Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/c7afb1-f00f-49d7-9f11-6e6361bea989/1/UQS5MGVPPNL8FZadGmBOiE9Vycc.roa
File: UQS5MGVPPNL8FZadGmBOiE9Vycc.roa (raw, json)
Hash identifier: FSO4EBvYFwcY20tYQoUDTat+6OhaSKZE6bqZ2xtZAFc=
Subject key identifier: 51:04:B9:30:65:4F:3C:D2:FC:15:96:9D:1A:60:4E:88:4F:55:C9:C7
Certificate issuer: /CN=487689024f16e7bc2e909706c06d91903c5c7dac
Certificate serial: 04614EB9
Authority key identifier: 48:76:89:02:4F:16:E7:BC:2E:90:97:06:C0:6D:91:90:3C:5C:7D:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SHaJAk8W57wukJcGwG2RkDxcfaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/c7afb1-f00f-49d7-9f11-6e6361bea989/1/UQS5MGVPPNL8FZadGmBOiE9Vycc.roa
Signing time: Sat 01 Jan 2022 05:58:57 +0000
ROA not before: Sat 01 Jan 2022 05:58:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208015
IP address blocks: 45.92.112.0/22 maxlen: 22
2a0e:20c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73486009 (0x4614eb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=487689024f16e7bc2e909706c06d91903c5c7dac
Validity
Not Before: Jan 1 05:58:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5104b930654f3cd2fc15969d1a604e884f55c9c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d4:78:2a:d9:9b:28:b4:5c:3a:59:33:38:c0:
90:97:68:21:55:27:27:86:79:bd:2e:1e:ac:21:f9:
74:b5:28:2d:a3:3e:87:59:31:39:5c:60:4e:11:fd:
14:e6:94:cf:37:b2:08:5c:02:d5:ee:e4:83:c8:f2:
c7:ba:c3:d5:1a:41:72:66:3d:e0:ad:25:0c:6e:a8:
1f:57:39:19:45:d7:29:f1:3c:af:46:98:07:a2:65:
26:13:9f:5c:40:48:b8:3e:00:10:c2:d9:38:2e:88:
35:11:1d:eb:c2:0c:af:f2:54:da:8b:e3:91:d6:27:
b3:ec:b4:bb:64:e3:62:e7:62:cf:f7:f8:3a:f7:67:
4f:02:66:6b:c8:ee:58:5c:cf:aa:29:37:b8:6e:d0:
1c:e2:ae:52:d4:6d:3e:be:aa:24:97:1e:48:08:d1:
64:8f:2d:7d:cf:84:2f:ca:ca:6c:d0:e4:6f:f5:44:
41:02:c3:2e:1d:64:a1:28:6b:9f:35:ad:c0:a3:9a:
bb:a7:cd:91:39:c2:62:fd:b1:8b:15:d1:9c:67:c5:
61:c5:01:fc:f5:b2:59:65:de:0f:13:1d:ca:2e:84:
a8:bd:58:af:ee:8b:80:35:dd:74:47:67:73:d1:ad:
34:57:a4:15:2e:3a:ec:1d:f8:fb:57:d1:39:33:9e:
70:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:04:B9:30:65:4F:3C:D2:FC:15:96:9D:1A:60:4E:88:4F:55:C9:C7
X509v3 Authority Key Identifier:
keyid:48:76:89:02:4F:16:E7:BC:2E:90:97:06:C0:6D:91:90:3C:5C:7D:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SHaJAk8W57wukJcGwG2RkDxcfaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/c7afb1-f00f-49d7-9f11-6e6361bea989/1/UQS5MGVPPNL8FZadGmBOiE9Vycc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/c7afb1-f00f-49d7-9f11-6e6361bea989/1/SHaJAk8W57wukJcGwG2RkDxcfaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.112.0/22
