Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/91592e-aebe-42b6-8082-6fd67a92f18f/1/Uw47pYZnxYJJRDusUeSJ2Vx4Yek.roa
File: Uw47pYZnxYJJRDusUeSJ2Vx4Yek.roa (raw, json)
Hash identifier: L/Ch6kOunCYcLmzuTKr5XWzQfy26VTxcJGAVSh5MHxs=
Subject key identifier: 53:0E:3B:A5:86:67:C5:82:49:44:3B:AC:51:E4:89:D9:5C:78:61:E9
Certificate issuer: /CN=ffebd54bf05aa50ece9c526d0cd55de62bdb11fb
Certificate serial: 07DF030F
Authority key identifier: FF:EB:D5:4B:F0:5A:A5:0E:CE:9C:52:6D:0C:D5:5D:E6:2B:DB:11:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_-vVS_BapQ7OnFJtDNVd5ivbEfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/91592e-aebe-42b6-8082-6fd67a92f18f/1/Uw47pYZnxYJJRDusUeSJ2Vx4Yek.roa
Signing time: Sat 01 Jan 2022 04:55:25 +0000
ROA not before: Sat 01 Jan 2022 04:55:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47481
IP address blocks: 194.35.48.0/24 maxlen: 24
185.24.47.0/24 maxlen: 24
185.24.46.0/24 maxlen: 24
2a0d:fec0:121::/48 maxlen: 48
2a0d:fec0:21::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132055823 (0x7df030f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffebd54bf05aa50ece9c526d0cd55de62bdb11fb
Validity
Not Before: Jan 1 04:55:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=530e3ba58667c58249443bac51e489d95c7861e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:b6:89:37:3c:ac:90:7e:f2:b8:e0:94:ee:3e:
5a:f7:d9:6b:8d:30:f8:bb:15:66:71:38:31:e8:53:
ad:a7:5b:c0:2d:87:62:c9:a9:81:ca:81:e8:cf:42:
79:70:6d:bb:0c:72:9c:81:ff:be:a0:fa:27:50:e4:
ad:6f:52:51:f6:a3:19:4b:b3:e8:f8:d1:5f:9d:ff:
38:f5:2c:2f:43:8c:e4:05:99:98:a6:da:7e:3e:1d:
ad:60:7f:a1:1b:45:50:2a:79:aa:67:83:15:9a:f1:
b6:91:44:56:c5:31:5c:5e:62:db:18:79:71:c8:4c:
5f:f6:3a:0c:91:02:e4:0d:31:0a:15:3d:63:61:b4:
06:03:cd:e4:d6:de:fc:18:8f:35:be:7a:d1:1b:36:
6a:83:cf:71:ee:e5:b9:4e:60:53:6c:2d:52:b1:d0:
b1:95:a1:2f:b1:1d:62:6e:a6:33:6d:b3:91:f5:fe:
0a:d2:48:02:4d:8a:50:e3:d2:36:42:ff:f8:26:98:
78:49:04:92:75:0c:23:b0:ca:27:0f:7e:12:ed:cc:
aa:7f:9f:f0:be:69:3d:93:ba:0c:9b:9b:ad:66:e8:
58:e6:17:44:c5:b6:fe:d8:f9:cd:0b:d4:33:59:c6:
5e:c1:5e:24:66:43:9b:04:13:3c:0f:93:07:ad:92:
13:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:0E:3B:A5:86:67:C5:82:49:44:3B:AC:51:E4:89:D9:5C:78:61:E9
X509v3 Authority Key Identifier:
keyid:FF:EB:D5:4B:F0:5A:A5:0E:CE:9C:52:6D:0C:D5:5D:E6:2B:DB:11:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_-vVS_BapQ7OnFJtDNVd5ivbEfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/91592e-aebe-42b6-8082-6fd67a92f18f/1/Uw47pYZnxYJJRDusUeSJ2Vx4Yek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/91592e-aebe-42b6-8082-6fd67a92f18f/1/_-vVS_BapQ7OnFJtDNVd5ivbEfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.46.0/23
