Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/ujtYjpJ73S_U55qCqQNzqM4DBbU.roa
File: ujtYjpJ73S_U55qCqQNzqM4DBbU.roa (raw, json)
Hash identifier: +BqJhk7K1J5RG7Cov2Zn2ZWMY+iKzk1/glfOUIrhFfQ=
Subject key identifier: BA:3B:58:8E:92:7B:DD:2F:D4:E7:9A:82:A9:03:73:A8:CE:03:05:B5
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A925D63
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/ujtYjpJ73S_U55qCqQNzqM4DBbU.roa
Signing time: Sat 01 Jan 2022 04:52:15 +0000
ROA not before: Sat 01 Jan 2022 04:52:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205990
IP address blocks: 81.15.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 982670691 (0x3a925d63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:52:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba3b588e927bdd2fd4e79a82a90373a8ce0305b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:43:fd:f5:12:9a:01:9d:af:d6:9d:87:1e:cd:
83:9b:75:06:37:f4:25:a9:ee:80:3d:fc:13:34:1f:
b3:bb:4a:b5:2b:25:15:03:ce:8b:a9:04:77:2a:58:
4c:85:ab:e0:34:7e:6b:19:8c:5a:92:32:32:59:09:
99:8f:d7:12:19:91:4f:2f:f5:fc:d9:d3:55:d4:1c:
3c:43:12:05:bc:91:fe:54:ba:7d:73:b0:56:bd:5f:
83:ff:6b:75:a7:b5:1c:fa:4c:34:ca:21:df:cb:8c:
e2:2e:87:b5:e3:de:95:9f:d7:eb:19:b5:94:59:80:
ea:60:bc:1d:70:a7:a2:17:6c:8a:3f:0f:37:36:8c:
10:f6:ee:cf:2b:7a:ec:0a:a7:d2:66:c1:ba:2f:a8:
80:1f:08:03:7a:8c:55:d7:9f:15:f7:e1:bb:c0:5f:
3b:78:c6:e7:99:41:d0:5b:ea:ed:7e:8d:e0:7c:68:
3b:f6:a8:5c:8a:1b:62:a5:ce:1a:70:1d:a9:d9:79:
8e:b1:7d:fc:04:29:c1:0b:43:f0:2f:be:93:13:b4:
23:5f:00:ff:c7:40:0f:fb:bb:8f:a5:a6:36:d7:28:
00:50:8d:4b:7e:47:05:8e:af:7a:8a:56:94:29:38:
b5:99:1c:c8:03:f5:85:cd:94:e3:2c:ff:1f:1d:f7:
8a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:3B:58:8E:92:7B:DD:2F:D4:E7:9A:82:A9:03:73:A8:CE:03:05:B5
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/ujtYjpJ73S_U55qCqQNzqM4DBbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.15.217.0/24
Signature Algorithm: sha256WithRSAEncryption
13:a3:df:a0:a4:fa:5d:35:a2:7d:09:77:8e:f6:76:8f:9a:34:
10:ee:01:02:98:23:2b:cd:cb:23:70:80:71:d7:2d:db:25:16:
c2:e4:db:d5:fd:f7:08:06:41:b1:5a:26:4a:15:af:06:da:48:
3b:b4:d4:9f:6d:ef:f8:03:09:7c:ed:f7:d7:2d:9c:3c:26:2b:
f7:48:26:d3:7c:f8:fe:17:b4:9c:0e:56:32:52:71:ff:f3:07:
ea:23:ff:a5:a1:3e:86:2c:0d:7b:63:f6:a0:9c:38:85:49:81:
26:4d:37:d7:73:c5:f0:92:51:90:5d:0c:c1:c9:d0:e5:4e:5e:
a1:e0:1f:ba:c9:81:6e:9e:5d:12:ed:c9:78:96:6f:97:51:1e:
bf:70:a3:57:68:f4:fe:1a:b5:20:0e:cb:81:5a:de:58:4c:51:
81:ae:64:58:38:5b:7f:b0:a0:71:02:dd:84:9f:e3:b9:e6:74:
f2:ec:4c:b8:4e:02:8f:58:d5:79:2a:22:41:f4:08:ef:96:c0:
2e:d7:1d:a2:52:d4:0a:d0:24:c6:94:d7:0e:fe:08:d3:3b:86:
e6:1a:4a:cf:12:87:03:7c:6d:07:67:c6:da:6c:54:17:8e:42:
d7:8f:47:3f:1f:c2:a5:4c:8b:ac:34:1d:75:dd:60:5e:9b:6c:
fd:36:2f:1e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOpJdYzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NDY4MzRlNjg4OTBmMzk4NmExYjA0NTdjZTBmNTRhZTAzYzJkNzZiMB4XDTIyMDEw
MTA0NTIxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmEzYjU4OGU5Mjdi
ZGQyZmQ0ZTc5YTgyYTkwMzczYThjZTAzMDViNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANJD/fUSmgGdr9adhx7Ng5t1Bjf0JanugD38EzQfs7tKtSsl
FQPOi6kEdypYTIWr4DR+axmMWpIyMlkJmY/XEhmRTy/1/NnTVdQcPEMSBbyR/lS6
fXOwVr1fg/9rdae1HPpMNMoh38uM4i6HtePelZ/X6xm1lFmA6mC8HXCnohdsij8P
NzaMEPbuzyt67Aqn0mbBui+ogB8IA3qMVdefFffhu8BfO3jG55lB0Fvq7X6N4Hxo
O/aoXIobYqXOGnAdqdl5jrF9/AQpwQtD8C++kxO0I18A/8dAD/u7j6WmNtcoAFCN
S35HBY6veopWlCk4tZkcyAP1hc2U4yz/Hx33iocCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS6O1iOknvdL9TnmoKpA3OozgMFtTAfBgNVHSMEGDAWgBRUaDTmiJDzmGob
BFfOD1SuA8LXazAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZHZzA1b2lRODVocUd3Ulh6ZzlVcmdQQzEycy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjkvNWYyZjBiLWZkODItNDRmYS1iNjM0LTUyNzY2YjI0YmFhNC8x
L3VqdFlqcEo3M1NfVTU1cUNxUU56cU00REJiVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjkv
NWYyZjBiLWZkODItNDRmYS1iNjM0LTUyNzY2YjI0YmFhNC8xL1ZHZzA1b2lRODVo
cUd3Ulh6ZzlVcmdQQzEycy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFEP2TANBgkqhkiG9w0BAQsFAAOC
AQEAE6PfoKT6XTWifQl3jvZ2j5o0EO4BApgjK83LI3CAcdct2yUWwuTb1f33CAZB
sVomShWvBtpIO7TUn23v+AMJfO331y2cPCYr90gm03z4/he0nA5WMlJx//MH6iP/
paE+hiwNe2P2oJw4hUmBJk0313PF8JJRkF0MwcnQ5U5eoeAfusmBbp5dEu3JeJZv
l1Eev3CjV2j0/hq1IA7LgVreWExRga5kWDhbf7CgcQLdhJ/jueZ08uxMuE4Cj1jV
eSoiQfQI75bALtcdolLUCtAkxpTXDv4I0zuG5hpKzxKHA3xtB2fG2mxUF45C149H
Px/CpUyLrDQddd1gXpts/TYvHg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:02 2023 by rpki-client on console-ams.rpki-client.org