Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/uHpuzIlSFK3NmwmfiNSw6Bwasxw.roa
File: uHpuzIlSFK3NmwmfiNSw6Bwasxw.roa (raw, json)
Hash identifier: ef8ADIK7XAR9uTSeE4MTjR11io7fwYU/dIrmr4KjW28=
Subject key identifier: B8:7A:6E:CC:89:52:14:AD:CD:9B:09:9F:88:D4:B0:E8:1C:1A:B3:1C
Certificate issuer: /CN=0562d5a67b7a20f865e753163a6ed0e5f347e839
Certificate serial: 03B11030
Authority key identifier: 05:62:D5:A6:7B:7A:20:F8:65:E7:53:16:3A:6E:D0:E5:F3:47:E8:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/uHpuzIlSFK3NmwmfiNSw6Bwasxw.roa
Signing time: Sat 01 Jan 2022 09:55:41 +0000
ROA not before: Sat 01 Jan 2022 09:55:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6663
IP address blocks: 195.146.0.0/20 maxlen: 20
195.146.16.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61935664 (0x3b11030)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0562d5a67b7a20f865e753163a6ed0e5f347e839
Validity
Not Before: Jan 1 09:55:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b87a6ecc895214adcd9b099f88d4b0e81c1ab31c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:08:b8:cb:a5:6d:45:21:1d:c7:e4:9d:3f:b2:
e8:d8:2d:db:a9:f5:be:c1:3e:d8:05:2e:bf:c2:fd:
eb:34:0d:14:61:34:09:6b:ca:bc:29:00:e6:aa:78:
bb:ff:00:fb:b1:a4:23:ed:e0:54:ed:de:89:09:16:
68:70:7f:b9:28:7b:f2:fc:dc:d3:1b:08:c9:f3:29:
df:ca:ab:d1:f0:6b:22:5e:e2:55:ee:84:45:ac:be:
23:6f:98:60:7a:61:c9:5e:ff:e5:61:d9:d4:ee:0a:
dc:30:8f:b0:a4:03:24:ba:f9:d1:0e:7a:4d:50:67:
95:1c:3b:01:d7:74:3d:80:69:76:15:32:6c:dc:9a:
5b:9e:d1:48:d2:b8:f6:d9:94:f6:1f:7a:9e:6b:43:
bf:d2:b9:1c:b2:90:09:06:40:04:48:1c:6d:10:99:
54:3b:81:a3:15:8a:17:97:ab:3e:70:d5:ef:cb:24:
44:a1:68:b4:52:cd:ef:ea:ad:0d:bb:91:8f:6f:a5:
47:33:01:4f:b3:7e:77:33:b5:5f:38:7b:1a:9f:5f:
39:31:3c:6a:40:f9:41:4b:86:46:3f:d1:6e:61:c6:
d3:47:bb:45:3e:bb:bb:20:bb:0e:06:62:10:aa:35:
eb:3c:b3:77:74:46:f2:50:bc:6f:52:10:02:95:95:
6b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:7A:6E:CC:89:52:14:AD:CD:9B:09:9F:88:D4:B0:E8:1C:1A:B3:1C
X509v3 Authority Key Identifier:
keyid:05:62:D5:A6:7B:7A:20:F8:65:E7:53:16:3A:6E:D0:E5:F3:47:E8:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/uHpuzIlSFK3NmwmfiNSw6Bwasxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.146.0.0/19
Signature Algorithm: sha256WithRSAEncryption
00:bb:29:f5:44:2e:29:7a:03:ce:d1:58:8b:09:40:3b:77:a8:
cf:ca:79:f8:95:5d:30:c6:cb:3d:b8:54:14:8b:75:b8:a1:88:
