Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/6d2a8f-cf90-46fb-8259-c39808d03a18/1/U_lbPo8PKb3J8kZQfxOgxbEuCro.roa
File: U_lbPo8PKb3J8kZQfxOgxbEuCro.roa (raw, json)
Hash identifier: 5WZyLO2rATlox+PPIMLBCXAwP1Tj6nCOB8uyxHzw1AU=
Subject key identifier: 53:F9:5B:3E:8F:0F:29:BD:C9:F2:46:50:7F:13:A0:C5:B1:2E:0A:BA
Certificate issuer: /CN=90ea6199755e6300f0402c2a08ed437a0a73001e
Certificate serial: 0ADA81DB
Authority key identifier: 90:EA:61:99:75:5E:63:00:F0:40:2C:2A:08:ED:43:7A:0A:73:00:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kOphmXVeYwDwQCwqCO1DegpzAB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/6d2a8f-cf90-46fb-8259-c39808d03a18/1/U_lbPo8PKb3J8kZQfxOgxbEuCro.roa
Signing time: Sat 01 Jan 2022 09:58:25 +0000
ROA not before: Sat 01 Jan 2022 09:58:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24961
IP address blocks: 109.68.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182092251 (0xada81db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90ea6199755e6300f0402c2a08ed437a0a73001e
Validity
Not Before: Jan 1 09:58:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53f95b3e8f0f29bdc9f246507f13a0c5b12e0aba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:99:b5:b6:86:eb:bb:b8:88:f2:17:aa:78:7d:
d7:9a:41:8f:a5:8e:6e:bd:d6:21:21:e0:37:e2:10:
0b:48:e2:8d:f0:2c:c1:78:43:a6:3e:ab:03:76:c3:
3b:e5:4d:38:28:61:06:2d:54:17:d4:40:5c:15:45:
c7:35:99:88:21:72:7a:0a:d9:23:7e:06:38:45:36:
d6:17:23:ea:0b:f1:f5:f4:ee:bf:8a:22:f1:52:b5:
90:19:67:fa:79:11:43:76:34:ba:26:34:13:2c:f5:
4f:17:04:31:15:ee:df:54:8c:58:70:c1:35:f8:4c:
3c:29:ff:4e:ca:f5:d3:9b:49:6b:1c:03:1c:92:76:
02:cc:c3:fb:78:1d:4b:70:36:29:5d:61:c4:d4:16:
3f:f1:25:7b:1a:67:e2:80:08:19:5e:e0:a4:6d:5e:
8c:a8:ae:2b:bf:36:90:1c:92:bf:00:30:a2:ae:1b:
08:ea:b0:16:e8:89:25:6e:13:4a:1f:ac:f1:01:2c:
cb:4d:96:f6:40:8f:d1:b0:6d:1d:54:2d:ef:97:b2:
fb:cd:51:38:38:cc:a3:24:d5:fd:12:72:a6:f1:5f:
33:db:64:eb:3d:d8:82:8b:49:1e:46:e3:fd:51:ce:
f0:38:fc:74:96:61:25:e8:f0:ec:bc:0e:75:94:cb:
2c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:F9:5B:3E:8F:0F:29:BD:C9:F2:46:50:7F:13:A0:C5:B1:2E:0A:BA
X509v3 Authority Key Identifier:
keyid:90:EA:61:99:75:5E:63:00:F0:40:2C:2A:08:ED:43:7A:0A:73:00:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kOphmXVeYwDwQCwqCO1DegpzAB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6d2a8f-cf90-46fb-8259-c39808d03a18/1/U_lbPo8PKb3J8kZQfxOgxbEuCro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6d2a8f-cf90-46fb-8259-c39808d03a18/1/kOphmXVeYwDwQCwqCO1DegpzAB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.68.216.0/21
