd:7c:03:58:c9:e3:4a:86:c0:51:5c:9d:fd:0a:51:93:63:d0:
21:ee:17:23:8e:a7:1b:7b:03:6a:48:3d:00:7c:d1:10:05:8d:
2c:bb:11:1a:40:c6:b1:d7:14:d6:03:83:30:f3:32:c0:21:ac:
c6:5e:16:1c:73:63:95:eb:25:0d:03:20:2c:f7:1a:d1:c4:8a:
95:ec:f2:99:ef:0d:98:cf:ee:ef:cd:25:bb:02:e8:9c:58:a6:
f1:c3:23:21:51:1f:cc:67:97:a3:a5:29:1e:31:b3:00:ab:ae:
c7:05:98:7b:9f:f1:5e:46:88:cb:93:f7:be:4b:68:0c:5b:18:
b1:5f:20:b1:14:e8:0d:a5:9a:c0:d5:a9:2b:c1:c2:06:da:93:
89:78:a1:68:f5:20:b5:1e:89:96:23:cf:00:e4:6a:57:da:f8:
64:43:ca:f4:fe:26:a3:6d:3f:a8:97:d6:a7:f0:6f:03:31:a6:
e5:5b:12:71
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEFI6W2TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NjBkOWYwMWE5OGI1MTRlYmQzYzI3MjNkN2Y3ZWI0NDgzMjZmNWUyMB4XDTIyMDUy
MjE4MjIyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmE2OGVlNWIyOWQz
ZGY2NDY1ODM5NzI3ZTUwNTNkNjYzY2VhZjU5YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALVboedonppRjeBE7r2I7z2TheMJALoixEfmBhSdsJBLOdnd
DoZCwTpBFM1oYrRNg8kJg2HIV+ysZgV6TFFArBWgEe8xXqAed3sZ4vANrjLv72p+
dr0wOV0QqrZiPvdOmphDfuzDCxV/CMFWAQ4F/KXTp7bEb72eoi+1hBgk9Dlfx0JU
u9EwiotiWJ9VoS5exYy1ftwhxZmulGSuD8aA/7Nhzo6XAL9rA+7jXYSNCfpdC49U
o0jXjxYa6+Its/UocMRj5Awj/GX+dUf8YPNxIliS8RZ1me5hKj52n+U1OdvWTYec
KEljM/zx2awvps9JoK8p32Js+Ua0hR4wE9gWbxUCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBS6aO5bKdPfZGWDlyflBT1mPOr1mzAfBgNVHSMEGDAWgBSGDZ8BqYtRTr08
JyPX9+tEgyb14jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hnMmZBYW1MVVU2OVBDY2oxX2ZyUklNbTllSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDgvMjNiZWE2LTkwMDEtNDQxZC04MzY0LTYxY2I0M2MyZGI4NS8x
L3VtanVXeW5UMzJSbGc1Y241UVU5Wmp6cTlacy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDgv
MjNiZWE2LTkwMDEtNDQxZC04MzY0LTYxY2I0M2MyZGI4NS8xL2hnMmZBYW1MVVU2
OVBDY2oxX2ZyUklNbTllSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAMEX9DAPBAIAAjAJAwcAIAEGeAVY
MA0GCSqGSIb3DQEBCwUAA4IBAQA95Njs739xE8vsmxRpbiCvXl979/TVS2smTx9X
A+NgA772R7UMS8QDeWb9kxAlSbHOvi3gbQ5gOWZDDqhg2/qV7R85s7fJzYb9fANY
yeNKhsBRXJ39ClGTY9Ah7hcjjqcbewNqSD0AfNEQBY0suxEaQMax1xTWA4Mw8zLA
IazGXhYcc2OV6yUNAyAs9xrRxIqV7PKZ7w2Yz+7vzSW7AuicWKbxwyMhUR/MZ5ej
pSkeMbMAq67HBZh7n/FeRojLk/e+S2gMWxixXyCxFOgNpZrA1akrwcIG2pOJeKFo
9SC1HomWI88A5GpX2vhkQ8r0/iajbT+ol9an8G8DMablWxJx
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:10 2023 by rpki-client on console-fra.rpki-client.org