Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/UEs_K7tVgEblo_2ydKrdJkIEMfU.roa
File: UEs_K7tVgEblo_2ydKrdJkIEMfU.roa (raw, json)
Hash identifier: FSH30qQk8We4/mefzhM+Iq0XHGY3kIPzvExYF+D+dnU=
Subject key identifier: 50:4B:3F:2B:BB:55:80:46:E5:A3:FD:B2:74:AA:DD:26:42:04:31:F5
Certificate issuer: /CN=bda61043542485096b0df4351cc0da977f3770dd
Certificate serial: 0AA42CAA
Authority key identifier: BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/UEs_K7tVgEblo_2ydKrdJkIEMfU.roa
Signing time: Sat 01 Jan 2022 12:54:07 +0000
ROA not before: Sat 01 Jan 2022 12:54:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2852
IP address blocks: 147.32.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178531498 (0xaa42caa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda61043542485096b0df4351cc0da977f3770dd
Validity
Not Before: Jan 1 12:54:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=504b3f2bbb558046e5a3fdb274aadd26420431f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0d:56:16:bc:d7:55:88:f8:42:4f:2d:34:6f:
48:df:48:a7:c6:2e:03:2a:e7:fc:1a:3c:1a:f2:f3:
3f:de:38:8e:03:ba:73:dc:9c:b4:aa:b2:7a:03:f8:
21:bf:d9:0b:24:e8:c9:84:d0:b7:65:39:1e:eb:05:
ad:08:17:08:4d:78:a3:39:66:69:b7:d6:71:4f:5c:
3a:b4:28:e3:2a:a9:6e:29:92:40:ba:75:4b:61:f9:
a8:77:49:e1:50:8a:a6:ac:0b:95:ef:a3:5f:87:a8:
38:56:1f:46:54:f5:e1:93:db:ee:26:8d:f1:bd:5e:
a9:7d:00:5b:4d:9e:2c:c4:a4:a7:b7:36:b1:c8:70:
c8:fa:b3:a8:c5:16:88:50:84:fc:0b:d9:b7:2c:a4:
90:b1:ab:d2:fc:a2:6d:ff:04:cd:0a:91:07:f9:f0:
c1:4b:ba:96:f7:45:fc:3d:a7:27:42:c0:46:a3:fc:
95:86:35:79:9d:e3:86:5a:8f:b4:05:03:fd:c7:92:
0a:21:06:22:6b:54:9b:0a:24:2c:ac:a3:63:86:ca:
4a:cb:04:8c:31:14:a1:ae:44:56:5a:01:b3:fa:90:
b7:b6:a0:db:63:4a:90:de:82:2a:43:7e:60:0a:5f:
6e:c3:59:48:b2:f0:85:35:b3:95:88:a7:af:1a:e7:
21:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:4B:3F:2B:BB:55:80:46:E5:A3:FD:B2:74:AA:DD:26:42:04:31:F5
X509v3 Authority Key Identifier:
keyid:BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/UEs_K7tVgEblo_2ydKrdJkIEMfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.32.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3d:fd:aa:1d:70:be:3e:78:b1:4f:42:aa:b8:8d:52:9d:37:ec:
a4:28:86:a8:2a:eb:26:66:6d:9c:40:67:e3:e7:c0:86:5a:28:
bc:e6:3a:bf:d9:43:75:a4:98:f1:d6:10:44:29:e5:35:b3:22:
32:25:5b:82:b8:f7:fe:6e:e5:c9:87:45:b2:79:48:c2:2a:7a:
f2:53:53:9b:e7:bd:d6:76:80:ae:db:8d:7a:3f:12:40:d0:2f:
f2:a8:ab:8a:3f:e9:7d:70:30:3c:a5:76:e1:17:8b:cd:fb:01:
47:19:16:bb:bb:f3:40:fa:0b:a3:45:78:79:09:9e:1a:da:9d:
2f:ff:b6:ab:c2:ad:66:d3:c3:52:4f:9d:8b:8b:45:64:86:6e:
a9:d9:ee:09:da:00:4c:bb:ac:7b:15:0f:f2:8c:55:6d:72:83:
3f:10:36:d0:7b:bc:06:7a:df:63:e9:50:cc:57:c5:08:6f:c7:
c3:f9:f0:64:d2:c8:26:d3:78:07:da:41:d4:e1:ed:82:87:ae:
25:08:94:19:ca:3e:df:7f:d0:ec:93:13:1c:0c:4a:18:36:f2:
ea:8b:69:fa:de:44:c9:0a:6e:85:ec:66:9d:e6:66:af:47:7d:
f7:9c:ff:66:a2:5b:5b:26:75:42:4e:d3:de:f0:14:79:2a:00:
b0:5e:c0:5e
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIECqQsqjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZGE2MTA0MzU0MjQ4NTA5NmIwZGY0MzUxY2MwZGE5NzdmMzc3MGRkMB4XDTIyMDEw
MTEyNTQwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTA0YjNmMmJiYjU1
ODA0NmU1YTNmZGIyNzRhYWRkMjY0MjA0MzFmNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK4NVha811WI+EJPLTRvSN9Ip8YuAyrn/Bo8GvLzP944jgO6
c9yctKqyegP4Ib/ZCyToyYTQt2U5HusFrQgXCE14ozlmabfWcU9cOrQo4yqpbimS
QLp1S2H5qHdJ4VCKpqwLle+jX4eoOFYfRlT14ZPb7iaN8b1eqX0AW02eLMSkp7c2
schwyPqzqMUWiFCE/AvZtyykkLGr0vyibf8EzQqRB/nwwUu6lvdF/D2nJ0LARqP8
lYY1eZ3jhlqPtAUD/ceSCiEGImtUmwokLKyjY4bKSssEjDEUoa5EVloBs/qQt7ag
22NKkN6CKkN+YApfbsNZSLLwhTWzlYinrxrnIYcCAwEAAaOCAggwggIEMB0GA1Ud
DgQWBBRQSz8ru1WARuWj/bJ0qt0mQgQx9TAfBgNVHSMEGDAWgBS9phBDVCSFCWsN
9DUcwNqXfzdw3TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZhWVFRMVFraFFsckRmUTFITURhbDM4M2NOMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmUvMTk2Njg5LTJkYjctNGU4MC1iOTJjLTNhMmFkODhkZWFkZS8x
L1VFc19LN3RWZ0VibG9fMnlkS3JkSmtJRU1mVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmUv
MTk2Njg5LTJkYjctNGU4MC1iOTJjLTNhMmFkODhkZWFkZS8xL3ZhWVFRMVFraFFs
ckRmUTFITURhbDM4M2NOMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAe
BggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAJMgMA0GCSqGSIb3DQEBCwUAA4IB
AQA9/aodcL4+eLFPQqq4jVKdN+ykKIaoKusmZm2cQGfj58CGWii85jq/2UN1pJjx
1hBEKeU1syIyJVuCuPf+buXJh0WyeUjCKnryU1Ob573WdoCu2416PxJA0C/yqKuK
P+l9cDA8pXbhF4vN+wFHGRa7u/NA+gujRXh5CZ4a2p0v/7arwq1m08NST52Li0Vk
hm6p2e4J2gBMu6x7FQ/yjFVtcoM/EDbQe7wGet9j6VDMV8UIb8fD+fBk0sgm03gH
2kHU4e2Ch64lCJQZyj7ff9DskxMcDEoYNvLqi2n63kTJCm6F7Gad5mavR333nP9m
oltbJnVCTtPe8BR5KgCwXsBe
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:53 2024 by rpki-client on console-ams.rpki-client.org