Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/85b673-f1ad-43e2-bfe7-0cd7236b29b6/1/UGuDYa-C8-5ix5Dye3OqVUCk-To.roa
File: UGuDYa-C8-5ix5Dye3OqVUCk-To.roa (raw, json)
Hash identifier: Y/Xn9Y89rDOJjeHmzp580NreU37zKwFBYU+QEoCyJtQ=
Subject key identifier: 50:6B:83:61:AF:82:F3:EE:62:C7:90:F2:7B:73:AA:55:40:A4:F9:3A
Certificate issuer: /CN=1da97cae7de6b29e56f0259af53c95926034a502
Certificate serial: 0808D0E4
Authority key identifier: 1D:A9:7C:AE:7D:E6:B2:9E:56:F0:25:9A:F5:3C:95:92:60:34:A5:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hal8rn3msp5W8CWa9TyVkmA0pQI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/85b673-f1ad-43e2-bfe7-0cd7236b29b6/1/UGuDYa-C8-5ix5Dye3OqVUCk-To.roa
Signing time: Wed 02 Feb 2022 20:43:32 +0000
ROA not before: Wed 02 Feb 2022 20:43:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197595
IP address blocks: 185.242.228.0/22 maxlen: 22
45.141.108.0/22 maxlen: 22
178.132.72.0/21 maxlen: 21
185.86.104.0/22 maxlen: 22
185.147.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134795492 (0x808d0e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1da97cae7de6b29e56f0259af53c95926034a502
Validity
Not Before: Feb 2 20:43:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=506b8361af82f3ee62c790f27b73aa5540a4f93a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:38:37:0e:83:4f:46:e3:99:2c:ac:99:a8:05:
dd:1a:53:ed:65:8e:80:20:30:fb:d2:91:81:df:d1:
2e:0a:3a:34:02:4f:e9:7e:1d:b5:e9:53:60:86:79:
64:67:d2:05:2e:f7:e1:2d:1b:43:f3:cd:8b:5b:0b:
62:1d:8f:ea:76:14:29:10:d1:e3:6d:fa:0e:8a:36:
65:61:c7:3a:a8:33:da:38:c4:3c:3f:8a:b9:c5:1a:
0e:96:cf:04:e0:68:d8:d7:d0:8a:3e:04:ca:ec:87:
34:c6:f1:9c:01:56:45:99:b2:33:43:d9:90:7b:f2:
31:1f:63:0b:43:e1:7b:a7:2f:35:fd:e2:68:c9:0d:
49:b8:3f:c3:c4:7e:c9:47:96:8f:6d:6b:51:e4:bf:
70:b4:1b:7d:26:74:4f:0d:27:0c:9f:52:40:33:bc:
a3:eb:b5:0d:f3:eb:73:88:47:75:63:14:a9:59:b6:
b0:2a:45:9d:da:c2:29:b1:29:f5:9d:26:65:50:69:
d0:a8:f2:55:ef:8a:c5:08:15:57:46:0f:d8:2c:b3:
6c:e9:ec:b4:5b:28:23:e4:97:b1:1e:1d:a8:ea:d1:
09:c3:8b:55:85:ed:f3:6c:5d:cf:44:5a:0f:9a:d9:
9f:0a:d7:b4:1d:7f:46:4e:3a:ab:68:18:fa:e2:8b:
03:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:6B:83:61:AF:82:F3:EE:62:C7:90:F2:7B:73:AA:55:40:A4:F9:3A
X509v3 Authority Key Identifier:
keyid:1D:A9:7C:AE:7D:E6:B2:9E:56:F0:25:9A:F5:3C:95:92:60:34:A5:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hal8rn3msp5W8CWa9TyVkmA0pQI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/85b673-f1ad-43e2-bfe7-0cd7236b29b6/1/UGuDYa-C8-5ix5Dye3OqVUCk-To.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/85b673-f1ad-43e2-bfe7-0cd7236b29b6/1/Hal8rn3msp5W8CWa9TyVkmA0pQI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.108.0/22
