Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/b04b2e-73e6-4887-8df1-3722df073603/1/Uk8EZyH9ivdracpJBQA-9rASWsQ.roa
File: Uk8EZyH9ivdracpJBQA-9rASWsQ.roa (raw, json)
Hash identifier: HGXyNBdhybxA2Jner+JNGDiQ+cKXYxwZ46uaT6Tsu64=
Subject key identifier: 52:4F:04:67:21:FD:8A:F7:6B:69:CA:49:05:00:3E:F6:B0:12:5A:C4
Certificate issuer: /CN=e7334ad9b3fc521030be99a5157211b663216c94
Certificate serial: 02A9DAC9
Authority key identifier: E7:33:4A:D9:B3:FC:52:10:30:BE:99:A5:15:72:11:B6:63:21:6C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5zNK2bP8UhAwvpmlFXIRtmMhbJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/b04b2e-73e6-4887-8df1-3722df073603/1/Uk8EZyH9ivdracpJBQA-9rASWsQ.roa
Signing time: Mon 11 Apr 2022 01:47:02 +0000
ROA not before: Mon 11 Apr 2022 01:47:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208649
IP address blocks: 185.75.221.0/24 maxlen: 24
2a0d:a640::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44686025 (0x2a9dac9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7334ad9b3fc521030be99a5157211b663216c94
Validity
Not Before: Apr 11 01:47:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=524f046721fd8af76b69ca4905003ef6b0125ac4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c8:07:68:5b:ad:fc:c3:9e:95:b2:2d:6b:4b:
0c:b6:0d:4a:30:06:ee:17:85:06:fd:f6:fb:db:90:
f5:9b:d1:b3:d4:f7:54:5a:b9:5f:6c:a8:40:ff:d4:
98:73:d4:8e:93:08:b4:33:79:43:8f:18:e8:25:78:
6a:be:b3:5e:75:41:a9:0b:e2:2f:e3:6d:de:cc:e5:
57:1c:44:02:40:17:31:61:9d:ca:67:4b:17:38:22:
84:93:d9:7a:10:6d:fb:e8:3b:65:72:a3:9e:4b:93:
9e:41:d9:5a:4c:73:69:26:ea:69:2e:37:24:10:91:
59:1d:57:44:62:d8:18:e5:2d:da:89:e6:2f:3e:8e:
1e:ba:ae:67:59:2f:3f:a8:98:ea:8a:64:2e:d3:cf:
6c:09:67:9e:c4:ef:48:10:c3:62:03:f3:aa:79:c8:
d4:87:73:33:92:fb:ba:70:69:98:53:b5:1e:dc:41:
44:a4:eb:fa:d6:ba:46:cb:ae:2b:72:1c:29:d8:b2:
44:c0:20:5f:e7:bc:5b:67:b9:4c:c3:ff:dc:77:f6:
49:9d:4e:a6:96:b4:db:43:da:fa:df:b5:38:2b:ca:
ad:df:ab:5a:e7:b4:2c:65:50:39:70:91:7e:e9:af:
26:26:32:fc:87:88:ca:40:b0:ed:e1:49:95:fe:d1:
e6:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:4F:04:67:21:FD:8A:F7:6B:69:CA:49:05:00:3E:F6:B0:12:5A:C4
X509v3 Authority Key Identifier:
keyid:E7:33:4A:D9:B3:FC:52:10:30:BE:99:A5:15:72:11:B6:63:21:6C:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5zNK2bP8UhAwvpmlFXIRtmMhbJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b04b2e-73e6-4887-8df1-3722df073603/1/Uk8EZyH9ivdracpJBQA-9rASWsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b04b2e-73e6-4887-8df1-3722df073603/1/5zNK2bP8UhAwvpmlFXIRtmMhbJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.221.0/24
