Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/ui6PLnSDlNQO0tE93192F4qSl-g.roa
File: ui6PLnSDlNQO0tE93192F4qSl-g.roa (raw, json)
Hash identifier: dhTcM4IB6HWPJs5I/VsZ91C0PcGMli10xH5MRP2LeYI=
Subject key identifier: BA:2E:8F:2E:74:83:94:D4:0E:D2:D1:3D:DF:5F:76:17:8A:92:97:E8
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0183CFFBEA0666C1E12241E352A1E38EBADC
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/ui6PLnSDlNQO0tE93192F4qSl-g.roa
Signing time: Thu 13 Oct 2022 06:15:36 +0000
ROA not before: Thu 13 Oct 2022 06:15:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 185.81.30.0/23 maxlen: 24
185.81.28.0/23 maxlen: 24
188.64.104.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cf:fb:ea:06:66:c1:e1:22:41:e3:52:a1:e3:8e:ba:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Oct 13 06:15:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba2e8f2e748394d40ed2d13ddf5f76178a9297e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:41:07:70:d4:d6:35:65:f4:d5:bc:3f:23:33:
f2:a5:4e:f0:65:18:73:14:b4:3d:c9:75:4a:3a:67:
1c:78:e1:f3:d2:cb:8a:e4:d4:df:82:22:bd:e1:d8:
02:20:e8:cc:bb:74:59:4c:08:85:66:d0:d6:5c:85:
7d:33:60:1f:7a:a9:78:ec:98:e1:f0:6c:9c:b4:cb:
16:81:ad:f3:ef:04:54:5a:99:19:38:11:6d:b0:b3:
3c:61:76:43:fd:fa:5b:e7:f6:d4:3c:01:11:04:de:
0f:20:18:25:69:37:9f:ae:a0:4b:f1:63:46:0b:96:
dc:e4:99:49:2a:00:df:ea:20:e9:a0:bc:34:c8:17:
7e:46:34:2b:54:a4:29:3c:d8:df:9a:85:cd:38:12:
5e:58:21:0b:25:d1:0c:4e:56:52:e5:0a:91:fa:46:
d1:e0:6c:1b:fb:c0:67:bd:14:4d:3d:25:c1:f5:08:
1e:bb:cf:5b:ab:f9:ca:3a:b1:5f:cb:f7:f5:8e:a7:
83:5e:70:bc:69:25:5f:9b:f5:06:31:d6:08:85:25:
90:49:cc:3a:69:bf:48:b9:ac:a0:01:1a:9a:0e:a2:
61:bd:03:8b:37:30:3a:49:4e:da:d2:0c:34:e3:e1:
26:17:9e:e3:1a:c6:59:59:24:d4:68:ec:4d:7b:ca:
9c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:2E:8F:2E:74:83:94:D4:0E:D2:D1:3D:DF:5F:76:17:8A:92:97:E8
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/ui6PLnSDlNQO0tE93192F4qSl-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
188.64.104.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:64:e5:2a:cf:e3:db:ba:86:4e:67:09:21:44:a4:d4:d9:91:
01:ea:3b:fb:9d:66:61:44:6a:ff:f6:64:09:57:e3:3c:ac:d8:
72:1f:57:9d:cd:c9:bb:70:03:76:1a:35:8d:b6:a8:58:70:a1:
b5:e6:49:98:90:d7:a0:95:8f:24:0d:2d:0b:9a:19:18:2c:0d:
ad:e0:fe:7d:ee:70:53:c1:a4:8c:44:44:0d:79:17:0e:a6:ab:
01:fa:1e:5b:c4:c9:c6:21:20:68:d7:ef:20:c0:d0:8f:db:65:
dd:0c:34:02:9d:10:a9:92:97:46:98:af:4f:a4:19:6f:c9:fa:
0c:89:b6:ac:db:03:03:a7:ce:34:60:d0:ef:ea:b8:11:d1:48:
31:45:a6:62:06:77:ac:76:98:9e:5a:5b:f0:d7:45:e2:d4:6a:
98:54:04:21:fc:9c:7d:72:bc:0e:a0:d8:b2:04:79:06:87:f4:
3c:62:f5:f8:12:3c:f3:17:ea:9a:d8:32:a2:0c:51:62:b2:bd:
e0:af:0a:f7:2e:1d:54:1f:99:f8:65:0d:1e:a4:7a:e8:f9:b2:
9d:6f:d4:c4:bd:4a:b1:75:47:73:b3:8a:5c:a4:40:38:7e:db:
61:4f:6b:81:58:10:a6:51:08:5e:45:9b:f9:48:dd:8a:f5:ca:
5c:f1:f3:d7
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYPP++oGZsHhIkHjUqHjjrrcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4MTAxNzcyMjQ4OTk2Yjg3ZDkwODQwYzJkMjdkNjI1NDk0
NTgxNzMwHhcNMjIxMDEzMDYxNTM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYTJlOGYyZTc0ODM5NGQ0MGVkMmQxM2RkZjVmNzYxNzhhOTI5N2U4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwEEHcNTWNWX01bw/IzPypU7wZRhz
FLQ9yXVKOmcceOHz0suK5NTfgiK94dgCIOjMu3RZTAiFZtDWXIV9M2Afeql47Jjh
8GyctMsWga3z7wRUWpkZOBFtsLM8YXZD/fpb5/bUPAERBN4PIBglaTefrqBL8WNG
C5bc5JlJKgDf6iDpoLw0yBd+RjQrVKQpPNjfmoXNOBJeWCELJdEMTlZS5QqR+kbR
4Gwb+8BnvRRNPSXB9Qgeu89bq/nKOrFfy/f1jqeDXnC8aSVfm/UGMdYIhSWQScw6
ab9IuaygARqaDqJhvQOLNzA6SU7a0gw04+EmF57jGsZZWSTUaOxNe8qc3QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFLoujy50g5TUDtLRPd9fdheKkpfoMB8GA1UdIwQY
MBaAFBgQF3IkiZa4fZCEDC0n1iVJRYFzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQt
M2NjODVhZDNjMTkwLzEvdWk2UExuU0RsTlFPMHRFOTMxOTJGNHFTbC1nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQtM2NjODVhZDNjMTkw
LzEvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuVEcAwQC
vEBoMA0GCSqGSIb3DQEBCwUAA4IBAQCnZOUqz+PbuoZOZwkhRKTU2ZEB6jv7nWZh
RGr/9mQJV+M8rNhyH1edzcm7cAN2GjWNtqhYcKG15kmYkNeglY8kDS0LmhkYLA2t
4P597nBTwaSMREQNeRcOpqsB+h5bxMnGISBo1+8gwNCP22XdDDQCnRCpkpdGmK9P
pBlvyfoMibas2wMDp840YNDv6rgR0UgxRaZiBnesdpieWlvw10Xi1GqYVAQh/Jx9
crwOoNiyBHkGh/Q8YvX4EjzzF+qa2DKiDFFisr3grwr3Lh1UH5n4ZQ0epHro+bKd
b9TEvUqxdUdzs4pcpEA4ftthT2uBWBCmUQheRZv5SN2K9cpc8fPX
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:16 2023 by rpki-client on console-ams.rpki-client.org