Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/uMk79lItKUrhLvNooYIAQ9qmIeM.roa
File: uMk79lItKUrhLvNooYIAQ9qmIeM.roa (raw, json)
Hash identifier: u5Vsf26to54UqW+O6kQDjJI3soUlODijn74mN96G7a8=
Subject key identifier: B8:C9:3B:F6:52:2D:29:4A:E1:2E:F3:68:A1:82:00:43:DA:A6:21:E3
Certificate issuer: /CN=79d565f99ff5e0ffb5bdf9995ed7a808d41406e5
Certificate serial: 0184899575D84487A68704A6591707D55B29
Authority key identifier: 79:D5:65:F9:9F:F5:E0:FF:B5:BD:F9:99:5E:D7:A8:08:D4:14:06:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/edVl-Z_14P-1vfmZXteoCNQUBuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/uMk79lItKUrhLvNooYIAQ9qmIeM.roa
Signing time: Fri 18 Nov 2022 07:13:04 +0000
ROA not before: Fri 18 Nov 2022 07:13:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208006
IP address blocks: 130.185.123.0/24 maxlen: 24
130.185.122.0/24 maxlen: 24
185.235.40.0/22 maxlen: 24
130.185.120.0/22 maxlen: 24
185.215.232.0/22 maxlen: 24
185.215.235.0/24 maxlen: 24
185.215.234.0/24 maxlen: 24
185.204.168.0/22 maxlen: 24
194.5.192.0/23 maxlen: 24
194.5.206.0/23 maxlen: 24
2a0d:4ac0::/48 maxlen: 48
2a0d:4ac0:3::/48 maxlen: 48
2a0d:4ac0:1::/48 maxlen: 48
2a0d:4ac0:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:89:95:75:d8:44:87:a6:87:04:a6:59:17:07:d5:5b:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79d565f99ff5e0ffb5bdf9995ed7a808d41406e5
Validity
Not Before: Nov 18 07:13:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8c93bf6522d294ae12ef368a1820043daa621e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ac:5c:75:51:75:64:0f:c0:60:8d:0a:12:f4:
f1:14:25:e3:48:56:8a:dc:dc:7a:97:79:0a:3a:15:
f0:10:68:bd:eb:2e:b9:14:bf:5c:0b:12:6b:76:f8:
15:36:d7:ed:d1:98:77:5c:d6:cc:f3:57:1f:55:78:
7d:d9:99:52:e6:c9:99:a4:3d:fe:72:79:8d:78:db:
63:f6:87:86:8e:4f:ad:1c:81:e5:a0:0f:bd:26:d1:
6b:e3:65:d4:36:81:a9:51:78:b6:c1:93:ca:d4:b2:
32:fe:c9:03:e3:26:70:d7:74:57:b0:27:67:3d:cb:
cc:e8:9d:46:13:c8:3d:58:17:5e:3a:13:2c:89:c4:
b4:2b:ef:8b:e4:e6:e0:cc:aa:11:9b:bd:7b:7a:3c:
73:84:61:4b:0b:bb:dc:3f:52:09:da:eb:ad:89:15:
88:53:24:2d:69:25:ba:32:8a:d8:a7:5f:05:da:b3:
5d:0f:9d:bc:c0:47:56:33:69:8f:3a:30:b1:06:3d:
f7:a6:d6:4c:9f:43:f7:e0:55:e7:d8:44:1c:ba:30:
ef:56:98:65:07:8d:e4:45:aa:e1:99:93:8b:12:04:
e1:73:00:e9:ee:de:2b:aa:c9:f1:d1:c3:e3:c5:4a:
05:7b:90:d2:33:68:f1:2e:6b:1f:78:e9:79:a7:53:
d6:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:C9:3B:F6:52:2D:29:4A:E1:2E:F3:68:A1:82:00:43:DA:A6:21:E3
X509v3 Authority Key Identifier:
keyid:79:D5:65:F9:9F:F5:E0:FF:B5:BD:F9:99:5E:D7:A8:08:D4:14:06:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/edVl-Z_14P-1vfmZXteoCNQUBuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/uMk79lItKUrhLvNooYIAQ9qmIeM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/edVl-Z_14P-1vfmZXteoCNQUBuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.185.120.0/22
