Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/UfuIUPHqgtbZ8vwnw4PHzVM7stY.roa
File: UfuIUPHqgtbZ8vwnw4PHzVM7stY.roa (raw, json)
Hash identifier: bsA0JVm1Ex9qh4a0+yYdTXiCzV0L1coJ3IHn9zFh0gs=
Subject key identifier: 51:FB:88:50:F1:EA:82:D6:D9:F2:FC:27:C3:83:C7:CD:53:3B:B2:D6
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 0184CA51F9D7AFA4CA43CD6FC452D1EC1FDF
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/UfuIUPHqgtbZ8vwnw4PHzVM7stY.roa
Signing time: Wed 30 Nov 2022 20:54:40 +0000
ROA not before: Wed 30 Nov 2022 20:54:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 141.226.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ca:51:f9:d7:af:a4:ca:43:cd:6f:c4:52:d1:ec:1f:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Nov 30 20:54:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51fb8850f1ea82d6d9f2fc27c383c7cd533bb2d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:08:8e:d0:27:a5:fa:6d:82:b3:e9:13:1b:cf:
b0:32:a5:ba:60:23:92:9f:80:f4:8a:12:17:15:a0:
b1:ca:59:d1:46:75:73:87:2e:71:6f:1c:29:54:09:
0e:09:f3:cc:bf:cf:10:cc:67:ae:45:17:b2:72:fe:
c9:ca:eb:f3:c6:d2:02:06:36:bb:ae:3d:d6:ab:c3:
60:5f:38:c9:01:7c:e6:64:e3:fd:f1:bb:99:fc:dc:
64:bc:99:f4:5a:6d:e3:9d:5e:82:d8:7c:cf:db:86:
c2:67:9a:4d:e5:c6:20:50:19:93:5b:25:58:ec:da:
3b:40:92:54:68:87:6c:bb:fe:64:23:73:3a:02:e3:
13:b7:97:05:af:50:8d:4f:ab:73:41:d2:a8:f4:16:
e5:19:e4:fe:a3:8a:c2:5a:95:40:83:22:05:4d:d4:
16:0d:e8:35:61:3a:3c:8e:23:0e:aa:62:96:2d:23:
be:c6:a5:52:d5:1c:65:c1:9a:02:9f:a7:b8:29:11:
5d:09:4e:8d:7a:e8:60:25:e6:bc:92:46:55:99:15:
ad:47:f1:a2:ee:d0:d5:b6:08:5c:02:51:52:72:32:
78:a0:c9:1a:5d:33:86:b4:62:3e:7e:2d:d3:e5:9f:
36:e4:1f:b8:02:a1:29:b7:78:6a:a9:54:c5:59:32:
b7:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:FB:88:50:F1:EA:82:D6:D9:F2:FC:27:C3:83:C7:CD:53:3B:B2:D6
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/UfuIUPHqgtbZ8vwnw4PHzVM7stY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.226.245.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:4a:2f:20:61:9e:48:2b:ff:02:36:20:41:14:00:ca:89:37:
42:12:58:63:06:ae:2c:ce:0b:f7:34:c2:10:f8:17:0a:ec:14:
f7:93:07:fd:a1:b2:81:fd:ca:1c:d5:a9:7d:85:91:42:07:13:
9b:c3:82:c9:4c:2c:b3:ec:1b:18:6b:02:71:e3:57:d7:3b:56:
5c:b8:27:cb:30:b8:b3:10:9d:fd:12:f8:c3:b0:5b:a9:3c:9b:
77:22:64:3d:ba:a4:e1:bf:64:e2:37:06:bd:32:fa:c5:59:66:
fb:17:14:16:9e:e7:00:41:ff:b8:0c:55:34:cc:e7:b3:18:45:
06:fa:00:ac:aa:ba:4e:4a:07:0c:95:54:78:f7:77:30:a2:36:
c0:78:a7:68:b1:1b:f0:50:cb:2b:a0:ba:08:ae:68:c7:4b:59:
34:91:2a:59:fb:2e:99:b6:b6:0c:b3:7f:05:bd:46:2a:e8:9c:
bc:d4:fc:81:85:5b:1c:3e:bc:46:ca:05:a7:9d:72:77:31:ba:
ef:45:e9:42:f5:4b:19:d9:00:34:c2:e0:0c:0a:92:8a:02:fe:
36:ef:ce:22:d2:55:c3:7b:c4:97:f2:1f:55:29:f2:ac:59:f1:
55:50:98:a1:82:59:13:70:15:1f:61:78:ae:bd:f2:b7:b5:dd:
96:c7:b2:d1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYTKUfnXr6TKQ81vxFLR7B/fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwZjliMTZhZGYyZmQzMTk4ODg1OTkyMmI0NDU3NDgxZGQ3
ZWVmNDAwHhcNMjIxMTMwMjA1NDQwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MWZiODg1MGYxZWE4MmQ2ZDlmMmZjMjdjMzgzYzdjZDUzM2JiMmQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgAiO0Cel+m2Cs+kTG8+wMqW6YCOS
n4D0ihIXFaCxylnRRnVzhy5xbxwpVAkOCfPMv88QzGeuRReycv7JyuvzxtICBja7
rj3Wq8NgXzjJAXzmZOP98buZ/NxkvJn0Wm3jnV6C2HzP24bCZ5pN5cYgUBmTWyVY
7No7QJJUaIdsu/5kI3M6AuMTt5cFr1CNT6tzQdKo9BblGeT+o4rCWpVAgyIFTdQW
Deg1YTo8jiMOqmKWLSO+xqVS1RxlwZoCn6e4KRFdCU6NeuhgJea8kkZVmRWtR/Gi
7tDVtghcAlFScjJ4oMkaXTOGtGI+fi3T5Z825B+4AqEpt3hqqVTFWTK3oQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFH7iFDx6oLW2fL8J8ODx81TO7LWMB8GA1UdIwQY
MBaAFHD5sWrfL9MZiIWZIrRFdIHdfu9AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1BteGF0OHYweG1JaFpraXRFVjBnZDEtNzBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi85NTZkYjktYzhmNy00YjlmLWE1NmUt
YmM2ZGI3MjQ4YWRkLzEvVWZ1SVVQSHFndGJaOHZ3bnc0UEh6Vk03c3RZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi85NTZkYjktYzhmNy00YjlmLWE1NmUtYmM2ZGI3MjQ4YWRk
LzEvY1BteGF0OHYweG1JaFpraXRFVjBnZDEtNzBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjeL1MA0G
CSqGSIb3DQEBCwUAA4IBAQDKSi8gYZ5IK/8CNiBBFADKiTdCElhjBq4szgv3NMIQ
+BcK7BT3kwf9obKB/coc1al9hZFCBxObw4LJTCyz7BsYawJx41fXO1ZcuCfLMLiz
EJ39EvjDsFupPJt3ImQ9uqThv2TiNwa9MvrFWWb7FxQWnucAQf+4DFU0zOezGEUG
+gCsqrpOSgcMlVR493cwojbAeKdosRvwUMsroLoIrmjHS1k0kSpZ+y6ZtrYMs38F
vUYq6Jy81PyBhVscPrxGygWnnXJ3MbrvRelC9UsZ2QA0wuAMCpKKAv42784i0lXD
e8SX8h9VKfKsWfFVUJihglkTcBUfYXiuvfK3td2Wx7LR
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:06 2024 by rpki-client on console-fra.rpki-client.org