Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/UKA84M63NEscNIJvJuhVfooiM_g.roa
File: UKA84M63NEscNIJvJuhVfooiM_g.roa (raw, json)
Hash identifier: CUK4dc1fQKXMQBy2I+7XZbsvEykZ+oQufSLb1beB5Uw=
Subject key identifier: 50:A0:3C:E0:CE:B7:34:4B:1C:34:82:6F:26:E8:55:7E:8A:22:33:F8
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27655E41
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/UKA84M63NEscNIJvJuhVfooiM_g.roa
Signing time: Sat 01 Jan 2022 16:07:55 +0000
ROA not before: Sat 01 Jan 2022 16:07:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25548
IP address blocks: 93.170.102.0/24 maxlen: 24
93.170.36.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 660954689 (0x27655e41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:07:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50a03ce0ceb7344b1c34826f26e8557e8a2233f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:64:d4:4d:d7:61:d2:5e:f1:e0:b2:62:e2:de:
7e:79:69:38:6c:1a:30:c2:7f:56:45:29:93:10:16:
0d:f5:e3:cf:8d:95:a8:cf:c8:9a:cd:ae:8d:ac:9c:
44:c4:40:10:7c:27:06:76:90:e9:e2:aa:42:71:34:
92:09:12:52:d6:66:6e:7a:0a:f5:d8:43:44:78:1c:
d6:a4:fc:98:09:21:37:5f:a7:bf:95:bb:f4:38:e5:
24:c6:2f:d6:00:e9:b0:ff:c3:ce:68:21:67:ab:35:
c4:c5:66:f6:47:9a:d9:a8:11:e9:11:72:0e:a5:b9:
74:04:16:d6:b1:d4:49:d5:fd:96:d6:98:2e:25:ff:
e7:06:cc:4e:e2:4b:92:ed:5c:fa:3d:01:05:5e:4d:
9c:e8:68:2a:0f:b9:08:6d:ea:36:ec:5a:52:06:33:
42:88:fd:18:c7:81:4f:f6:53:3c:75:43:3f:6e:de:
84:32:b0:93:59:ff:25:ff:ee:0c:94:82:87:c2:8e:
50:98:c8:08:22:58:7c:f3:2a:69:c9:f5:e2:eb:b1:
12:0e:21:a0:be:11:8a:f2:86:b4:9b:0d:c5:50:de:
c8:75:01:ab:a1:42:8e:f2:a3:09:b7:fc:cc:dd:0c:
aa:27:69:59:65:55:ce:fd:37:18:1a:74:ca:61:30:
e9:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:A0:3C:E0:CE:B7:34:4B:1C:34:82:6F:26:E8:55:7E:8A:22:33:F8
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/UKA84M63NEscNIJvJuhVfooiM_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.36.0/22
93.170.102.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:61:c8:68:d4:d5:10:10:ea:51:12:ae:17:85:64:63:15:32:
0a:79:bd:78:42:47:d6:e4:53:bb:27:56:26:7a:ba:e9:24:25:
36:3c:89:6a:aa:ea:31:74:67:cb:3b:cb:39:bf:f0:76:56:6e:
d1:56:11:c1:04:e2:d1:6a:c6:23:74:63:96:7a:8d:e0:11:00:
47:23:22:47:20:69:43:6c:55:54:ae:16:66:34:73:db:e2:bc:
ed:35:0b:34:9f:d9:47:1a:d5:af:76:16:c9:0b:33:e0:0a:db:
40:0e:8c:8f:1d:a2:d5:b9:ae:37:89:74:c4:d6:7f:8f:49:e9:
59:fa:7e:58:82:1f:4e:a5:d7:a2:38:ad:e2:a9:a1:87:c7:f3:
5f:3a:e0:90:56:44:81:8b:73:ed:db:f7:fb:a2:c9:8f:43:67:
e3:a1:01:26:c3:1d:66:7e:87:8a:c8:a1:c4:fa:27:4e:c7:be:
79:0c:35:b6:75:ca:8b:77:26:88:f8:cd:a3:29:83:4e:7a:34:
4b:90:b3:a5:72:89:3a:99:f9:ec:56:80:59:3d:48:0d:eb:62:
18:81:63:bc:a1:fd:bc:3f:cc:27:4d:72:e8:8c:1f:f8:da:58:
e1:07:fb:33:89:10:6b:6d:62:fb:8a:6e:db:f5:64:18:44:a8:
78:d9:06:78
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEJ2VeQTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MDc1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTBhMDNjZTBjZWI3
MzQ0YjFjMzQ4MjZmMjZlODU1N2U4YTIyMzNmODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALBk1E3XYdJe8eCyYuLefnlpOGwaMMJ/VkUpkxAWDfXjz42V
qM/Ims2ujaycRMRAEHwnBnaQ6eKqQnE0kgkSUtZmbnoK9dhDRHgc1qT8mAkhN1+n
v5W79DjlJMYv1gDpsP/DzmghZ6s1xMVm9kea2agR6RFyDqW5dAQW1rHUSdX9ltaY
LiX/5wbMTuJLku1c+j0BBV5NnOhoKg+5CG3qNuxaUgYzQoj9GMeBT/ZTPHVDP27e
hDKwk1n/Jf/uDJSCh8KOUJjICCJYfPMqacn14uuxEg4hoL4RivKGtJsNxVDeyHUB
q6FCjvKjCbf8zN0MqidpWWVVzv03GBp0ymEw6R8CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRQoDzgzrc0Sxw0gm8m6FV+iiIz+DAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
L1VLQTg0TTYzTkVzY05JSnZKdWhWZm9vaU1fZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAl2qJAMEAF2qZjANBgkqhkiG9w0B
AQsFAAOCAQEAX2HIaNTVEBDqURKuF4VkYxUyCnm9eEJH1uRTuydWJnq66SQlNjyJ
aqrqMXRnyzvLOb/wdlZu0VYRwQTi0WrGI3RjlnqN4BEARyMiRyBpQ2xVVK4WZjRz
2+K87TULNJ/ZRxrVr3YWyQsz4ArbQA6Mjx2i1bmuN4l0xNZ/j0npWfp+WIIfTqXX
ojit4qmhh8fzXzrgkFZEgYtz7dv3+6LJj0Nn46EBJsMdZn6HisihxPonTse+eQw1
tnXKi3cmiPjNoymDTno0S5CzpXKJOpn57FaAWT1IDetiGIFjvKH9vD/MJ01y6Iwf
+NpY4Qf7M4kQa21i+4pu2/VkGESoeNkGeA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:37 2024 by rpki-client on console-fra.rpki-client.org