Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/af601e-c2bf-4a6a-aa32-d2ee15399d06/1/UI6zmYw3X0MiYHVDqZrlQFeGeo8.roa
File: UI6zmYw3X0MiYHVDqZrlQFeGeo8.roa (raw, json)
Hash identifier: mRGBHDHCa3mAWQSMEVKiAoMdqYLCro9WN/hX0G3L6mM=
Subject key identifier: 50:8E:B3:99:8C:37:5F:43:22:60:75:43:A9:9A:E5:40:57:86:7A:8F
Certificate issuer: /CN=20d4bd499f58494ac0e82263b5520a2c64d6477e
Certificate serial: 1070127E
Authority key identifier: 20:D4:BD:49:9F:58:49:4A:C0:E8:22:63:B5:52:0A:2C:64:D6:47:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/INS9SZ9YSUrA6CJjtVIKLGTWR34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/af601e-c2bf-4a6a-aa32-d2ee15399d06/1/UI6zmYw3X0MiYHVDqZrlQFeGeo8.roa
Signing time: Sat 01 Jan 2022 13:54:47 +0000
ROA not before: Sat 01 Jan 2022 13:54:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 192.109.202.0/24 maxlen: 24
192.109.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 275780222 (0x1070127e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20d4bd499f58494ac0e82263b5520a2c64d6477e
Validity
Not Before: Jan 1 13:54:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=508eb3998c375f4322607543a99ae54057867a8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b4:53:8a:12:80:74:dc:fa:e9:ed:6f:69:de:
a0:91:0b:c7:2c:b6:79:25:fc:45:1a:f8:da:f8:79:
3f:97:6b:6f:f3:fe:ae:41:89:04:4b:67:98:7b:35:
28:ba:5f:a5:d4:a8:77:05:0a:6b:72:08:34:a7:a5:
09:93:c8:73:e4:40:49:ff:ee:d5:b4:8f:ee:6e:51:
40:a1:59:df:6d:85:72:d2:70:cc:41:c2:83:3e:e5:
40:93:7a:91:77:0d:0d:1b:92:87:80:0c:37:4b:6d:
52:ad:e5:6f:d4:4b:ff:57:8b:c2:c6:9f:38:4d:da:
89:f2:85:86:3d:c9:17:6a:6d:b8:21:a1:42:90:8a:
33:94:88:50:ab:a3:ce:e5:fd:b6:74:ca:0f:c3:a3:
70:5c:54:db:f6:95:88:31:75:19:37:ae:6d:cf:44:
4d:d3:77:ba:92:0d:2f:38:a2:32:4c:01:59:ef:bc:
bb:07:a4:25:44:21:26:69:84:65:eb:41:06:32:d6:
4a:a7:29:9b:1d:84:a5:05:4e:fd:e9:33:1f:98:79:
a2:c3:20:b5:c4:8b:b9:ff:a7:b6:c3:56:48:f0:81:
a4:de:3f:d9:3d:67:50:d8:c3:bf:36:d1:92:31:c1:
05:a5:ef:e9:6e:54:0d:cb:24:14:d8:ff:d4:51:9d:
70:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:8E:B3:99:8C:37:5F:43:22:60:75:43:A9:9A:E5:40:57:86:7A:8F
X509v3 Authority Key Identifier:
keyid:20:D4:BD:49:9F:58:49:4A:C0:E8:22:63:B5:52:0A:2C:64:D6:47:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/INS9SZ9YSUrA6CJjtVIKLGTWR34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/af601e-c2bf-4a6a-aa32-d2ee15399d06/1/UI6zmYw3X0MiYHVDqZrlQFeGeo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/af601e-c2bf-4a6a-aa32-d2ee15399d06/1/INS9SZ9YSUrA6CJjtVIKLGTWR34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.109.19.0/24