Signature Algorithm: sha256WithRSAEncryption
55:ff:b8:7f:76:d6:ab:21:75:f4:b2:e1:64:f2:2d:b2:2b:87:
da:70:24:b7:0c:c0:88:d3:b2:35:42:d1:58:e1:d5:34:ca:72:
fe:46:7f:da:18:cd:b2:1e:a4:20:00:ed:02:f7:3a:71:3a:96:
19:82:02:31:75:e7:24:56:ab:83:1c:b1:40:bc:0a:72:ac:16:
09:95:99:93:73:5d:fa:b6:2c:e8:b9:b8:ea:50:e1:45:42:a3:
fd:51:54:54:78:ad:d6:1f:9e:41:6c:1e:4f:5c:c7:b0:eb:83:
78:dd:3b:5f:67:1e:17:46:08:8b:af:02:fe:c3:d3:bb:83:80:
fd:44:85:be:d3:bf:c4:e9:86:3b:88:d9:b6:73:e8:1b:c8:1f:
77:a9:b4:de:7d:2d:04:5e:30:8a:ea:96:48:f9:2f:ed:94:1e:
22:f2:db:b9:47:3e:70:ff:9d:5b:f3:be:f9:03:4d:0e:a1:0b:
73:c9:5c:f8:2b:41:aa:cb:d1:db:0a:19:7d:db:ab:9e:9f:52:
ae:03:2a:11:9e:64:04:3d:37:ad:16:1d:7c:22:03:35:bd:93:
49:c5:ae:3c:f3:85:7d:32:a0:8b:a1:dc:62:a6:61:1f:19:d0:
05:e1:74:f7:67:72:84:36:d3:58:aa:48:4f:07:d0:91:93:24:
5b:4e:a5:3f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECtqB2zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MGVhNjE5OTc1NWU2MzAwZjA0MDJjMmEwOGVkNDM3YTBhNzMwMDFlMB4XDTIyMDEw
MTA5NTgyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTNmOTViM2U4ZjBm
MjliZGM5ZjI0NjUwN2YxM2EwYzViMTJlMGFiYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ2ZtbaG67u4iPIXqnh915pBj6WObr3WISHgN+IQC0jijfAs
wXhDpj6rA3bDO+VNOChhBi1UF9RAXBVFxzWZiCFyegrZI34GOEU21hcj6gvx9fTu
v4oi8VK1kBln+nkRQ3Y0uiY0Eyz1TxcEMRXu31SMWHDBNfhMPCn/Tsr105tJaxwD
HJJ2AszD+3gdS3A2KV1hxNQWP/Elexpn4oAIGV7gpG1ejKiuK782kBySvwAwoq4b
COqwFuiJJW4TSh+s8QEsy02W9kCP0bBtHVQt75ey+81RODjMoyTV/RJypvFfM9tk
6z3YgotJHkbj/VHO8Dj8dJZhJejw7LwOdZTLLNECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRT+Vs+jw8pvcnyRlB/E6DFsS4KujAfBgNVHSMEGDAWgBSQ6mGZdV5jAPBA
LCoI7UN6CnMAHjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2tPcGhtWFZlWXdEd1FDd3FDTzFEZWdwekFCNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWIvNmQyYThmLWNmOTAtNDZmYi04MjU5LWMzOTgwOGQwM2ExOC8x
L1VfbGJQbzhQS2IzSjhrWlFmeE9neGJFdUNyby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWIv
NmQyYThmLWNmOTAtNDZmYi04MjU5LWMzOTgwOGQwM2ExOC8xL2tPcGhtWFZlWXdE
d1FDd3FDTzFEZWdwekFCNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA21E2DANBgkqhkiG9w0BAQsFAAOC
AQEAVf+4f3bWqyF19LLhZPItsiuH2nAktwzAiNOyNULRWOHVNMpy/kZ/2hjNsh6k
IADtAvc6cTqWGYICMXXnJFargxyxQLwKcqwWCZWZk3Nd+rYs6Lm46lDhRUKj/VFU
VHit1h+eQWweT1zHsOuDeN07X2ceF0YIi68C/sPTu4OA/USFvtO/xOmGO4jZtnPo
G8gfd6m03n0tBF4wiuqWSPkv7ZQeIvLbuUc+cP+dW/O++QNNDqELc8lc+CtBqsvR
2woZfdurnp9SrgMqEZ5kBD03rRYdfCIDNb2TScWuPPOFfTKgi6HcYqZhHxnQBeF0
92dyhDbTWKpITwfQkZMkW06lPw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:47 2024 by rpki-client on console-ams.rpki-client.org