Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/10dd7f-5ed7-44dd-beb2-cffad53292ce/1/uydV-3cBOspn8W0WdcjYEjJ6hl8.roa
File: uydV-3cBOspn8W0WdcjYEjJ6hl8.roa (raw, json)
Hash identifier: E38vKSKB/D1lVY7/n6LLZRUpL3wwy4i6Ta+Q6c7+2LM=
Subject key identifier: BB:27:55:FB:77:01:3A:CA:67:F1:6D:16:75:C8:D8:12:32:7A:86:5F
Certificate issuer: /CN=18090ed0027f0e33a754c259f7dc88bb7a72ffa8
Certificate serial: 0F66C2DF
Authority key identifier: 18:09:0E:D0:02:7F:0E:33:A7:54:C2:59:F7:DC:88:BB:7A:72:FF:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GAkO0AJ_DjOnVMJZ99yIu3py_6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/10dd7f-5ed7-44dd-beb2-cffad53292ce/1/uydV-3cBOspn8W0WdcjYEjJ6hl8.roa
Signing time: Sat 01 Jan 2022 05:02:07 +0000
ROA not before: Sat 01 Jan 2022 05:02:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 553
IP address blocks: 134.108.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 258392799 (0xf66c2df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18090ed0027f0e33a754c259f7dc88bb7a72ffa8
Validity
Not Before: Jan 1 05:02:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb2755fb77013aca67f16d1675c8d812327a865f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:56:82:ee:3d:0b:03:76:0e:15:46:c1:a5:fd:
31:6f:ff:61:ee:3c:0d:17:64:bd:20:22:9b:f5:f0:
ac:31:79:ab:ec:11:cb:92:a9:f2:cf:17:33:d0:5d:
fd:da:64:40:10:66:92:6b:a5:49:ec:d0:81:c0:48:
5d:6f:ba:8c:7f:25:ad:23:43:a4:f1:d8:60:9f:6b:
8f:27:fa:77:f5:34:2c:8e:ba:70:7b:90:33:52:a5:
86:ee:5a:c2:62:69:c4:a6:14:b0:63:e9:bd:c1:b5:
61:9a:7c:f0:99:cb:c9:b7:3d:d6:4c:d7:c3:30:c6:
c0:04:c3:43:3a:45:ea:2b:1e:7e:51:53:fd:74:06:
02:3a:3b:80:ad:41:e5:3d:72:0b:f1:cf:83:aa:c4:
72:38:4c:f8:44:27:bc:3c:de:2c:39:81:81:6d:20:
8f:c1:c4:bd:10:93:86:d7:ba:df:f2:29:23:ac:fb:
ce:ce:f9:cc:1b:4a:21:9c:57:06:81:3e:1d:b4:39:
f9:c3:7e:6e:5e:22:d2:66:a2:ba:31:4d:c6:c5:99:
bd:e3:0e:33:25:a8:f3:22:ee:69:8f:3a:7b:3c:fe:
a4:2a:65:ef:c7:af:90:b4:80:a0:9e:28:6f:7d:e7:
ce:c9:1f:9e:27:01:f7:0d:8d:c0:8f:70:6e:a5:44:
47:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:27:55:FB:77:01:3A:CA:67:F1:6D:16:75:C8:D8:12:32:7A:86:5F
X509v3 Authority Key Identifier:
keyid:18:09:0E:D0:02:7F:0E:33:A7:54:C2:59:F7:DC:88:BB:7A:72:FF:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GAkO0AJ_DjOnVMJZ99yIu3py_6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/10dd7f-5ed7-44dd-beb2-cffad53292ce/1/uydV-3cBOspn8W0WdcjYEjJ6hl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/10dd7f-5ed7-44dd-beb2-cffad53292ce/1/GAkO0AJ_DjOnVMJZ99yIu3py_6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.108.0.0/16