185.204.168.0/22
185.215.232.0/22
185.235.40.0/22
194.5.192.0/23
194.5.206.0/23
IPv6:
2a0d:4ac0::/46
Signature Algorithm: sha256WithRSAEncryption
51:52:b8:01:6b:57:52:a6:be:82:91:af:73:56:7d:2c:b3:ac:
e8:0c:cb:b9:75:c5:d8:5b:65:5e:bb:42:41:ca:02:62:3b:03:
ef:d4:4a:12:23:db:77:4a:46:7b:8c:43:ea:b0:9f:ef:02:f5:
0c:6c:60:9c:29:69:5d:b5:25:9c:54:53:d9:08:00:23:d0:23:
75:49:bc:0b:e3:3f:1d:d7:72:d7:33:44:be:a0:64:89:28:fc:
a1:75:e7:08:1e:72:a4:f1:d4:7f:74:5c:7c:cc:84:1e:1b:ae:
e0:98:49:0a:7b:2b:2a:d3:d5:fb:ad:cd:ed:7a:fa:72:36:dc:
ed:95:3c:7d:ed:d2:dd:46:95:b6:84:41:01:73:85:df:97:41:
23:04:b5:75:99:a3:3e:cd:fc:c4:68:98:2e:88:ed:88:f4:78:
5e:b0:a4:ed:16:d5:4e:7f:1d:0a:0f:9f:8e:6e:86:95:9b:fe:
17:c7:f6:f3:81:e1:f1:10:b1:47:df:b9:8b:ed:3f:60:19:18:
cd:86:ad:fc:68:4b:f7:19:d9:5b:15:ff:dd:e6:08:d6:22:cc:
a8:e2:6b:d3:fa:27:84:70:17:91:82:d5:3b:d4:47:ba:65:45:
cd:14:fd:47:d6:40:dc:99:3b:45:44:15:d6:3e:d1:0c:13:e5:
94:20:4b:3c
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgISAYSJlXXYRIemhwSmWRcH1VspMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc5ZDU2NWY5OWZmNWUwZmZiNWJkZjk5OTVlZDdhODA4ZDQx
NDA2ZTUwHhcNMjIxMTE4MDcxMzA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOGM5M2JmNjUyMmQyOTRhZTEyZWYzNjhhMTgyMDA0M2RhYTYyMWUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqxcdVF1ZA/AYI0KEvTxFCXjSFaK
3Nx6l3kKOhXwEGi96y65FL9cCxJrdvgVNtft0Zh3XNbM81cfVXh92ZlS5smZpD3+
cnmNeNtj9oeGjk+tHIHloA+9JtFr42XUNoGpUXi2wZPK1LIy/skD4yZw13RXsCdn
PcvM6J1GE8g9WBdeOhMsicS0K++L5ObgzKoRm717ejxzhGFLC7vcP1IJ2uutiRWI
UyQtaSW6MorYp18F2rNdD528wEdWM2mPOjCxBj33ptZMn0P34FXn2EQcujDvVphl
B43kRarhmZOLEgThcwDp7t4rqsnx0cPjxUoFe5DSM2jxLmsfeOl5p1PWswIDAQAB
o4ICODCCAjQwHQYDVR0OBBYEFLjJO/ZSLSlK4S7zaKGCAEPapiHjMB8GA1UdIwQY
MBaAFHnVZfmf9eD/tb35mV7XqAjUFAblMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZWRWbC1aXzE0UC0xdmZtWlh0ZW9DTlFVQnVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9lZTVjZDctYjMwZS00NjZiLWFhYWQt
NmMzYjg3NDQzZTA2LzEvdU1rNzlsSXRLVXJoTHZOb29ZSUFROXFtSWVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC9lZTVjZDctYjMwZS00NjZiLWFhYWQtNmMzYjg3NDQzZTA2
LzEvZWRWbC1aXzE0UC0xdmZtWlh0ZW9DTlFVQnVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME4GCCsGAQUFBwEHAQH/BD8wPTAqBAIAATAkAwQCgrl4AwQC
ucyoAwQCudfoAwQCuesoAwQBwgXAAwQBwgXOMA8EAgACMAkDBwIqDUrAAAAwDQYJ
KoZIhvcNAQELBQADggEBAFFSuAFrV1KmvoKRr3NWfSyzrOgMy7l1xdhbZV67QkHK
AmI7A+/UShIj23dKRnuMQ+qwn+8C9QxsYJwpaV21JZxUU9kIACPQI3VJvAvjPx3X
ctczRL6gZIko/KF15wgecqTx1H90XHzMhB4bruCYSQp7KyrT1futze16+nI23O2V
PH3t0t1GlbaEQQFzhd+XQSMEtXWZoz7N/MRomC6I7Yj0eF6wpO0W1U5/HQoPn45u
hpWb/hfH9vOB4fEQsUffuYvtP2AZGM2GrfxoS/cZ2VsV/93mCNYizKjia9P6J4Rw
F5GC1TvUR7plRc0U/UfWQNyZO0VEFdY+0QwT5ZQgSzw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:06 2024 by rpki-client on console-fra.rpki-client.org