Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/358253-41e8-4c13-bfaa-cb3cd0404ab5/1/UWlOFM0XUlfLs-IPX1w3dUCbiUg.roa
File: UWlOFM0XUlfLs-IPX1w3dUCbiUg.roa (raw, json)
Hash identifier: yYsZ9GzYS4pVqYMDYyuGnhkU6Q4fnYppmmIvq03g2V8=
Subject key identifier: 51:69:4E:14:CD:17:52:57:CB:B3:E2:0F:5F:5C:37:75:40:9B:89:48
Certificate issuer: /CN=15ddd4c9dc23fac35574fce2b4294398add8521c
Certificate serial: BD024C
Authority key identifier: 15:DD:D4:C9:DC:23:FA:C3:55:74:FC:E2:B4:29:43:98:AD:D8:52:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fd3Uydwj-sNVdPzitClDmK3YUhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/358253-41e8-4c13-bfaa-cb3cd0404ab5/1/UWlOFM0XUlfLs-IPX1w3dUCbiUg.roa
Signing time: Fri 20 May 2022 11:21:29 +0000
ROA not before: Fri 20 May 2022 11:21:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207155
IP address blocks: 185.183.212.0/23 maxlen: 23
185.183.214.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12386892 (0xbd024c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15ddd4c9dc23fac35574fce2b4294398add8521c
Validity
Not Before: May 20 11:21:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51694e14cd175257cbb3e20f5f5c3775409b8948
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ac:27:14:b8:cb:d8:30:76:92:96:1b:4c:18:
72:58:90:13:ad:95:9d:c6:68:24:8c:78:e0:b1:56:
19:d2:50:19:bf:e4:bb:87:c5:19:e9:83:e3:f7:a1:
0f:54:85:6d:ac:6b:24:da:cf:43:7b:4c:b3:9f:96:
f3:49:6f:b8:95:ab:fe:05:eb:73:b9:b0:5b:1d:c3:
14:8e:b6:cd:0d:d5:77:2a:72:13:9c:d8:50:db:cd:
0b:43:78:4e:81:1d:d0:67:55:9e:40:a3:80:f1:52:
25:23:9f:81:8d:4f:6a:eb:9a:92:fa:d4:5b:3e:61:
79:f6:54:b8:b2:88:34:42:d5:24:20:6a:1a:da:ad:
19:84:ed:78:a6:f5:00:35:4d:a2:18:af:d1:b2:a8:
24:2e:e3:d8:2f:ad:d9:46:f4:cb:87:38:bf:76:79:
f2:a4:ba:35:34:ae:a1:f3:3f:76:55:8a:d4:00:d4:
af:ae:44:1a:5f:e9:83:71:de:06:b5:ca:e3:8a:9a:
58:03:51:13:bb:80:0a:0f:27:86:e4:37:b5:ad:af:
8d:d6:a0:f9:64:70:cc:3d:76:b2:77:98:f8:c3:5b:
35:5c:bb:4c:2a:64:ab:9b:6c:7e:55:03:5b:e6:5c:
c7:1f:a7:4a:62:52:70:6a:db:ad:f4:d8:53:d3:4e:
f2:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:69:4E:14:CD:17:52:57:CB:B3:E2:0F:5F:5C:37:75:40:9B:89:48
X509v3 Authority Key Identifier:
keyid:15:DD:D4:C9:DC:23:FA:C3:55:74:FC:E2:B4:29:43:98:AD:D8:52:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fd3Uydwj-sNVdPzitClDmK3YUhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/358253-41e8-4c13-bfaa-cb3cd0404ab5/1/UWlOFM0XUlfLs-IPX1w3dUCbiUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/358253-41e8-4c13-bfaa-cb3cd0404ab5/1/Fd3Uydwj-sNVdPzitClDmK3YUhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.183.212.0/22
