Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/ua8VOPoYWSuopxevjvqp-0Y6cuw.roa
File: ua8VOPoYWSuopxevjvqp-0Y6cuw.roa (raw, json)
Hash identifier: tKC0LB5GmBMPCrm9NRdb+PLzPu41GLaYoemDe2TxsRs=
Subject key identifier: B9:AF:15:38:FA:18:59:2B:A8:A7:17:AF:8E:FA:A9:FB:46:3A:72:EC
Certificate issuer: /CN=4eef6aae6fba5c61a61739afcab55a62266e89ee
Certificate serial: 05E3A7FE
Authority key identifier: 4E:EF:6A:AE:6F:BA:5C:61:A6:17:39:AF:CA:B5:5A:62:26:6E:89:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tu9qrm-6XGGmFzmvyrVaYiZuie4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/ua8VOPoYWSuopxevjvqp-0Y6cuw.roa
Signing time: Sat 01 Jan 2022 14:07:18 +0000
ROA not before: Sat 01 Jan 2022 14:07:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206873
IP address blocks: 185.173.178.0/24 maxlen: 24
185.173.179.0/24 maxlen: 24
185.173.176.0/24 maxlen: 24
185.173.177.0/24 maxlen: 24
194.150.214.0/24 maxlen: 24
194.150.215.0/24 maxlen: 24
194.150.214.0/23 maxlen: 23
194.150.235.0/24 maxlen: 24
194.150.234.0/24 maxlen: 24
2a0b:6900:7::/48 maxlen: 48
2a0b:6903:fdb::/48 maxlen: 48
2a0b:6900:2::/48 maxlen: 48
2a0b:6903::/48 maxlen: 48
2a0b:6900:185d::/48 maxlen: 48
2a0b:6900::/48 maxlen: 48
2a0b:6900:1::/48 maxlen: 48
2a0b:6900:daf::/48 maxlen: 48
2a0b:6900:5::/48 maxlen: 48
2a0b:6900:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98805758 (0x5e3a7fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4eef6aae6fba5c61a61739afcab55a62266e89ee
Validity
Not Before: Jan 1 14:07:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b9af1538fa18592ba8a717af8efaa9fb463a72ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1c:f0:7a:73:10:d3:a1:a9:57:c8:dc:20:1b:
e8:e6:b8:0d:81:0f:d3:c8:93:eb:61:26:b6:54:e0:
f9:e3:1a:ec:9a:52:f6:3e:aa:42:c2:b3:0a:e6:70:
7f:f8:32:93:22:13:e7:dd:25:37:c0:e9:db:62:55:
3a:bb:7b:36:cd:79:62:dd:ed:67:a0:72:2d:df:16:
d4:fb:ae:60:cc:8b:5c:72:af:a7:7e:2b:9c:03:e7:
86:0a:e1:37:ef:d6:2c:c2:d6:9f:cb:d4:12:c1:c0:
4a:81:42:84:94:0d:50:1a:00:69:3b:26:f9:7d:95:
65:e7:22:1a:c3:63:c8:56:90:e3:aa:58:04:4b:1b:
e3:a2:6d:a4:10:28:ee:87:c5:1e:f8:b3:d0:5c:aa:
df:db:83:c6:0f:e1:c7:a4:ee:1c:c4:d7:36:59:fc:
b1:8b:50:b3:52:e4:9e:6a:a9:fd:5e:09:26:3b:ec:
8c:85:72:8c:44:04:92:4a:e6:f9:72:0d:a1:92:b4:
ce:6c:57:bc:9d:84:72:2e:aa:0d:02:dc:37:28:c1:
1f:8e:d4:47:8c:f6:aa:3d:b7:20:5c:55:4c:76:76:
63:f2:81:28:39:14:76:5c:fc:9b:85:d3:7b:7e:9d:
a1:c4:05:5b:90:ee:55:12:30:c6:32:73:ba:f3:19:
d7:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:AF:15:38:FA:18:59:2B:A8:A7:17:AF:8E:FA:A9:FB:46:3A:72:EC
X509v3 Authority Key Identifier:
keyid:4E:EF:6A:AE:6F:BA:5C:61:A6:17:39:AF:CA:B5:5A:62:26:6E:89:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tu9qrm-6XGGmFzmvyrVaYiZuie4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/ua8VOPoYWSuopxevjvqp-0Y6cuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/Tu9qrm-6XGGmFzmvyrVaYiZuie4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.176.0/22