194.35.48.0/24
IPv6:
2a0d:fec0:21::/48
2a0d:fec0:121::/48
Signature Algorithm: sha256WithRSAEncryption
93:fc:5f:fb:c0:ac:dc:f8:cf:27:2f:fb:d2:7c:27:4c:11:93:
8d:9f:0b:5c:5d:36:32:ff:05:67:32:53:b5:88:fa:d4:a1:ed:
a2:2e:5b:04:a7:cd:97:da:37:25:f0:49:85:65:df:75:f1:f1:
28:ed:b6:03:d1:c3:2b:7b:d2:f9:40:56:8b:b4:de:1f:b1:5e:
2d:fd:76:05:e3:92:04:4c:95:84:7c:05:66:98:8d:43:44:a4:
e8:19:25:0c:9b:88:a7:e1:b5:4f:00:6a:f9:f1:8c:b2:54:74:
a7:20:f2:d8:83:eb:98:39:bf:0b:ea:4f:05:ac:8e:6e:84:01:
64:d0:c8:29:02:af:4b:ca:d0:9b:0b:d5:3d:9f:d3:89:9e:c4:
23:9c:81:6f:fe:10:8b:85:e7:01:b4:25:7f:29:e0:2a:35:86:
65:46:9a:ec:ed:41:57:21:38:4a:c2:64:9b:4c:01:c3:0d:02:
18:f8:6b:b6:df:3f:f7:3c:a6:8a:d5:6e:db:65:ee:f3:2d:1a:
1e:96:46:ba:76:fe:ef:ea:7f:58:88:c9:02:62:37:40:13:28:
cd:f8:92:c3:80:07:82:95:58:32:fa:fb:6e:11:d3:66:61:d9:
47:b5:62:43:d1:fd:6f:29:7d:5e:c2:76:63:3b:81:05:26:1a:
57:bc:29:be
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgIEB98DDzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZmViZDU0YmYwNWFhNTBlY2U5YzUyNmQwY2Q1NWRlNjJiZGIxMWZiMB4XDTIyMDEw
MTA0NTUyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTMwZTNiYTU4NjY3
YzU4MjQ5NDQzYmFjNTFlNDg5ZDk1Yzc4NjFlOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJi2iTc8rJB+8rjglO4+WvfZa40w+LsVZnE4MehTradbwC2H
YsmpgcqB6M9CeXBtuwxynIH/vqD6J1DkrW9SUfajGUuz6PjRX53/OPUsL0OM5AWZ
mKbafj4drWB/oRtFUCp5qmeDFZrxtpFEVsUxXF5i2xh5cchMX/Y6DJEC5A0xChU9
Y2G0BgPN5Nbe/BiPNb560Rs2aoPPce7luU5gU2wtUrHQsZWhL7EdYm6mM22zkfX+
CtJIAk2KUOPSNkL/+CaYeEkEknUMI7DKJw9+Eu3Mqn+f8L5pPZO6DJubrWboWOYX
RMW2/tj5zQvUM1nGXsFeJGZDmwQTPA+TB62SExkCAwEAAaOCAikwggIlMB0GA1Ud
DgQWBBRTDjulhmfFgklEO6xR5InZXHhh6TAfBgNVHSMEGDAWgBT/69VL8FqlDs6c
Um0M1V3mK9sR+zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L18tdlZTX0JhcFE3T25GSnRETlZkNWl2YkVmcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzgvOTE1OTJlLWFlYmUtNDJiNi04MDgyLTZmZDY3YTkyZjE4Zi8x
L1V3NDdwWVpueFlKSlJEdXNVZVNKMlZ4NFllay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzgv
OTE1OTJlLWFlYmUtNDJiNi04MDgyLTZmZDY3YTkyZjE4Zi8xL18tdlZTX0JhcFE3
T25GSnRETlZkNWl2YkVmcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA/
BggrBgEFBQcBBwEB/wQwMC4wEgQCAAEwDAMEAbkYLgMEAMIjMDAYBAIAAjASAwcA
Kg3+wAAhAwcAKg3+wAEhMA0GCSqGSIb3DQEBCwUAA4IBAQCT/F/7wKzc+M8nL/vS
fCdMEZONnwtcXTYy/wVnMlO1iPrUoe2iLlsEp82X2jcl8EmFZd918fEo7bYD0cMr
e9L5QFaLtN4fsV4t/XYF45IETJWEfAVmmI1DRKToGSUMm4in4bVPAGr58YyyVHSn
IPLYg+uYOb8L6k8FrI5uhAFk0MgpAq9LytCbC9U9n9OJnsQjnIFv/hCLhecBtCV/
KeAqNYZlRprs7UFXIThKwmSbTAHDDQIY+Gu23z/3PKaK1W7bZe7zLRoelka6dv7v
6n9YiMkCYjdAEyjN+JLDgAeClVgy+vtuEdNmYdlHtWJD0f1vKX1ewnZjO4EFJhpX
vCm+
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:34 2024 by rpki-client on console-fra.rpki-client.org