Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/UcVYiQ-6lk0MVPKWzuIGXD8VZU8.roa
File: UcVYiQ-6lk0MVPKWzuIGXD8VZU8.roa (raw, json)
Hash identifier: r7eI9oepIB2ins4zDwsEJicbT7wmJw63w5mP1SXqlUo=
Subject key identifier: 51:C5:58:89:0F:BA:96:4D:0C:54:F2:96:CE:E2:06:5C:3F:15:65:4F
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 14B33F60
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/UcVYiQ-6lk0MVPKWzuIGXD8VZU8.roa
Signing time: Tue 26 Apr 2022 00:46:21 +0000
ROA not before: Tue 26 Apr 2022 00:46:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38136
IP address blocks: 185.248.186.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 347291488 (0x14b33f60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Apr 26 00:46:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51c558890fba964d0c54f296cee2065c3f15654f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:05:3e:44:de:b2:c3:71:0c:31:f9:b3:59:82:
fd:9c:5b:48:2a:7a:82:e2:15:a7:12:ad:19:78:4d:
14:d6:ae:1d:87:dc:6c:b4:59:b5:ac:e2:d5:05:38:
3e:08:de:ba:22:d1:2c:f9:b0:65:14:2b:d3:8c:ce:
cf:4a:28:09:0a:01:a3:af:f4:cc:ce:d2:ae:96:eb:
40:ce:79:d0:13:c2:3a:97:77:3c:d8:09:e4:48:12:
9f:6d:d8:84:51:3c:90:a4:11:08:9b:11:19:c6:03:
b2:77:d2:7f:56:7c:5d:3e:cd:f4:37:29:07:b8:74:
4e:47:e1:f6:6d:5d:b6:c8:d0:53:79:1e:4f:c0:27:
0a:4f:b8:9c:bf:00:79:68:53:05:c3:ec:22:39:4a:
01:f4:93:55:cf:80:25:86:14:2e:2b:a7:8c:c1:5b:
a9:60:3d:41:ec:f2:6f:3c:16:35:16:38:a3:51:0f:
12:cc:6c:bb:7e:eb:ed:fc:a6:ff:25:e2:1f:32:fb:
22:94:9e:0d:f7:ab:b9:46:56:f8:82:45:0a:3a:67:
00:29:9d:44:21:b9:7e:22:27:66:9e:50:e7:42:8c:
15:a8:49:7e:5d:55:e4:b5:c7:68:9e:cf:b5:16:c1:
1c:14:7a:19:f8:b0:b2:42:0b:8c:ea:9b:e1:b7:05:
a0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:C5:58:89:0F:BA:96:4D:0C:54:F2:96:CE:E2:06:5C:3F:15:65:4F
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/UcVYiQ-6lk0MVPKWzuIGXD8VZU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.186.0/23
Signature Algorithm: sha256WithRSAEncryption
dc:dc:28:02:be:3b:ee:41:8e:e7:be:fc:11:98:10:d4:d8:1c:
7d:64:c6:7b:5d:9f:e1:9f:ae:11:d3:c6:b6:cd:2a:5c:b1:da:
e1:40:15:0a:d2:e0:28:38:05:9f:d2:b4:61:e4:39:ed:77:c4:
2a:c6:bf:0e:9b:5b:65:c6:86:aa:91:61:23:94:51:87:14:ac:
12:2b:41:2d:14:d4:93:ab:9e:3f:4f:74:be:06:f9:70:d4:db:
80:de:a5:86:cc:7a:3a:38:c6:6c:cd:02:cf:9c:1e:88:21:fa:
37:c8:1d:62:d9:2b:06:12:50:9f:18:2e:1a:ae:5c:39:65:19:
e2:a1:fc:37:04:65:6d:b6:d7:ed:73:be:2a:1e:1f:a5:df:74:
0b:d4:2a:bf:7a:b2:b3:53:aa:45:64:bc:6d:56:e4:fb:82:88:
35:29:ce:4c:63:6b:15:4d:d5:18:59:76:a4:02:3e:88:ae:dd:
82:34:2b:eb:b8:dc:b9:bc:9b:29:6b:ef:7a:ce:93:a7:5f:65:
1a:d2:7c:da:ca:30:1f:d9:3c:50:f8:e4:2c:f4:cb:aa:9d:35:
12:e4:2f:f7:8a:8c:94:39:13:2e:3f:3c:73:ee:a7:4e:45:df:
13:df:01:18:5a:4f:f7:cb:25:70:2d:f6:b4:e1:47:5d:ab:f0:
ea:9c:9c:54
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFLM/YDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
YWMzZGFhMWIxNDg1MGYyZTYxYzU5MmIyMTkxOTE1YTVlNjVhNDc4MB4XDTIyMDQy
NjAwNDYyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTFjNTU4ODkwZmJh
OTY0ZDBjNTRmMjk2Y2VlMjA2NWMzZjE1NjU0ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALAFPkTessNxDDH5s1mC/ZxbSCp6guIVpxKtGXhNFNauHYfc
bLRZtazi1QU4PgjeuiLRLPmwZRQr04zOz0ooCQoBo6/0zM7SrpbrQM550BPCOpd3
PNgJ5EgSn23YhFE8kKQRCJsRGcYDsnfSf1Z8XT7N9DcpB7h0Tkfh9m1dtsjQU3ke
T8AnCk+4nL8AeWhTBcPsIjlKAfSTVc+AJYYULiunjMFbqWA9QezybzwWNRY4o1EP
Esxsu37r7fym/yXiHzL7IpSeDferuUZW+IJFCjpnACmdRCG5fiInZp5Q50KMFahJ
fl1V5LXHaJ7PtRbBHBR6GfiwskILjOqb4bcFoEkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRRxViJD7qWTQxU8pbO4gZcPxVlTzAfBgNVHSMEGDAWgBQqw9qhsUhQ8uYc
WSshkZFaXmWkeDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tzUGFvYkZJVVBMbUhGa3JJWkdSV2w1bHBIZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzAvNDA1YmJkLTU5MTMtNGU5NS04ZTc1LWZlMDY1OTE3NmE1Ni8x
L1VjVllpUS02bGswTVZQS1d6dUlHWEQ4VlpVOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzAv
NDA1YmJkLTU5MTMtNGU5NS04ZTc1LWZlMDY1OTE3NmE1Ni8xL0tzUGFvYkZJVVBM
bUhGa3JJWkdSV2w1bHBIZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbn4ujANBgkqhkiG9w0BAQsFAAOC
AQEA3NwoAr477kGO5778EZgQ1NgcfWTGe12f4Z+uEdPGts0qXLHa4UAVCtLgKDgF
n9K0YeQ57XfEKsa/DptbZcaGqpFhI5RRhxSsEitBLRTUk6ueP090vgb5cNTbgN6l
hsx6OjjGbM0Cz5weiCH6N8gdYtkrBhJQnxguGq5cOWUZ4qH8NwRlbbbX7XO+Kh4f
pd90C9Qqv3qys1OqRWS8bVbk+4KINSnOTGNrFU3VGFl2pAI+iK7dgjQr67jcubyb
KWvves6Tp19lGtJ82sowH9k8UPjkLPTLqp01EuQv94qMlDkTLj88c+6nTkXfE98B
GFpP98slcC32tOFHXavw6pycVA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:24 2023 by rpki-client on console-ams.rpki-client.org