178.132.72.0/21
185.86.104.0/22
185.147.236.0/22
185.242.228.0/22
Signature Algorithm: sha256WithRSAEncryption
00:7e:f5:ef:27:f4:a1:ce:43:30:45:aa:83:23:42:24:ef:9a:
cc:68:55:7d:a0:4e:7f:d7:f1:97:44:20:ee:c4:00:24:ea:16:
b9:ab:36:fe:b9:ff:16:43:cc:71:e3:1c:ad:23:95:2f:4a:0c:
09:22:00:81:73:21:63:f8:51:15:f0:4c:c7:30:fe:a0:1f:d1:
3e:f7:f5:1c:c1:0d:6c:6a:76:c5:3c:c8:51:48:88:65:19:fb:
63:89:d0:27:20:ba:51:c7:d1:8e:9c:8c:f6:61:1e:cc:c7:59:
4d:1b:c3:64:3a:b2:59:0a:ec:cc:86:c2:b6:de:30:77:33:a9:
87:9b:e2:87:c4:71:1a:aa:db:3d:09:58:6e:99:da:ec:0c:c9:
50:82:e1:67:44:a5:24:0b:53:cf:43:4b:d1:19:37:5a:c0:11:
f9:c9:b1:ab:8a:d4:8d:db:95:3b:0c:08:a7:1f:8f:f9:b4:2d:
ae:fb:62:90:81:6b:08:32:70:0a:60:3e:80:1e:2f:51:89:07:
c5:b8:92:c4:b2:6b:0b:91:99:04:4e:d8:5c:94:7e:cc:90:2a:
63:76:62:ed:fe:08:48:6e:af:a4:07:82:0f:00:5c:ba:f8:6a:
03:fa:00:b7:24:f5:27:a2:63:a4:30:63:86:0a:09:07:5e:85:
4e:fe:d8:19
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIECAjQ5DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZGE5N2NhZTdkZTZiMjllNTZmMDI1OWFmNTNjOTU5MjYwMzRhNTAyMB4XDTIyMDIw
MjIwNDMzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTA2YjgzNjFhZjgy
ZjNlZTYyYzc5MGYyN2I3M2FhNTU0MGE0ZjkzYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOg4Nw6DT0bjmSysmagF3RpT7WWOgCAw+9KRgd/RLgo6NAJP
6X4dtelTYIZ5ZGfSBS734S0bQ/PNi1sLYh2P6nYUKRDR4236Doo2ZWHHOqgz2jjE
PD+KucUaDpbPBOBo2NfQij4EyuyHNMbxnAFWRZmyM0PZkHvyMR9jC0Phe6cvNf3i
aMkNSbg/w8R+yUeWj21rUeS/cLQbfSZ0Tw0nDJ9SQDO8o+u1DfPrc4hHdWMUqVm2
sCpFndrCKbEp9Z0mZVBp0KjyVe+KxQgVV0YP2CyzbOnstFsoI+SXsR4dqOrRCcOL
VYXt82xdz0RaD5rZnwrXtB1/Rk46q2gY+uKLA/MCAwEAAaOCAiEwggIdMB0GA1Ud
DgQWBBRQa4Nhr4Lz7mLHkPJ7c6pVQKT5OjAfBgNVHSMEGDAWgBQdqXyufeaynlbw
JZr1PJWSYDSlAjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hhbDhybjNtc3A1VzhDV2E5VHlWa21BMHBRSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvODViNjczLWYxYWQtNDNlMi1iZmU3LTBjZDcyMzZiMjliNi8x
L1VHdURZYS1DOC01aXg1RHllM09xVlVDay1Uby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
ODViNjczLWYxYWQtNDNlMi1iZmU3LTBjZDcyMzZiMjliNi8xL0hhbDhybjNtc3A1
VzhDV2E5VHlWa21BMHBRSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA3
BggrBgEFBQcBBwEB/wQoMCYwJAQCAAEwHgMEAi2NbAMEA7KESAMEArlWaAMEArmT
7AMEArny5DANBgkqhkiG9w0BAQsFAAOCAQEAAH717yf0oc5DMEWqgyNCJO+azGhV
faBOf9fxl0Qg7sQAJOoWuas2/rn/FkPMceMcrSOVL0oMCSIAgXMhY/hRFfBMxzD+
oB/RPvf1HMENbGp2xTzIUUiIZRn7Y4nQJyC6UcfRjpyM9mEezMdZTRvDZDqyWQrs
zIbCtt4wdzOph5vih8RxGqrbPQlYbpna7AzJUILhZ0SlJAtTz0NL0Rk3WsAR+cmx
q4rUjduVOwwIpx+P+bQtrvtikIFrCDJwCmA+gB4vUYkHxbiSxLJrC5GZBE7YXJR+
zJAqY3Zi7f4ISG6vpAeCDwBcuvhqA/oAtyT1J6JjpDBjhgoJB16FTv7YGQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:21 2023 by rpki-client on console-fra.rpki-client.org