Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/uvJaGbPNv3cqO4D8Git-wBpGyrg.roa
File: uvJaGbPNv3cqO4D8Git-wBpGyrg.roa (raw, json)
Hash identifier: oZ9xJvB4sKKmef4lVaWr2OEVkXr50hIr+mzKVKxLXI8=
Subject key identifier: BA:F2:5A:19:B3:CD:BF:77:2A:3B:80:FC:1A:2B:7E:C0:1A:46:CA:B8
Certificate issuer: /CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653
Certificate serial: 0187DB3A494DA4698834F7B894E8FF1529DC
Authority key identifier: 75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/uvJaGbPNv3cqO4D8Git-wBpGyrg.roa
Signing time: Tue 02 May 2023 06:50:42 +0000
ROA not before: Tue 02 May 2023 06:50:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51269
IP address blocks: 185.32.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:db:3a:49:4d:a4:69:88:34:f7:b8:94:e8:ff:15:29:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653
Validity
Not Before: May 2 06:50:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=baf25a19b3cdbf772a3b80fc1a2b7ec01a46cab8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:10:3a:de:92:e2:9d:ac:45:a7:e2:b4:31:8d:
57:13:eb:2f:bb:29:85:79:eb:7d:9e:cb:c0:d2:f5:
e1:29:e2:48:6d:a2:ca:c9:29:c2:c9:48:55:d0:6f:
b1:d7:ed:64:01:d0:98:ca:f6:90:6a:06:0f:e2:52:
f0:fa:6a:cc:3e:7c:66:d5:5d:56:02:92:a4:bc:0c:
0a:cc:b3:c8:c0:0b:f7:d4:03:be:02:e0:20:e9:38:
cd:ed:eb:81:ea:20:b6:41:23:98:ff:ed:b5:5d:27:
a9:f0:6f:40:fc:86:9b:e4:f4:73:17:bf:06:e1:46:
21:45:26:90:6e:01:04:59:c3:53:a9:16:9f:c6:84:
bc:5c:cb:54:ec:5a:10:4e:50:a5:f6:ee:ee:5a:99:
b0:63:c4:68:4b:42:4d:f3:73:ba:7c:10:5b:38:71:
db:5b:ae:69:f6:7b:32:08:06:a4:d7:45:7f:1b:dc:
ae:cc:02:2c:b4:b3:cc:f7:92:25:e6:64:3d:92:a2:
f1:15:8a:fe:6a:4e:bb:dc:3e:26:17:00:9e:52:ee:
c2:a8:01:dd:b1:ec:b2:16:f1:e2:9f:1d:42:17:42:
3e:ab:66:8e:af:1d:dd:33:db:8d:e0:e3:e1:27:e8:
3f:2d:bc:da:e9:01:09:bb:a3:d0:7e:14:70:09:f0:
a2:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:F2:5A:19:B3:CD:BF:77:2A:3B:80:FC:1A:2B:7E:C0:1A:46:CA:B8
X509v3 Authority Key Identifier:
keyid:75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/uvJaGbPNv3cqO4D8Git-wBpGyrg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.32.70.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:6b:52:11:a5:09:9e:a5:90:99:3c:df:8c:9d:7a:bf:19:14:
7e:27:99:91:67:6d:e2:bd:90:e6:f6:92:61:f3:bb:ce:49:a0:
4d:61:a5:60:7f:ca:8a:fe:bf:2e:10:6e:40:27:2f:2a:a6:ec:
fe:9d:29:ce:c2:41:ed:ad:80:70:d0:1a:c0:02:34:3a:a4:e1:
a4:5d:d4:ba:15:fd:8b:32:2b:60:aa:2d:ce:d5:c8:04:43:81:
3f:c7:0d:97:f6:3f:5d:bc:35:12:98:b7:61:7e:bf:f3:11:c2:
f6:5d:26:07:a0:ad:cc:1f:fd:6e:32:18:23:1a:2d:35:54:3f:
97:29:34:21:83:8d:a3:54:0d:64:24:3c:87:56:05:9a:86:a1:
b1:66:7c:2e:80:26:63:0a:a0:76:de:bc:4e:2e:55:61:87:b9:
33:c8:cc:e2:17:6b:f9:8b:82:14:c9:f2:f8:41:75:28:8b:ad:
50:5b:ea:4d:f4:39:1f:26:ef:ee:98:48:ab:ae:17:2c:9c:d9:
42:f0:f9:d1:e6:53:54:15:d9:2c:75:1d:37:34:d5:1d:0e:d3:
d2:49:a3:e7:be:10:89:f7:18:c6:e2:6a:fb:a4:db:9c:54:16:
6e:70:b3:1d:16:22:61:34:6a:7f:78:52:ae:44:e6:b1:6c:fb:
ad:c2:c8:89
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYfbOklNpGmINPe4lOj/FSncMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1Mzg2YTZmYWUxZTU1ZjU3NmE0MDViZDc0YjdmMDhlN2E2
YzQ2NTMwHhcNMjMwNTAyMDY1MDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYWYyNWExOWIzY2RiZjc3MmEzYjgwZmMxYTJiN2VjMDFhNDZjYWI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvxA63pLinaxFp+K0MY1XE+svuymF
eet9nsvA0vXhKeJIbaLKySnCyUhV0G+x1+1kAdCYyvaQagYP4lLw+mrMPnxm1V1W
ApKkvAwKzLPIwAv31AO+AuAg6TjN7euB6iC2QSOY/+21XSep8G9A/Iab5PRzF78G
4UYhRSaQbgEEWcNTqRafxoS8XMtU7FoQTlCl9u7uWpmwY8RoS0JN83O6fBBbOHHb
W65p9nsyCAak10V/G9yuzAIstLPM95Il5mQ9kqLxFYr+ak673D4mFwCeUu7CqAHd
seyyFvHinx1CF0I+q2aOrx3dM9uN4OPhJ+g/Lbza6QEJu6PQfhRwCfCi2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLryWhmzzb93KjuA/BorfsAaRsq4MB8GA1UdIwQY
MBaAFHU4am+uHlX1dqQFvXS38I56bEZTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFRocWI2NGVWZlYycEFXOWRMZndqbnBzUmxNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9kOWEwMWMtNWM5MS00ZDAwLWEwOWEt
Zjg3OTJmNTc3YjlhLzEvdXZKYUdiUE52M2NxTzREOEdpdC13QnBHeXJnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS9kOWEwMWMtNWM5MS00ZDAwLWEwOWEtZjg3OTJmNTc3Yjlh
LzEvZFRocWI2NGVWZlYycEFXOWRMZndqbnBzUmxNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSBGMA0G
CSqGSIb3DQEBCwUAA4IBAQCoa1IRpQmepZCZPN+MnXq/GRR+J5mRZ23ivZDm9pJh
87vOSaBNYaVgf8qK/r8uEG5AJy8qpuz+nSnOwkHtrYBw0BrAAjQ6pOGkXdS6Ff2L
Mitgqi3O1cgEQ4E/xw2X9j9dvDUSmLdhfr/zEcL2XSYHoK3MH/1uMhgjGi01VD+X
KTQhg42jVA1kJDyHVgWahqGxZnwugCZjCqB23rxOLlVhh7kzyMziF2v5i4IUyfL4
QXUoi61QW+pN9DkfJu/umEirrhcsnNlC8PnR5lNUFdksdR03NNUdDtPSSaPnvhCJ
9xjG4mr7pNucVBZucLMdFiJhNGp/eFKuROaxbPutwsiJ
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:14:25 2025 by rpki-client