Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66214b-01df-4b01-ba76-f4cbd6ba6c0f/1/uLjxw25rw6QKrUwsgc3L4Ccgbik.roa
File: uLjxw25rw6QKrUwsgc3L4Ccgbik.roa (raw, json)
Hash identifier: yOwokx/x/Ap2+sDr5XaZ3ByZdGMrNQxiZHco1+uq7Ns=
Subject key identifier: B8:B8:F1:C3:6E:6B:C3:A4:0A:AD:4C:2C:81:CD:CB:E0:27:20:6E:29
Certificate issuer: /CN=61e565562d3e3f565e9c0a41946ea53d45d5d657
Certificate serial: 01805B99
Authority key identifier: 61:E5:65:56:2D:3E:3F:56:5E:9C:0A:41:94:6E:A5:3D:45:D5:D6:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YeVlVi0-P1ZenApBlG6lPUXV1lc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66214b-01df-4b01-ba76-f4cbd6ba6c0f/1/uLjxw25rw6QKrUwsgc3L4Ccgbik.roa
Signing time: Sat 01 Jan 2022 12:54:52 +0000
ROA not before: Sat 01 Jan 2022 12:54:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211186
IP address blocks: 185.14.96.0/24 maxlen: 24
2a0c:2580::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25189273 (0x1805b99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61e565562d3e3f565e9c0a41946ea53d45d5d657
Validity
Not Before: Jan 1 12:54:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8b8f1c36e6bc3a40aad4c2c81cdcbe027206e29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:aa:cb:72:da:83:32:ef:5e:f8:31:16:99:dc:
b2:a5:69:d2:f4:5e:bf:a1:03:27:77:25:52:7d:8e:
ea:9b:62:98:2d:27:14:fa:be:48:05:14:49:05:4d:
c8:62:28:aa:a4:3a:c6:88:77:fd:70:6f:e9:ea:c0:
d9:d2:1f:33:cc:d2:10:f2:f7:9f:a0:43:15:2d:90:
46:df:0a:23:dc:60:68:44:8f:0c:53:91:4b:25:5b:
73:8b:9a:cb:56:1e:b8:36:dd:71:b0:e2:da:f3:2c:
fe:9c:06:a0:db:bd:c4:99:88:c8:8d:4e:72:01:71:
da:f8:03:36:f7:fa:b8:f9:48:6c:ce:41:15:a1:e2:
7b:7e:b4:df:25:21:77:c3:ff:0c:69:76:31:f4:c3:
6c:17:36:41:7a:a6:99:04:27:a9:05:35:07:d6:2a:
19:a0:ac:84:c4:7c:bd:19:b7:d1:9a:58:3e:05:3e:
82:26:99:cb:f4:05:17:0b:a1:12:74:08:6e:b9:6b:
88:97:2a:1f:48:f1:5e:46:92:dc:0e:23:45:60:8b:
1f:90:7b:46:23:b0:e8:46:89:72:a8:44:4f:61:ba:
12:b3:22:9f:29:c4:ca:bb:81:0b:74:74:76:80:eb:
e4:17:6f:de:e1:2a:05:71:c0:fd:a6:ec:22:ca:95:
17:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:B8:F1:C3:6E:6B:C3:A4:0A:AD:4C:2C:81:CD:CB:E0:27:20:6E:29
X509v3 Authority Key Identifier:
keyid:61:E5:65:56:2D:3E:3F:56:5E:9C:0A:41:94:6E:A5:3D:45:D5:D6:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YeVlVi0-P1ZenApBlG6lPUXV1lc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66214b-01df-4b01-ba76-f4cbd6ba6c0f/1/uLjxw25rw6QKrUwsgc3L4Ccgbik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66214b-01df-4b01-ba76-f4cbd6ba6c0f/1/YeVlVi0-P1ZenApBlG6lPUXV1lc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.14.96.0/24
