Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/UBpgX6oJYD6uKSA50MSmtiwUogs.roa
File: UBpgX6oJYD6uKSA50MSmtiwUogs.roa (raw, json)
Hash identifier: hAeP9ygU9a54b2+tVw+3kv5xKHQvUdC0bqPJN+aGbxY=
Subject key identifier: 50:1A:60:5F:AA:09:60:3E:AE:29:20:39:D0:C4:A6:B6:2C:14:A2:0B
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 03327AD8
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/UBpgX6oJYD6uKSA50MSmtiwUogs.roa
Signing time: Sat 01 Jan 2022 16:04:29 +0000
ROA not before: Sat 01 Jan 2022 16:04:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202423
IP address blocks: 185.102.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53639896 (0x3327ad8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=501a605faa09603eae292039d0c4a6b62c14a20b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fc:0c:93:60:d3:ec:1c:b3:82:a2:d1:ce:7a:
62:38:5a:ab:e2:0c:94:82:d7:a9:67:13:e5:50:fc:
15:5e:19:51:89:53:d2:3e:4f:8f:66:54:af:dd:60:
6b:05:4c:55:ca:42:7f:c8:67:b5:dd:8a:ef:f1:f2:
8c:db:4f:1b:ee:c6:26:1a:50:5f:4a:84:f7:35:98:
a7:58:7e:64:8f:fe:c7:28:b4:d1:a6:8e:a1:27:0c:
92:bf:a8:a5:cf:09:31:0d:b0:27:92:c1:a9:e2:8d:
19:5b:4e:5b:59:42:66:45:8c:8a:cd:b3:3a:01:c9:
fe:a1:93:f1:7b:62:0c:57:39:9c:77:4d:ac:d1:da:
ae:ef:bd:b4:7f:67:71:47:52:02:a5:4c:6b:1b:69:
f6:6b:77:a4:06:22:78:40:16:79:eb:e3:21:8d:d8:
11:e5:d0:be:fc:e9:33:05:f1:18:ce:9f:2e:11:0a:
e3:c0:f5:8e:1c:91:55:06:02:f8:af:f5:74:8d:6f:
2b:1d:d4:84:15:cc:0a:81:31:e5:57:14:0f:8f:e0:
5e:58:00:4f:54:18:f9:f0:fb:0c:8b:00:93:ea:c0:
27:f4:fc:01:0b:6f:cf:d8:24:38:b1:6b:9e:d1:33:
49:bb:b3:1d:a1:be:b6:0b:9f:db:2b:c2:a1:e4:bd:
7b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:1A:60:5F:AA:09:60:3E:AE:29:20:39:D0:C4:A6:B6:2C:14:A2:0B
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/UBpgX6oJYD6uKSA50MSmtiwUogs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.136.0/24
Signature Algorithm: sha256WithRSAEncryption
37:1d:bb:42:5b:8e:28:d6:73:5c:6e:13:26:10:d2:d1:07:43:
f7:6b:b7:b1:be:9b:a6:fd:35:ae:e4:a6:e6:18:7e:59:45:33:
da:a3:f0:17:a1:9e:9c:b1:0f:5a:e2:c6:28:77:a8:4f:e7:d6:
49:d8:49:0e:92:c1:c0:f2:8f:49:88:68:43:20:61:9c:71:bf:
50:1d:d9:d5:c5:0a:39:cf:e0:33:2a:bf:9e:b0:5a:55:e4:04:
ce:ac:94:0e:e1:61:21:2e:40:a3:05:9c:4c:8d:d5:17:2c:18:
0d:89:7d:76:e2:00:bc:d7:fe:66:e8:a9:35:5d:70:99:c5:e6:
64:cd:cf:74:4b:a9:b7:5d:8a:2d:7c:84:a3:f2:9b:f1:bf:09:
75:ed:3d:39:5c:cc:cf:72:29:ab:d2:d3:2b:02:d5:11:cd:b3:
d5:4b:ba:ad:56:de:c7:5c:29:d2:f1:07:73:13:52:07:bc:51:
af:43:52:b3:e9:84:cb:10:b8:fe:98:bb:0a:7b:cb:fd:cf:28:
e3:49:45:3d:cf:3c:1e:fc:c5:ea:e9:33:c7:72:1d:61:8d:61:
51:09:0c:61:2a:8d:59:d7:82:59:e4:25:e5:3e:b4:32:cb:b9:
bf:ac:a4:20:0c:41:c2:c7:1a:ef:2b:a6:b4:17:92:7c:3d:1c:
fb:1f:d6:97
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAzJ62DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NGY5NjM0NWQzZjIyZWRiMzk1ZDI0N2Y3Yjg2ZDJkNzNlNGEwMDkxMB4XDTIyMDEw
MTE2MDQyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTAxYTYwNWZhYTA5
NjAzZWFlMjkyMDM5ZDBjNGE2YjYyYzE0YTIwYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALj8DJNg0+wcs4Ki0c56Yjhaq+IMlILXqWcT5VD8FV4ZUYlT
0j5Pj2ZUr91gawVMVcpCf8hntd2K7/HyjNtPG+7GJhpQX0qE9zWYp1h+ZI/+xyi0
0aaOoScMkr+opc8JMQ2wJ5LBqeKNGVtOW1lCZkWMis2zOgHJ/qGT8XtiDFc5nHdN
rNHaru+9tH9ncUdSAqVMaxtp9mt3pAYieEAWeevjIY3YEeXQvvzpMwXxGM6fLhEK
48D1jhyRVQYC+K/1dI1vKx3UhBXMCoEx5VcUD4/gXlgAT1QY+fD7DIsAk+rAJ/T8
AQtvz9gkOLFrntEzSbuzHaG+tguf2yvCoeS9e9sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRQGmBfqglgPq4pIDnQxKa2LBSiCzAfBgNVHSMEGDAWgBS0+WNF0/Iu2zld
JH97htLXPkoAkTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RQbGpSZFB5THRzNVhTUl9lNGJTMXo1S0FKRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzUvOGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2NkMi8x
L1VCcGdYNm9KWUQ2dUtTQTUwTVNtdGl3VW9ncy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzUv
OGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2NkMi8xL3RQbGpSZFB5THRz
NVhTUl9lNGJTMXo1S0FKRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlmiDANBgkqhkiG9w0BAQsFAAOC
AQEANx27QluOKNZzXG4TJhDS0QdD92u3sb6bpv01ruSm5hh+WUUz2qPwF6GenLEP
WuLGKHeoT+fWSdhJDpLBwPKPSYhoQyBhnHG/UB3Z1cUKOc/gMyq/nrBaVeQEzqyU
DuFhIS5AowWcTI3VFywYDYl9duIAvNf+ZuipNV1wmcXmZM3PdEupt12KLXyEo/Kb
8b8Jde09OVzMz3Ipq9LTKwLVEc2z1Uu6rVbex1wp0vEHcxNSB7xRr0NSs+mEyxC4
/pi7CnvL/c8o40lFPc88HvzF6ukzx3IdYY1hUQkMYSqNWdeCWeQl5T60Msu5v6yk
IAxBwsca7yumtBeSfD0c+x/Wlw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org