88:72:e7:9c:83:8f:7f:98:db:18:a7:d1:e7:8a:15:93:34:dd:
ad:7e:47:11:88:89:20:6d:1c:5f:12:a7:be:c8:05:98:c5:57:
32:56:94:e0:2e:1b:e6:2a:b2:e6:b2:dd:1a:a6:99:e6:12:67:
34:96:76:c1:4e:e8:4a:21:4e:3e:69:fe:6f:32:34:be:c3:46:
f3:4e:04:62:09:4d:57:8a:f7:97:46:69:e4:d5:b7:da:d9:06:
d1:4f:b4:14:26:86:9a:5b:03:73:97:78:6b:cd:a1:eb:78:27:
27:42:fa:a4:cf:72:dd:95:bd:33:f6:4a:73:ca:bf:5f:ed:ba:
0c:4c:d5:42:a3:4e:14:3e:c5:c0:f6:4a:b5:75:2b:f3:d7:a7:
05:23:bd:0f:93:50:74:51:80:85:5c:4c:e9:a7:38:f3:35:f7:
84:18:fc:11:a1:7e:d6:cb:0b:0f:d6:f7:a4:a4:69:30:6d:c6:
50:ad:b2:d3:f9:b9:ed:e1:cd:18:68:3d:45:cd:3a:60:08:fb:
22:c1:37:d3:80:2d:3c:87:11:4b:bf:54:e2:04:5d:39:51:d8:
77:54:a4:c4
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA7EQMDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTYyZDVhNjdiN2EyMGY4NjVlNzUzMTYzYTZlZDBlNWYzNDdlODM5MB4XDTIyMDEw
MTA5NTU0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjg3YTZlY2M4OTUy
MTRhZGNkOWIwOTlmODhkNGIwZTgxYzFhYjMxYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANMIuMulbUUhHcfknT+y6Ngt26n1vsE+2AUuv8L96zQNFGE0
CWvKvCkA5qp4u/8A+7GkI+3gVO3eiQkWaHB/uSh78vzc0xsIyfMp38qr0fBrIl7i
Ve6ERay+I2+YYHphyV7/5WHZ1O4K3DCPsKQDJLr50Q56TVBnlRw7Add0PYBpdhUy
bNyaW57RSNK49tmU9h96nmtDv9K5HLKQCQZABEgcbRCZVDuBoxWKF5erPnDV78sk
RKFotFLN7+qtDbuRj2+lRzMBT7N+dzO1Xzh7Gp9fOTE8akD5QUuGRj/RbmHG00e7
RT67uyC7DgZiEKo16zyzd3RG8lC8b1IQApWVaw8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS4em7MiVIUrc2bCZ+I1LDoHBqzHDAfBgNVHSMEGDAWgBQFYtWme3og+GXn
UxY6btDl80foOTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JXTFZwbnQ2SVBobDUxTVdPbTdRNWZOSDZEay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODIvOGIwMWMyLWVjYmUtNGY4OC1hZTM3LTUwNGM4ZmMyMjBlYS8x
L3VIcHV6SWxTRkszTm13bWZpTlN3NkJ3YXN4dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODIv
OGIwMWMyLWVjYmUtNGY4OC1hZTM3LTUwNGM4ZmMyMjBlYS8xL0JXTFZwbnQ2SVBo
bDUxTVdPbTdRNWZOSDZEay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcOSADANBgkqhkiG9w0BAQsFAAOC
AQEAALsp9UQuKXoDztFYiwlAO3eoz8p5+JVdMMbLPbhUFIt1uKGIiHLnnIOPf5jb
GKfR54oVkzTdrX5HEYiJIG0cXxKnvsgFmMVXMlaU4C4b5iqy5rLdGqaZ5hJnNJZ2
wU7oSiFOPmn+bzI0vsNG804EYglNV4r3l0Zp5NW32tkG0U+0FCaGmlsDc5d4a82h
63gnJ0L6pM9y3ZW9M/ZKc8q/X+26DEzVQqNOFD7FwPZKtXUr89enBSO9D5NQdFGA
hVxM6ac48zX3hBj8EaF+1ssLD9b3pKRpMG3GUK2y0/m57eHNGGg9Rc06YAj7IsE3
04AtPIcRS79U4gRdOVHYd1SkxA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:10 2024 by rpki-client on console-fra.rpki-client.org