IPv6:
2a0c:2580::/30
Signature Algorithm: sha256WithRSAEncryption
1c:50:ee:5d:25:67:10:f2:73:ae:c9:ef:7f:9d:a0:54:7d:47:
50:87:c5:e2:09:3d:54:25:53:52:8d:59:0d:fb:30:c9:53:7e:
0f:89:b3:8b:fb:bd:9e:8e:28:16:e7:55:a7:b7:9b:e5:17:71:
00:f9:9b:ff:e2:dc:19:bc:fb:d3:11:51:08:48:dc:87:30:43:
49:25:3b:d1:b2:92:29:37:26:5d:ae:fb:f6:9c:8b:20:9b:7f:
36:30:47:fb:77:a9:a7:88:9a:de:de:21:b9:09:32:4a:35:ad:
29:0a:e0:39:65:86:38:4b:00:48:57:ac:8e:c4:cd:fe:e9:26:
00:69:9b:c9:69:1e:96:5b:af:6d:f2:03:9d:1c:d5:39:b2:c8:
0c:8d:88:8b:7b:21:c9:bd:b1:fe:12:06:bc:7f:69:d2:27:59:
9a:01:ab:c3:3b:f3:cf:f6:9b:41:86:2a:6c:24:be:c5:5f:c0:
67:a3:92:d6:f6:53:01:63:88:2c:97:41:19:c8:c4:32:fc:ac:
d7:ab:b7:99:1e:b4:f1:72:e8:3c:35:42:16:12:06:e0:47:69:
6b:80:fb:c2:95:b6:0f:f9:fe:a0:53:75:28:02:a0:11:1c:b2:
39:4e:3f:6f:60:36:65:b0:cd:ec:10:3b:11:c9:2c:4a:5c:c4:
27:c0:c1:e1
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEAYBbmTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MWU1NjU1NjJkM2UzZjU2NWU5YzBhNDE5NDZlYTUzZDQ1ZDVkNjU3MB4XDTIyMDEw
MTEyNTQ1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjhiOGYxYzM2ZTZi
YzNhNDBhYWQ0YzJjODFjZGNiZTAyNzIwNmUyOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALOqy3LagzLvXvgxFpncsqVp0vRev6EDJ3clUn2O6ptimC0n
FPq+SAUUSQVNyGIoqqQ6xoh3/XBv6erA2dIfM8zSEPL3n6BDFS2QRt8KI9xgaESP
DFORSyVbc4uay1YeuDbdcbDi2vMs/pwGoNu9xJmIyI1OcgFx2vgDNvf6uPlIbM5B
FaHie3603yUhd8P/DGl2MfTDbBc2QXqmmQQnqQU1B9YqGaCshMR8vRm30ZpYPgU+
giaZy/QFFwuhEnQIbrlriJcqH0jxXkaS3A4jRWCLH5B7RiOw6EaJcqhET2G6ErMi
nynEyruBC3R0doDr5Bdv3uEqBXHA/absIsqVF7UCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBS4uPHDbmvDpAqtTCyBzcvgJyBuKTAfBgNVHSMEGDAWgBRh5WVWLT4/Vl6c
CkGUbqU9RdXWVzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1llVmxWaTAtUDFaZW5BcEJsRzZsUFVYVjFsYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzgvNjYyMTRiLTAxZGYtNGIwMS1iYTc2LWY0Y2JkNmJhNmMwZi8x
L3VManh3MjVydzZRS3JVd3NnYzNMNENjZ2Jpay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgv
NjYyMTRiLTAxZGYtNGIwMS1iYTc2LWY0Y2JkNmJhNmMwZi8xL1llVmxWaTAtUDFa
ZW5BcEJsRzZsUFVYVjFsYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEALkOYDANBAIAAjAHAwUCKgwlgDAN
BgkqhkiG9w0BAQsFAAOCAQEAHFDuXSVnEPJzrsnvf52gVH1HUIfF4gk9VCVTUo1Z
DfswyVN+D4mzi/u9no4oFudVp7eb5RdxAPmb/+LcGbz70xFRCEjchzBDSSU70bKS
KTcmXa779pyLIJt/NjBH+3epp4ia3t4huQkySjWtKQrgOWWGOEsASFesjsTN/ukm
AGmbyWkelluvbfIDnRzVObLIDI2Ii3shyb2x/hIGvH9p0idZmgGrwzvzz/abQYYq
bCS+xV/AZ6OS1vZTAWOILJdBGcjEMvys16u3mR608XLoPDVCFhIG4Edpa4D7wpW2
D/n+oFN1KAKgERyyOU4/b2A2ZbDN7BA7EcksSlzEJ8DB4Q==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:47 2023 by rpki-client on console-ams.rpki-client.org