Signature Algorithm: sha256WithRSAEncryption
25:c9:14:46:a6:f6:b5:b0:96:d1:46:c8:99:26:b6:c1:4c:ff:
36:97:06:21:24:c4:78:e8:60:1a:99:44:08:c8:1b:c7:ec:38:
64:1f:f1:06:27:9d:16:02:5a:6c:1c:76:32:cd:d9:59:17:66:
71:89:14:54:27:75:74:3e:80:65:5f:95:12:50:6d:d0:17:b6:
71:6b:87:ba:de:af:0c:19:24:6f:46:83:1e:9c:cd:07:8e:7a:
0b:3d:a7:46:fc:dc:d9:20:bf:7f:2b:80:bc:a6:dd:26:eb:ce:
14:78:a8:b7:04:41:e7:83:9d:b0:f8:a9:67:c7:b6:74:00:85:
ec:c9:3d:ed:0c:66:06:2c:17:48:d6:df:bd:7e:57:27:59:40:
57:8a:e4:c9:43:7a:b1:90:ae:4f:3f:9d:7e:9a:12:19:93:84:
89:cb:22:b2:d1:c8:fc:fa:96:a3:81:f6:a3:97:ff:0f:56:ca:
9f:38:52:8d:87:7f:9c:61:e5:08:97:a8:7a:0e:1f:b1:84:62:
47:6a:9d:ce:3b:91:16:ff:08:af:3b:e8:f6:d8:ee:ca:79:58:
39:7e:86:5a:f9:1d:ac:eb:27:72:5e:8c:7b:f0:e4:6f:ec:4b:
1b:ef:f3:6a:ec:0b:6b:21:f9:ef:b0:72:fa:04:a4:f0:e2:e9:
18:a6:84:47
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIED2bC3zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ODA5MGVkMDAyN2YwZTMzYTc1NGMyNTlmN2RjODhiYjdhNzJmZmE4MB4XDTIyMDEw
MTA1MDIwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmIyNzU1ZmI3NzAx
M2FjYTY3ZjE2ZDE2NzVjOGQ4MTIzMjdhODY1ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALFWgu49CwN2DhVGwaX9MW//Ye48DRdkvSAim/XwrDF5q+wR
y5Kp8s8XM9Bd/dpkQBBmkmulSezQgcBIXW+6jH8lrSNDpPHYYJ9rjyf6d/U0LI66
cHuQM1Klhu5awmJpxKYUsGPpvcG1YZp88JnLybc91kzXwzDGwATDQzpF6iseflFT
/XQGAjo7gK1B5T1yC/HPg6rEcjhM+EQnvDzeLDmBgW0gj8HEvRCThte63/IpI6z7
zs75zBtKIZxXBoE+HbQ5+cN+bl4i0maiujFNxsWZveMOMyWo8yLuaY86ezz+pCpl
78evkLSAoJ4ob33nzskfnicB9w2NwI9wbqVERzMCAwEAAaOCAggwggIEMB0GA1Ud
DgQWBBS7J1X7dwE6ymfxbRZ1yNgSMnqGXzAfBgNVHSMEGDAWgBQYCQ7QAn8OM6dU
wln33Ii7enL/qDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0dBa08wQUpfRGpPblZNSlo5OXlJdTNweV82Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzUvMTBkZDdmLTVlZDctNDRkZC1iZWIyLWNmZmFkNTMyOTJjZS8x
L3V5ZFYtM2NCT3NwbjhXMFdkY2pZRWpKNmhsOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzUv
MTBkZDdmLTVlZDctNDRkZC1iZWIyLWNmZmFkNTMyOTJjZS8xL0dBa08wQUpfRGpP
blZNSlo5OXlJdTNweV82Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAe
BggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAIZsMA0GCSqGSIb3DQEBCwUAA4IB
AQAlyRRGpva1sJbRRsiZJrbBTP82lwYhJMR46GAamUQIyBvH7DhkH/EGJ50WAlps
HHYyzdlZF2ZxiRRUJ3V0PoBlX5USUG3QF7Zxa4e63q8MGSRvRoMenM0HjnoLPadG
/NzZIL9/K4C8pt0m684UeKi3BEHng52w+Klnx7Z0AIXsyT3tDGYGLBdI1t+9flcn
WUBXiuTJQ3qxkK5PP51+mhIZk4SJyyKy0cj8+pajgfajl/8PVsqfOFKNh3+cYeUI
l6h6Dh+xhGJHap3OO5EW/wivO+j22O7KeVg5foZa+R2s6ydyXox78ORv7Esb7/Nq
7AtrIfnvsHL6BKTw4ukYpoRH
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:03 2024 by rpki-client on console-fra.rpki-client.org