IPv6:
2a0e:20c0::/29
Signature Algorithm: sha256WithRSAEncryption
99:c6:b9:fa:1d:a8:b3:31:2c:f3:04:26:9c:5d:b8:c4:35:2e:
f5:bf:90:8b:57:e4:de:f5:39:97:24:c2:3f:66:7a:28:7d:46:
25:1f:52:2a:43:5c:38:e2:12:70:73:33:cd:42:e1:a5:7b:3d:
4c:5b:32:1b:8d:77:33:d4:db:f6:4c:64:b2:f2:3b:9b:b9:c6:
8b:0a:ff:d2:55:d0:70:bb:ca:29:7d:6c:10:90:da:78:5f:21:
ad:8d:5b:cf:57:7d:4a:03:e5:9a:34:8a:2b:9c:8c:db:61:c5:
c3:1f:fb:4b:2e:b1:ac:f9:bc:a6:73:07:38:97:7e:4a:75:98:
9f:04:ac:93:05:45:62:c8:b2:b2:50:11:b0:ab:b7:6e:fe:a1:
ae:06:ea:98:9b:81:90:eb:ab:a4:6a:58:56:79:5f:aa:a3:2b:
ef:eb:36:c0:14:b5:73:c6:67:9a:26:3a:a1:2b:a6:cc:81:1e:
07:09:8b:83:5a:08:38:64:35:d8:01:f9:f4:0c:2b:7d:14:a7:
e8:56:dc:4b:1e:8b:83:48:2c:53:81:43:0d:cd:2d:cf:60:63:
cf:67:1c:de:a4:bb:e0:f6:06:68:2c:35:54:7f:79:ae:af:62:
9b:40:7a:88:1c:58:cf:15:ce:cd:87:bb:9d:a7:b9:7f:69:b8:
0c:d0:ab:a9
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBGFOuTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ODc2ODkwMjRmMTZlN2JjMmU5MDk3MDZjMDZkOTE5MDNjNWM3ZGFjMB4XDTIyMDEw
MTA1NTg1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTEwNGI5MzA2NTRm
M2NkMmZjMTU5NjlkMWE2MDRlODg0ZjU1YzljNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ7UeCrZmyi0XDpZMzjAkJdoIVUnJ4Z5vS4erCH5dLUoLaM+
h1kxOVxgThH9FOaUzzeyCFwC1e7kg8jyx7rD1RpBcmY94K0lDG6oH1c5GUXXKfE8
r0aYB6JlJhOfXEBIuD4AEMLZOC6INREd68IMr/JU2ovjkdYns+y0u2TjYudiz/f4
OvdnTwJma8juWFzPqik3uG7QHOKuUtRtPr6qJJceSAjRZI8tfc+EL8rKbNDkb/VE
QQLDLh1koShrnzWtwKOau6fNkTnCYv2xixXRnGfFYcUB/PWyWWXeDxMdyi6EqL1Y
r+6LgDXddEdnc9GtNFekFS467B34+1fROTOecJUCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBRRBLkwZU880vwVlp0aYE6IT1XJxzAfBgNVHSMEGDAWgBRIdokCTxbnvC6Q
lwbAbZGQPFx9rDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1NIYUpBazhXNTd3dWtKY0d3RzJSa0R4Y2Zhdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTIvYzdhZmIxLWYwMGYtNDlkNy05ZjExLTZlNjM2MWJlYTk4OS8x
L1VRUzVNR1ZQUE5MOEZaYWRHbUJPaUU5VnljYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTIv
YzdhZmIxLWYwMGYtNDlkNy05ZjExLTZlNjM2MWJlYTk4OS8xL1NIYUpBazhXNTd3
dWtKY0d3RzJSa0R4Y2Zhdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAi1ccDANBAIAAjAHAwUDKg4gwDAN
BgkqhkiG9w0BAQsFAAOCAQEAmca5+h2oszEs8wQmnF24xDUu9b+Qi1fk3vU5lyTC
P2Z6KH1GJR9SKkNcOOIScHMzzULhpXs9TFsyG413M9Tb9kxksvI7m7nGiwr/0lXQ
cLvKKX1sEJDaeF8hrY1bz1d9SgPlmjSKK5yM22HFwx/7Sy6xrPm8pnMHOJd+SnWY
nwSskwVFYsiyslARsKu3bv6hrgbqmJuBkOurpGpYVnlfqqMr7+s2wBS1c8ZnmiY6
oSumzIEeBwmLg1oIOGQ12AH59AwrfRSn6FbcSx6Lg0gsU4FDDc0tz2Bjz2cc3qS7
4PYGaCw1VH95rq9im0B6iBxYzxXOzYe7nae5f2m4DNCrqQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:30 2023 by rpki-client on console-ams.rpki-client.org