Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/UwCdTUwciU6DplZKeP5REiAeYgI.roa
File: UwCdTUwciU6DplZKeP5REiAeYgI.roa (raw, json)
Hash identifier: UebrgVIFRs+Hx/gY9xp+8wHZkOnEXMUbkf+++3dwg4w=
Subject key identifier: 53:00:9D:4D:4C:1C:89:4E:83:A6:56:4A:78:FE:51:12:20:1E:62:02
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 0F1C6232
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/UwCdTUwciU6DplZKeP5REiAeYgI.roa
Signing time: Thu 24 Feb 2022 19:32:14 +0000
ROA not before: Thu 24 Feb 2022 19:32:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41376
IP address blocks: 87.246.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 253518386 (0xf1c6232)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Feb 24 19:32:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53009d4d4c1c894e83a6564a78fe5112201e6202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:87:2a:5c:8c:4f:64:c3:d0:5a:d5:19:1b:61:
13:f1:ad:0b:85:3e:c6:e6:98:f0:57:c5:66:97:07:
28:1c:89:53:d7:fa:84:42:73:fd:7a:ed:39:6a:4d:
bf:bd:97:19:e4:e3:7f:c1:65:bc:85:cc:62:21:dd:
bf:7f:ec:6b:1f:bb:ea:cf:76:c3:38:72:f2:2e:3a:
c5:d3:5b:af:66:87:c8:3d:dc:05:7b:a8:27:31:54:
60:62:d5:91:93:58:4b:b4:7c:6f:78:87:d7:6b:61:
7d:da:6b:7b:3c:01:52:04:57:1a:8d:73:61:44:99:
d6:2f:32:bf:1f:03:8a:f8:6e:dd:36:c0:ad:ec:6e:
c3:e5:b5:57:24:71:34:5f:40:95:76:5c:5c:5f:61:
32:57:40:21:7d:a1:1e:60:dc:2a:7c:1b:01:90:2d:
e5:d7:55:d3:98:58:61:ea:25:0c:1a:b8:c1:07:c6:
b5:52:65:74:26:3c:08:03:44:af:2f:e6:0f:ab:7f:
25:04:3e:fb:31:bb:b6:c9:b1:fc:04:cd:4a:6e:e6:
50:63:63:c9:4c:0e:e7:d5:d1:c2:6d:48:90:56:0b:
3b:8c:f1:5c:ac:a0:e4:f2:9b:97:8e:21:d8:f1:5a:
de:3b:51:67:55:06:82:d3:16:b1:97:5f:8d:7e:3b:
89:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:00:9D:4D:4C:1C:89:4E:83:A6:56:4A:78:FE:51:12:20:1E:62:02
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/UwCdTUwciU6DplZKeP5REiAeYgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.246.161.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:e8:58:bb:2e:02:23:e4:ba:c0:7b:e6:a5:e6:ba:50:e7:34:
0b:26:97:be:b4:13:23:e2:c6:d6:fa:32:dd:6b:a5:bd:bc:5e:
2b:01:d7:ed:94:4e:96:49:60:88:30:2a:a3:74:4d:0f:ea:ba:
33:4e:18:b2:90:05:1e:5d:48:3d:ef:c1:6f:fe:5a:89:de:fb:
01:fb:5a:77:86:da:0d:00:e5:9b:02:78:dd:80:95:a1:80:8c:
58:10:50:7c:8b:08:3a:47:7c:3e:aa:a6:ad:37:41:5b:68:f6:
f7:ce:09:5c:94:24:ee:cb:a7:a4:d3:56:f2:25:be:90:7c:cc:
d8:90:f1:8a:f9:76:99:88:17:c9:81:8b:41:99:da:18:21:4e:
fb:da:49:02:d6:c1:14:87:ed:5c:44:6e:57:51:58:39:8c:9f:
da:c8:bf:02:70:b2:8a:b6:15:4f:2a:b0:0e:a9:24:20:33:d1:
fd:c5:1a:75:cf:09:30:83:7b:fc:e7:37:87:a8:2f:63:74:57:
49:6e:bd:02:8f:6f:40:31:22:df:a6:02:60:f0:47:cd:4f:66:
a7:ae:f5:05:6c:4c:9b:04:db:80:b9:30:b0:cd:5b:e3:48:ea:
47:14:a5:2f:d0:8d:42:3c:47:da:95:52:28:72:07:27:86:3c:
be:46:00:2a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDxxiMjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
M2JlMDdjYjFmZDRmMWUzYzkyMjMwM2I2NzBhODgxYjgyZTYxNDkxMB4XDTIyMDIy
NDE5MzIxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTMwMDlkNGQ0YzFj
ODk0ZTgzYTY1NjRhNzhmZTUxMTIyMDFlNjIwMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJyHKlyMT2TD0FrVGRthE/GtC4U+xuaY8FfFZpcHKByJU9f6
hEJz/XrtOWpNv72XGeTjf8FlvIXMYiHdv3/sax+76s92wzhy8i46xdNbr2aHyD3c
BXuoJzFUYGLVkZNYS7R8b3iH12thfdprezwBUgRXGo1zYUSZ1i8yvx8Divhu3TbA
rexuw+W1VyRxNF9AlXZcXF9hMldAIX2hHmDcKnwbAZAt5ddV05hYYeolDBq4wQfG
tVJldCY8CANEry/mD6t/JQQ++zG7tsmx/ATNSm7mUGNjyUwO59XRwm1IkFYLO4zx
XKyg5PKbl44h2PFa3jtRZ1UGgtMWsZdfjX47iTECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRTAJ1NTByJToOmVkp4/lESIB5iAjAfBgNVHSMEGDAWgBTjvgfLH9Tx48ki
MDtnCogbguYUkTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzQ3NEh5eF9VOGVQSklqQTdad3FJRzRMbUZKRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmEvOGY1ZmFlLWRhOTAtNDMxNC1iZmZjLWQ0ZWUxZDM4OWUwZC8x
L1V3Q2RUVXdjaVU2RHBsWktlUDVSRWlBZVlnSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmEv
OGY1ZmFlLWRhOTAtNDMxNC1iZmZjLWQ0ZWUxZDM4OWUwZC8xLzQ3NEh5eF9VOGVQ
SklqQTdad3FJRzRMbUZKRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFf2oTANBgkqhkiG9w0BAQsFAAOC
AQEAO+hYuy4CI+S6wHvmpea6UOc0CyaXvrQTI+LG1voy3WulvbxeKwHX7ZROlklg
iDAqo3RND+q6M04YspAFHl1IPe/Bb/5aid77Aftad4baDQDlmwJ43YCVoYCMWBBQ
fIsIOkd8PqqmrTdBW2j2984JXJQk7sunpNNW8iW+kHzM2JDxivl2mYgXyYGLQZna
GCFO+9pJAtbBFIftXERuV1FYOYyf2si/AnCyirYVTyqwDqkkIDPR/cUadc8JMIN7
/Oc3h6gvY3RXSW69Ao9vQDEi36YCYPBHzU9mp671BWxMmwTbgLkwsM1b40jqRxSl
L9CNQjxH2pVSKHIHJ4Y8vkYAKg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:51 2023 by rpki-client on console-fra.rpki-client.org