192.109.202.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:54:e6:fb:44:81:eb:c3:61:6f:c4:b9:f8:2b:dc:0f:67:a1:
63:90:be:6b:c3:33:76:36:48:69:58:54:56:f1:53:d6:a5:be:
2e:82:c7:38:a5:ca:1f:48:9e:41:af:bf:fc:e6:5f:44:38:f8:
be:3d:a9:43:a0:5b:52:2f:ee:1b:74:f2:0a:ae:b5:99:52:e0:
63:39:71:b1:7d:27:d1:06:af:38:1c:7f:3c:33:eb:73:92:15:
7e:fe:48:49:d5:19:cc:ac:37:da:21:4d:5f:de:42:a7:1e:c1:
3d:b7:d6:83:53:1e:77:88:18:2b:0d:43:f1:39:5e:0a:2e:58:
4e:ca:37:e2:1f:f7:20:ac:60:8e:35:81:f3:33:d9:0d:63:dd:
45:84:b1:2b:dd:c9:55:b5:09:73:4c:a5:99:b8:02:40:57:17:
ff:62:91:4e:17:e4:80:35:6a:2b:f2:41:b8:d3:b8:c1:ca:71:
64:5b:48:74:fa:e6:4b:69:71:26:de:d8:35:a7:0d:ff:54:f8:
d0:51:5a:47:59:1e:ef:b4:73:83:03:99:2b:3f:f3:70:e6:2f:
74:85:37:9f:35:1a:3f:36:f0:c9:b2:3f:8a:44:21:f8:74:e2:
71:a7:9f:bd:4f:e8:67:ba:d8:15:d7:90:03:ee:64:3e:22:17:
e5:2e:32:cb
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEEHASfjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MGQ0YmQ0OTlmNTg0OTRhYzBlODIyNjNiNTUyMGEyYzY0ZDY0NzdlMB4XDTIyMDEw
MTEzNTQ0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTA4ZWIzOTk4YzM3
NWY0MzIyNjA3NTQzYTk5YWU1NDA1Nzg2N2E4ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALO0U4oSgHTc+untb2neoJELxyy2eSX8RRr42vh5P5drb/P+
rkGJBEtnmHs1KLpfpdSodwUKa3IINKelCZPIc+RASf/u1bSP7m5RQKFZ322FctJw
zEHCgz7lQJN6kXcNDRuSh4AMN0ttUq3lb9RL/1eLwsafOE3aifKFhj3JF2ptuCGh
QpCKM5SIUKujzuX9tnTKD8OjcFxU2/aViDF1GTeubc9ETdN3upINLziiMkwBWe+8
uwekJUQhJmmEZetBBjLWSqcpmx2EpQVO/ekzH5h5osMgtcSLuf+ntsNWSPCBpN4/
2T1nUNjDvzbRkjHBBaXv6W5UDcskFNj/1FGdcH0CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRQjrOZjDdfQyJgdUOpmuVAV4Z6jzAfBgNVHSMEGDAWgBQg1L1Jn1hJSsDo
ImO1UgosZNZHfjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lOUzlTWjlZU1VyQTZDSmp0VklLTEdUV1IzNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTUvYWY2MDFlLWMyYmYtNGE2YS1hYTMyLWQyZWUxNTM5OWQwNi8x
L1VJNnptWXczWDBNaVlIVkRxWnJsUUZlR2VvOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTUv
YWY2MDFlLWMyYmYtNGE2YS1hYTMyLWQyZWUxNTM5OWQwNi8xL0lOUzlTWjlZU1Vy
QTZDSmp0VklLTEdUV1IzNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAMBtEwMEAMBtyjANBgkqhkiG9w0B
AQsFAAOCAQEAplTm+0SB68Nhb8S5+CvcD2ehY5C+a8MzdjZIaVhUVvFT1qW+LoLH
OKXKH0ieQa+//OZfRDj4vj2pQ6BbUi/uG3TyCq61mVLgYzlxsX0n0QavOBx/PDPr
c5IVfv5ISdUZzKw32iFNX95Cpx7BPbfWg1Med4gYKw1D8TleCi5YTso34h/3IKxg
jjWB8zPZDWPdRYSxK93JVbUJc0ylmbgCQFcX/2KRThfkgDVqK/JBuNO4wcpxZFtI
dPrmS2lxJt7YNacN/1T40FFaR1ke77RzgwOZKz/zcOYvdIU3nzUaPzbwybI/ikQh
+HTicaefvU/oZ7rYFdeQA+5kPiIX5S4yyw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:26 2023 by rpki-client on console-ams.rpki-client.org