IPv6:
2a0d:a640::/29
Signature Algorithm: sha256WithRSAEncryption
70:11:49:98:15:e3:d9:03:44:e5:c5:f8:5f:0c:e8:ee:36:5b:
5e:c5:3a:e7:24:ff:20:0f:00:2a:95:0b:29:93:1a:3b:ed:fd:
04:a0:d2:d4:6e:db:96:e3:d3:30:24:ac:8b:00:0b:c0:a3:f7:
46:fc:0d:24:7b:55:84:8b:f2:5c:80:6e:9b:d9:6a:1f:b2:ba:
49:24:82:d3:8b:95:d1:74:a0:9c:a0:a6:10:0c:8d:e3:d5:a4:
a7:a2:4b:e3:b1:50:3b:cb:1f:c8:bb:2d:37:d5:c7:d0:b1:23:
cc:18:41:7e:ed:e5:61:98:44:0a:04:ae:5a:75:44:fd:72:3a:
58:62:9e:f0:9d:42:1b:db:35:7d:8e:5d:09:44:b1:da:f5:d7:
0e:4f:bd:2e:e4:33:76:d4:5a:1f:b7:c2:7b:49:04:e6:02:59:
98:50:17:0a:63:b9:1b:12:34:65:69:2d:c7:25:92:d6:2a:6d:
0d:2a:13:d5:f4:f0:97:28:6d:15:f5:69:11:6e:3e:2a:66:36:
74:a0:db:21:4d:fe:16:94:61:b3:70:ee:56:fe:52:69:bb:d3:
ff:1d:81:de:9a:a9:8c:75:47:58:12:c4:a0:d7:6a:37:55:88:
4d:cc:e2:6c:59:74:71:68:81:81:18:ff:c3:3b:91:32:15:d2:
66:07:d9:0f
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEAqnayTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
NzMzNGFkOWIzZmM1MjEwMzBiZTk5YTUxNTcyMTFiNjYzMjE2Yzk0MB4XDTIyMDQx
MTAxNDcwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTI0ZjA0NjcyMWZk
OGFmNzZiNjljYTQ5MDUwMDNlZjZiMDEyNWFjNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALXIB2hbrfzDnpWyLWtLDLYNSjAG7heFBv32+9uQ9ZvRs9T3
VFq5X2yoQP/UmHPUjpMItDN5Q48Y6CV4ar6zXnVBqQviL+Nt3szlVxxEAkAXMWGd
ymdLFzgihJPZehBt++g7ZXKjnkuTnkHZWkxzaSbqaS43JBCRWR1XRGLYGOUt2onm
Lz6OHrquZ1kvP6iY6opkLtPPbAlnnsTvSBDDYgPzqnnI1IdzM5L7unBpmFO1HtxB
RKTr+ta6RsuuK3IcKdiyRMAgX+e8W2e5TMP/3Hf2SZ1Oppa020Pa+t+1OCvKrd+r
Wue0LGVQOXCRfumvJiYy/IeIykCw7eFJlf7R5ikCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBRSTwRnIf2K92tpykkFAD72sBJaxDAfBgNVHSMEGDAWgBTnM0rZs/xSEDC+
maUVchG2YyFslDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzV6TksyYlA4VWhBd3ZwbWxGWElSdG1NaGJKUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTEvYjA0YjJlLTczZTYtNDg4Ny04ZGYxLTM3MjJkZjA3MzYwMy8x
L1VrOEVaeUg5aXZkcmFjcEpCUUEtOXJBU1dzUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTEv
YjA0YjJlLTczZTYtNDg4Ny04ZGYxLTM3MjJkZjA3MzYwMy8xLzV6TksyYlA4VWhB
d3ZwbWxGWElSdG1NaGJKUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEALlL3TANBAIAAjAHAwUDKg2mQDAN
BgkqhkiG9w0BAQsFAAOCAQEAcBFJmBXj2QNE5cX4Xwzo7jZbXsU65yT/IA8AKpUL
KZMaO+39BKDS1G7bluPTMCSsiwALwKP3RvwNJHtVhIvyXIBum9lqH7K6SSSC04uV
0XSgnKCmEAyN49Wkp6JL47FQO8sfyLstN9XH0LEjzBhBfu3lYZhECgSuWnVE/XI6
WGKe8J1CG9s1fY5dCUSx2vXXDk+9LuQzdtRaH7fCe0kE5gJZmFAXCmO5GxI0ZWkt
xyWS1iptDSoT1fTwlyhtFfVpEW4+KmY2dKDbIU3+FpRhs3DuVv5SabvT/x2B3pqp
jHVHWBLEoNdqN1WITczibFl0cWiBgRj/wzuRMhXSZgfZDw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:03:33 2025 by rpki-client