Signature Algorithm: sha256WithRSAEncryption
43:d5:9e:42:db:55:20:54:0d:d5:8b:89:ca:7a:9e:3c:e3:94:
87:39:f2:80:76:cb:c7:1c:88:fd:9f:f6:a2:30:a0:6c:b2:30:
ae:9e:b4:c6:56:9c:eb:6e:a7:f5:63:26:d3:5b:21:02:3a:89:
96:db:8e:e8:4e:e5:0b:39:bf:00:59:63:49:0a:9c:d4:5d:9c:
f2:c0:6b:ce:df:0c:21:0b:a3:2f:36:03:62:aa:04:0b:0e:45:
8a:d3:02:15:75:84:b8:47:a9:e6:53:5a:7e:0e:50:70:69:fb:
e5:06:37:35:4c:72:c4:61:95:9d:28:0c:46:b6:60:46:a5:e6:
cd:d0:74:14:d3:49:f8:a0:84:a0:80:5b:95:42:b0:63:68:77:
2c:9b:37:26:02:2c:ac:c2:bc:e7:a7:1b:de:6f:87:c1:71:87:
63:40:c5:a9:ca:be:fa:4f:79:4d:58:74:2b:52:3e:1b:e4:5a:
b1:39:33:95:1f:e2:4a:3e:b6:07:96:d6:a9:c0:77:9b:a1:00:
84:0f:07:b6:d1:3e:30:b2:37:e4:13:40:7c:97:92:b0:05:20:
ed:9b:7e:07:ce:e1:f6:81:5a:8d:8e:5f:25:80:ae:8e:5e:9a:
ff:cc:c9:f8:a1:6c:98:65:aa:4a:72:da:c3:b8:e5:93:b1:ed:
78:3a:ea:cd
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAL0CTDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
NWRkZDRjOWRjMjNmYWMzNTU3NGZjZTJiNDI5NDM5OGFkZDg1MjFjMB4XDTIyMDUy
MDExMjEyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTE2OTRlMTRjZDE3
NTI1N2NiYjNlMjBmNWY1YzM3NzU0MDliODk0ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALusJxS4y9gwdpKWG0wYcliQE62VncZoJIx44LFWGdJQGb/k
u4fFGemD4/ehD1SFbaxrJNrPQ3tMs5+W80lvuJWr/gXrc7mwWx3DFI62zQ3Vdypy
E5zYUNvNC0N4ToEd0GdVnkCjgPFSJSOfgY1PauuakvrUWz5hefZUuLKINELVJCBq
GtqtGYTteKb1ADVNohiv0bKoJC7j2C+t2Ub0y4c4v3Z58qS6NTSuofM/dlWK1ADU
r65EGl/pg3HeBrXK44qaWANRE7uACg8nhuQ3ta2vjdag+WRwzD12sneY+MNbNVy7
TCpkq5tsflUDW+Zcxx+nSmJScGrbrfTYU9NO8jkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRRaU4UzRdSV8uz4g9fXDd1QJuJSDAfBgNVHSMEGDAWgBQV3dTJ3CP6w1V0
/OK0KUOYrdhSHDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ZkM1V5ZHdqLXNOVmRQeml0Q2xEbUszWVVody5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGMvMzU4MjUzLTQxZTgtNGMxMy1iZmFhLWNiM2NkMDQwNGFiNS8x
L1VXbE9GTTBYVWxmTHMtSVBYMXczZFVDYmlVZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGMv
MzU4MjUzLTQxZTgtNGMxMy1iZmFhLWNiM2NkMDQwNGFiNS8xL0ZkM1V5ZHdqLXNO
VmRQeml0Q2xEbUszWVVody5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArm31DANBgkqhkiG9w0BAQsFAAOC
AQEAQ9WeQttVIFQN1YuJynqePOOUhznygHbLxxyI/Z/2ojCgbLIwrp60xlac626n
9WMm01shAjqJltuO6E7lCzm/AFljSQqc1F2c8sBrzt8MIQujLzYDYqoECw5FitMC
FXWEuEep5lNafg5QcGn75QY3NUxyxGGVnSgMRrZgRqXmzdB0FNNJ+KCEoIBblUKw
Y2h3LJs3JgIsrMK856cb3m+HwXGHY0DFqcq++k95TVh0K1I+G+RasTkzlR/iSj62
B5bWqcB3m6EAhA8HttE+MLI35BNAfJeSsAUg7Zt+B87h9oFajY5fJYCujl6a/8zJ
+KFsmGWqSnLaw7jlk7HteDrqzQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:29 2024 by rpki-client on console-fra.rpki-client.org