Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/UXnfA1xM7U8LyB41FizsM1HGmiY.roa
File: UXnfA1xM7U8LyB41FizsM1HGmiY.roa (raw, json)
Hash identifier: VGa+ZALaaB7Wt6gkK55ot99odzXKZuO8tN9mw9+mETU=
Subject key identifier: 51:79:DF:03:5C:4C:ED:4F:0B:C8:1E:35:16:2C:EC:33:51:C6:9A:26
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 01837AE7B4916C43A4A33AC34FA582246C27
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/UXnfA1xM7U8LyB41FizsM1HGmiY.roa
Signing time: Mon 26 Sep 2022 17:45:48 +0000
ROA not before: Mon 26 Sep 2022 17:45:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60068
IP address blocks: 178.253.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7a:e7:b4:91:6c:43:a4:a3:3a:c3:4f:a5:82:24:6c:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Sep 26 17:45:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5179df035c4ced4f0bc81e35162cec3351c69a26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f6:a3:f6:41:c6:fb:c6:01:f7:fa:a6:93:23:
e8:e4:d5:bb:8d:58:c2:96:b1:d4:9a:e8:37:b1:b4:
3b:dc:c5:71:c0:5d:ba:06:35:6b:97:13:9e:12:09:
bc:64:d1:a3:83:1e:9e:76:c2:b2:ea:a7:b2:ae:22:
79:de:0d:5c:eb:33:12:43:d9:48:b0:24:86:a7:a0:
15:46:3d:65:7b:94:8a:eb:e2:ef:fe:4a:73:a2:8c:
6a:43:2b:b5:2e:6e:d5:2a:34:de:d0:a2:bf:2e:ca:
42:a2:38:48:0c:95:e5:f3:d8:9f:3c:0d:39:c6:0e:
ba:9a:c3:67:a2:b7:85:53:7f:dd:24:2c:c0:67:41:
32:95:b9:a9:ac:2d:bc:0e:81:5b:3f:93:84:cb:a2:
fc:bd:85:b5:47:f0:82:3b:17:55:bc:f5:7e:e1:de:
c2:61:b0:5e:aa:10:6f:1f:c8:ca:6f:cc:51:7e:e1:
c4:43:5f:f4:8f:b3:5e:8b:ce:20:e9:27:9b:b9:80:
6c:a1:a1:42:35:97:82:de:09:bc:f8:9a:d9:3f:5b:
6a:be:2c:b0:15:85:eb:3e:b5:33:d6:63:6f:27:9e:
53:81:b2:cd:83:6e:b8:72:20:c6:31:a1:57:05:74:
64:79:dc:bf:8e:b3:21:d2:b7:cb:ab:5c:71:aa:34:
b1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:79:DF:03:5C:4C:ED:4F:0B:C8:1E:35:16:2C:EC:33:51:C6:9A:26
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/UXnfA1xM7U8LyB41FizsM1HGmiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.16.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:06:9d:4e:c9:64:a4:62:50:ff:cd:ec:99:5e:9a:0c:c5:ad:
dd:27:e9:a0:dc:93:53:9f:77:1b:eb:b0:0a:34:96:74:fa:59:
d8:da:05:e3:95:c3:aa:93:f3:19:47:96:6e:93:f1:7a:cc:ce:
c5:2b:e4:98:72:64:cf:1e:5c:77:bb:9b:bd:14:00:94:49:3f:
7d:f7:7a:33:c1:d0:e8:92:d1:2b:96:a0:35:85:2e:2c:54:a0:
7c:a5:08:0b:7f:97:13:9e:31:7a:0a:24:de:a4:90:a4:db:19:
26:7c:09:9e:f7:d3:c9:f4:a7:9a:5d:02:87:a6:03:56:35:d2:
e0:a6:54:de:27:19:f4:d8:c7:99:ae:ab:b6:b6:a9:83:9a:33:
fb:33:b8:4a:a5:e3:40:6a:1c:91:0b:6a:03:56:b3:d3:89:de:
ad:a4:2b:38:66:95:ea:88:11:ec:82:ea:9b:2b:07:e7:87:f8:
2d:a6:a4:41:a4:68:6e:29:fd:6c:19:f3:89:ff:b0:48:ff:10:
70:ca:91:3e:41:7a:62:79:b0:ed:af:2f:23:af:bd:3e:d4:0f:
38:57:ea:3e:a1:7f:93:4f:f6:78:fc:22:53:04:a6:d0:ea:7d:
49:b9:b9:b0:31:c4:c5:6f:98:b7:07:01:b8:6c:b1:eb:06:c9:
31:66:39:de
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYN657SRbEOkozrDT6WCJGwnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyNzc4ZGUyYTliZTk4MDIxMjAzODJlNzUwZDE1OWU5NTg3
MmMyYWUwHhcNMjIwOTI2MTc0NTQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTc5ZGYwMzVjNGNlZDRmMGJjODFlMzUxNjJjZWMzMzUxYzY5YTI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm/aj9kHG+8YB9/qmkyPo5NW7jVjC
lrHUmug3sbQ73MVxwF26BjVrlxOeEgm8ZNGjgx6edsKy6qeyriJ53g1c6zMSQ9lI
sCSGp6AVRj1le5SK6+Lv/kpzooxqQyu1Lm7VKjTe0KK/LspCojhIDJXl89ifPA05
xg66msNnoreFU3/dJCzAZ0EylbmprC28DoFbP5OEy6L8vYW1R/CCOxdVvPV+4d7C
YbBeqhBvH8jKb8xRfuHEQ1/0j7Nei84g6SebuYBsoaFCNZeC3gm8+JrZP1tqviyw
FYXrPrUz1mNvJ55TgbLNg264ciDGMaFXBXRkedy/jrMh0rfLq1xxqjSxDQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFF53wNcTO1PC8geNRYs7DNRxpomMB8GA1UdIwQY
MBaAFMJ3jeKpvpgCEgOC51DRWelYcsKuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEt
Zjk4ZGE1NGFmNDM0LzEvVVhuZkExeE03VThMeUI0MUZpenNNMUhHbWlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEtZjk4ZGE1NGFmNDM0
LzEvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsv0QMA0G
CSqGSIb3DQEBCwUAA4IBAQAKBp1OyWSkYlD/zeyZXpoMxa3dJ+mg3JNTn3cb67AK
NJZ0+lnY2gXjlcOqk/MZR5Zuk/F6zM7FK+SYcmTPHlx3u5u9FACUST9993ozwdDo
ktErlqA1hS4sVKB8pQgLf5cTnjF6CiTepJCk2xkmfAme99PJ9KeaXQKHpgNWNdLg
plTeJxn02MeZrqu2tqmDmjP7M7hKpeNAahyRC2oDVrPTid6tpCs4ZpXqiBHsguqb
Kwfnh/gtpqRBpGhuKf1sGfOJ/7BI/xBwypE+QXpiebDtry8jr70+1A84V+o+oX+T
T/Z4/CJTBKbQ6n1JubmwMcTFb5i3BwG4bLHrBskxZjne
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:44 2023 by rpki-client on console-fra.rpki-client.org