Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/pUHKWVHV1CRhgyUcJb9U6J9IWFk.roa
File: pUHKWVHV1CRhgyUcJb9U6J9IWFk.roa (raw, json)
Hash identifier: ZpHfjMemwD5lZOsXPgzGL+QqpOezHItR3PvVlbFmYzQ=
Subject key identifier: A5:41:CA:59:51:D5:D4:24:61:83:25:1C:25:BF:54:E8:9F:48:58:59
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 0B1C66DF
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/pUHKWVHV1CRhgyUcJb9U6J9IWFk.roa
Signing time: Sat 01 Jan 2022 05:02:26 +0000
ROA not before: Sat 01 Jan 2022 05:02:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5822
IP address blocks: 85.185.48.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186410719 (0xb1c66df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jan 1 05:02:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a541ca5951d5d4246183251c25bf54e89f485859
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:e8:a5:6c:8a:2b:db:ad:6d:8b:51:d7:90:3c:
84:a7:3a:63:2c:2d:b2:a9:ef:d2:a9:05:91:02:30:
fe:3d:78:a1:20:11:22:6a:90:56:ca:ef:ac:5f:51:
b4:45:81:ab:fb:47:4a:05:a8:1d:cb:9a:98:8b:d5:
d1:5f:e2:44:f2:8b:de:00:8c:52:c9:4c:52:ed:58:
e3:69:fd:ce:c8:72:d5:20:a4:81:d0:7a:f4:81:38:
f6:6a:f9:b5:54:78:96:6b:cf:67:6f:85:4c:f0:df:
ef:21:2e:e2:d1:bf:e8:ce:26:66:f7:53:ff:f6:f8:
c3:80:c7:81:4f:0b:84:17:24:68:96:74:8f:4c:7c:
9a:c0:37:f1:45:0c:59:c9:63:a7:3d:23:c8:11:7b:
e3:56:03:52:e7:d3:be:b4:b4:ea:2a:7c:8b:b1:cd:
1d:71:1e:63:32:36:70:d3:c9:a9:0d:14:71:6a:d1:
a5:3a:83:07:be:c6:2e:65:33:26:4a:ec:86:cc:ee:
de:ff:8d:27:7f:f1:f5:7b:c8:41:37:d5:1b:69:4d:
ec:03:a2:73:d1:08:93:3d:a6:fc:b0:07:55:8d:ee:
27:a8:65:37:2d:31:6e:c6:2b:aa:3d:70:4b:68:3e:
af:8b:49:ca:3b:43:64:6e:30:08:0c:ab:68:93:2b:
37:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:41:CA:59:51:D5:D4:24:61:83:25:1C:25:BF:54:E8:9F:48:58:59
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/pUHKWVHV1CRhgyUcJb9U6J9IWFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.185.48.0/20
Signature Algorithm: sha256WithRSAEncryption
05:e4:8f:4e:6f:71:3e:7e:83:ce:df:c4:c6:77:d5:9b:1b:0c:
1f:17:0c:06:58:a2:d1:47:f4:65:d9:3c:98:ac:ac:f8:45:aa:
d3:4b:96:76:b4:5b:cd:fb:04:bb:a9:60:83:6e:88:f4:4e:1c:
13:7d:82:6a:ce:21:58:29:1f:5f:bd:3b:d8:7b:f5:c5:ef:b9:
6d:7e:61:0d:f3:83:a3:3e:a9:15:a1:11:ad:0e:b0:f0:54:fb:
93:01:5f:61:eb:11:c6:0c:3e:02:25:4d:1f:68:27:68:e0:a8:
33:71:5a:a0:10:1e:a9:11:83:3a:75:a0:3f:b3:55:96:c1:63:
66:e0:9f:bf:36:82:62:5e:4e:ac:35:e9:38:8d:e1:97:10:4a:
89:6e:2d:a3:43:94:78:37:04:02:21:27:0a:ee:cd:6b:91:50:
c4:bb:9b:18:c4:be:49:46:f6:fc:22:5e:d4:a8:75:fb:ca:6c:
d9:50:2f:92:0e:11:54:51:64:7e:3d:a2:c5:91:55:31:67:85:
ac:32:d6:81:af:9d:36:97:d8:15:9c:9c:fe:9a:47:90:a4:53:
f7:0d:cc:75:55:5c:60:be:06:dc:88:c9:62:5b:bd:79:3e:45:
ef:10:40:b5:9b:b0:82:11:e2:03:ca:ec:92:8f:01:08:4d:94:
e7:e1:5a:83
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECxxm3zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
N2EzOWU0Nzk0YzM0NjEyZTdmMjI1NjliMWE2YTgxNzEwMjYwYWU1MB4XDTIyMDEw
MTA1MDIyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTU0MWNhNTk1MWQ1
ZDQyNDYxODMyNTFjMjViZjU0ZTg5ZjQ4NTg1OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPvopWyKK9utbYtR15A8hKc6Yywtsqnv0qkFkQIw/j14oSAR
ImqQVsrvrF9RtEWBq/tHSgWoHcuamIvV0V/iRPKL3gCMUslMUu1Y42n9zshy1SCk
gdB69IE49mr5tVR4lmvPZ2+FTPDf7yEu4tG/6M4mZvdT//b4w4DHgU8LhBckaJZ0
j0x8msA38UUMWcljpz0jyBF741YDUufTvrS06ip8i7HNHXEeYzI2cNPJqQ0UcWrR
pTqDB77GLmUzJkrshszu3v+NJ3/x9XvIQTfVG2lN7AOic9EIkz2m/LAHVY3uJ6hl
Ny0xbsYrqj1wS2g+r4tJyjtDZG4wCAyraJMrN+8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSlQcpZUdXUJGGDJRwlv1Ton0hYWTAfBgNVHSMEGDAWgBQno55HlMNGEufy
JWmxpqgXECYK5TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0o2T2VSNVREUmhMbjhpVnBzYWFvRnhBbUN1VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDAvMzhmYzMzLTA2YzEtNDAwNi05ZTIzLWY3NGQ5NTE4NTc2Yy8x
L3BVSEtXVkhWMUNSaGd5VWNKYjlVNko5SVdGay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDAv
MzhmYzMzLTA2YzEtNDAwNi05ZTIzLWY3NGQ5NTE4NTc2Yy8xL0o2T2VSNVREUmhM
bjhpVnBzYWFvRnhBbUN1VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBFW5MDANBgkqhkiG9w0BAQsFAAOC
AQEABeSPTm9xPn6Dzt/ExnfVmxsMHxcMBlii0Uf0Zdk8mKys+EWq00uWdrRbzfsE
u6lgg26I9E4cE32Cas4hWCkfX7072Hv1xe+5bX5hDfODoz6pFaERrQ6w8FT7kwFf
YesRxgw+AiVNH2gnaOCoM3FaoBAeqRGDOnWgP7NVlsFjZuCfvzaCYl5OrDXpOI3h
lxBKiW4to0OUeDcEAiEnCu7Na5FQxLubGMS+SUb2/CJe1Kh1+8ps2VAvkg4RVFFk
fj2ixZFVMWeFrDLWga+dNpfYFZyc/ppHkKRT9w3MdVVcYL4G3IjJYlu9eT5F7xBA
tZuwghHiA8rsko8BCE2U5+Fagw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:46 2023 by rpki-client on console-ams.rpki-client.org