194.150.214.0/23
194.150.234.0/23
IPv6:
2a0b:6900::/46
2a0b:6900:5::/48
2a0b:6900:7::/48
2a0b:6900:daf::/48
2a0b:6900:185d::/48
2a0b:6903::/48
2a0b:6903:fdb::/48
Signature Algorithm: sha256WithRSAEncryption
18:cf:69:7c:96:ed:ff:6a:e7:02:8c:fe:80:e9:92:f9:b3:83:
af:c3:87:a8:60:7a:92:6f:9d:b0:f9:b5:2b:0d:40:cc:ac:3c:
9d:74:a3:6f:75:50:d3:f1:78:ff:02:c9:75:38:cf:34:ab:10:
fe:2b:70:a4:4c:04:18:79:20:8d:cf:b6:cd:47:2e:e5:66:02:
09:7a:f1:eb:4b:8f:16:ce:01:08:1d:64:b6:44:6b:0e:55:8f:
86:c2:64:f2:f2:79:bc:7d:eb:cd:8f:13:38:23:16:60:92:43:
e8:f4:64:24:ea:32:06:e8:3c:89:0c:f7:06:dc:4d:22:c5:cd:
d6:8a:d2:94:69:4d:db:64:3a:6a:aa:6d:2f:dc:3f:d3:65:96:
2f:f2:d3:02:a6:24:53:b1:1c:7e:d3:f8:80:92:66:ed:db:a8:
55:a0:74:9d:43:27:8b:57:00:65:2b:4f:b4:93:16:5b:9c:31:
04:11:84:bb:1a:23:b6:00:34:f1:dd:73:d7:0d:30:fa:62:57:
43:64:37:99:6e:ba:ff:5b:94:d8:e2:c3:d9:9f:f5:ad:83:3a:
e5:7f:d6:6e:6f:f1:0b:06:6e:3a:dc:11:0e:08:9c:46:76:1b:
d6:a0:3e:77:b8:a1:0e:36:7d:3e:3e:59:80:d7:be:d9:cd:bb:
90:62:23:37
-----BEGIN CERTIFICATE-----
MIIFQjCCBCqgAwIBAgIEBeOn/jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZWVmNmFhZTZmYmE1YzYxYTYxNzM5YWZjYWI1NWE2MjI2NmU4OWVlMB4XDTIyMDEw
MTE0MDcxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjlhZjE1MzhmYTE4
NTkyYmE4YTcxN2FmOGVmYWE5ZmI0NjNhNzJlYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMsc8HpzENOhqVfI3CAb6Oa4DYEP08iT62EmtlTg+eMa7JpS
9j6qQsKzCuZwf/gykyIT590lN8Dp22JVOrt7Ns15Yt3tZ6ByLd8W1PuuYMyLXHKv
p34rnAPnhgrhN+/WLMLWn8vUEsHASoFChJQNUBoAaTsm+X2VZeciGsNjyFaQ46pY
BEsb46JtpBAo7ofFHviz0Fyq39uDxg/hx6TuHMTXNln8sYtQs1Lknmqp/V4JJjvs
jIVyjEQEkkrm+XINoZK0zmxXvJ2Eci6qDQLcNyjBH47UR4z2qj23IFxVTHZ2Y/KB
KDkUdlz8m4XTe36docQFW5DuVRIwxjJzuvMZ14cCAwEAAaOCAlwwggJYMB0GA1Ud
DgQWBBS5rxU4+hhZK6inF6+O+qn7Rjpy7DAfBgNVHSMEGDAWgBRO72qub7pcYaYX
Oa/KtVpiJm6J7jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1R1OXFybS02WEdHbUZ6bXZ5clZhWWladWllNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWMvYjhlNWM0LTM4ZWItNDQ1Zi1iMDM2LWMzNzc5MGU2ZDQ4Mi8x
L3VhOFZPUG9ZV1N1b3B4ZXZqdnFwLTBZNmN1dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWMv
YjhlNWM0LTM4ZWItNDQ1Zi1iMDM2LWMzNzc5MGU2ZDQ4Mi8xL1R1OXFybS02WEdH
bUZ6bXZ5clZhWWladWllNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBy
BggrBgEFBQcBBwEB/wRjMGEwGAQCAAEwEgMEArmtsAMEAcKW1gMEAcKW6jBFBAIA
AjA/AwcCKgtpAAAAAwcAKgtpAAAFAwcAKgtpAAAHAwcAKgtpAA2vAwcAKgtpABhd
AwcAKgtpAwAAAwcAKgtpAw/bMA0GCSqGSIb3DQEBCwUAA4IBAQAYz2l8lu3/aucC
jP6A6ZL5s4Ovw4eoYHqSb52w+bUrDUDMrDyddKNvdVDT8Xj/Asl1OM80qxD+K3Ck
TAQYeSCNz7bNRy7lZgIJevHrS48WzgEIHWS2RGsOVY+GwmTy8nm8fevNjxM4IxZg
kkPo9GQk6jIG6DyJDPcG3E0ixc3WitKUaU3bZDpqqm0v3D/TZZYv8tMCpiRTsRx+
0/iAkmbt26hVoHSdQyeLVwBlK0+0kxZbnDEEEYS7GiO2ADTx3XPXDTD6YldDZDeZ
brr/W5TY4sPZn/Wtgzrlf9Zub/ELBm463BEOCJxGdhvWoD53uKEONn0+PlmA177Z
zbuQYiM3
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:51 2024 by rpki-client on console-fra.rpki-client.org