Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/67f42e-7062-4112-ad42-9349f10a2649/1/U_7cdS7jg_Q_mlb1JCPyMBn-92Y.roa
File: U_7cdS7jg_Q_mlb1JCPyMBn-92Y.roa (raw, json)
Hash identifier: U3kTGB40VKYmAOLtp/MhdCxvB5OptH0ScZQEvSKrFsU=
Subject key identifier: 53:FE:DC:75:2E:E3:83:F4:3F:9A:56:F5:24:23:F2:30:19:FE:F7:66
Certificate issuer: /CN=728c2bfd6bb503a01d018602bda152d734ed56f0
Certificate serial: 01856F4B63F6B3CEBB56DBE7EE98A2921565
Authority key identifier: 72:8C:2B:FD:6B:B5:03:A0:1D:01:86:02:BD:A1:52:D7:34:ED:56:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cowr_Wu1A6AdAYYCvaFS1zTtVvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/67f42e-7062-4112-ad42-9349f10a2649/1/U_7cdS7jg_Q_mlb1JCPyMBn-92Y.roa
Signing time: Sun 01 Jan 2023 21:44:49 +0000
ROA not before: Sun 01 Jan 2023 21:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209094
IP address blocks: 5.182.188.0/24 maxlen: 24
2a0e:6400::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:63:f6:b3:ce:bb:56:db:e7:ee:98:a2:92:15:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=728c2bfd6bb503a01d018602bda152d734ed56f0
Validity
Not Before: Jan 1 21:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53fedc752ee383f43f9a56f52423f23019fef766
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:6d:38:78:e4:9f:38:fe:00:c6:6c:25:e2:03:
03:f2:cc:fb:c4:d2:ce:fb:55:03:46:c5:a0:0b:fc:
66:e6:cf:11:36:20:b1:07:c0:dc:93:5a:92:e3:5f:
f4:be:d2:41:5d:e6:08:42:bb:3b:f7:76:b6:77:0c:
c2:b0:35:0d:69:65:66:ff:40:f4:50:1c:6a:7f:b3:
a7:8a:b5:bc:b7:77:0e:c4:ac:37:8f:70:a2:67:3d:
a3:03:e7:71:a1:16:24:e6:c8:99:1e:75:a0:45:e3:
b0:0c:87:74:b2:78:f0:3b:5c:df:0e:be:6e:7a:29:
ae:d1:83:d0:3c:65:e9:34:58:03:56:4f:ab:53:e6:
51:ce:90:be:76:ee:1e:85:d7:37:7c:66:c8:79:5a:
fd:5a:7f:dd:6c:72:b1:54:ea:71:7a:4a:29:1f:b6:
ff:30:34:a0:8f:2d:50:05:d8:d8:a1:68:7f:44:01:
da:e3:d4:25:0f:c7:85:57:be:f3:3f:af:f8:4c:27:
05:f5:cc:54:a9:31:84:12:db:f5:5c:b7:0a:45:fa:
85:bc:7f:75:29:45:7b:07:27:70:f2:a6:c6:2d:60:
e4:e0:13:8b:37:d0:d3:59:5f:d9:12:b8:0e:24:1e:
d9:aa:9a:bc:42:90:6e:a1:08:eb:bc:d8:ae:41:41:
64:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:FE:DC:75:2E:E3:83:F4:3F:9A:56:F5:24:23:F2:30:19:FE:F7:66
X509v3 Authority Key Identifier:
keyid:72:8C:2B:FD:6B:B5:03:A0:1D:01:86:02:BD:A1:52:D7:34:ED:56:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cowr_Wu1A6AdAYYCvaFS1zTtVvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/67f42e-7062-4112-ad42-9349f10a2649/1/U_7cdS7jg_Q_mlb1JCPyMBn-92Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/67f42e-7062-4112-ad42-9349f10a2649/1/cowr_Wu1A6AdAYYCvaFS1zTtVvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.188.0/24
IPv6:
2a0e:6400::/32
Signature Algorithm: sha256WithRSAEncryption
1c:b3:eb:24:eb:12:e9:4f:d8:19:00:e4:54:b5:7c:81:71:8d:
43:dd:c3:18:97:43:4b:f9:74:cb:83:d0:3d:e8:03:91:c1:9e:
21:c9:e8:12:e9:63:49:5e:ce:b9:8e:2b:15:96:2c:25:b3:3a:
1a:38:a5:b3:7f:e4:25:36:61:8b:79:5f:75:36:bb:9d:fb:46:
69:ac:94:f1:2c:f7:43:9a:c6:41:c1:27:c4:96:59:20:6b:ad:
03:16:38:35:af:57:5b:35:fb:a0:5c:57:5a:40:2f:db:c7:69:
52:9f:0a:8b:15:46:0d:3f:26:d4:81:ab:36:ac:53:a7:60:dd:
f0:97:1c:a0:49:1c:e4:01:f6:a4:53:6b:94:de:f4:8e:85:75:
4d:17:19:ca:bc:43:0d:d6:43:94:ff:c5:5b:22:2f:4e:9e:ab:
7d:ac:c6:89:aa:cf:23:19:f2:8b:e9:c0:16:ba:d4:e9:d4:19:
70:7c:25:89:bc:38:b1:e4:5a:6c:d6:c1:35:53:cb:1e:3c:ad:
37:b2:ec:23:54:af:b0:b9:2d:6e:44:75:6c:ea:e3:38:55:8c:
de:79:e1:b8:ee:1a:26:99:ae:18:e5:70:86:52:f9:0e:ea:a4:
06:f9:cb:e8:ce:ac:79:16:93:c1:a1:b1:e1:06:6d:55:4d:f5:
86:69:2a:6d
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVvS2P2s867Vtvn7piikhVlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyOGMyYmZkNmJiNTAzYTAxZDAxODYwMmJkYTE1MmQ3MzRl
ZDU2ZjAwHhcNMjMwMTAxMjE0NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1M2ZlZGM3NTJlZTM4M2Y0M2Y5YTU2ZjUyNDIzZjIzMDE5ZmVmNzY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3204eOSfOP4Axmwl4gMD8sz7xNLO
+1UDRsWgC/xm5s8RNiCxB8Dck1qS41/0vtJBXeYIQrs793a2dwzCsDUNaWVm/0D0
UBxqf7OnirW8t3cOxKw3j3CiZz2jA+dxoRYk5siZHnWgReOwDId0snjwO1zfDr5u
eimu0YPQPGXpNFgDVk+rU+ZRzpC+du4ehdc3fGbIeVr9Wn/dbHKxVOpxekopH7b/
MDSgjy1QBdjYoWh/RAHa49QlD8eFV77zP6/4TCcF9cxUqTGEEtv1XLcKRfqFvH91
KUV7Bydw8qbGLWDk4BOLN9DTWV/ZErgOJB7Zqpq8QpBuoQjrvNiuQUFkIwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFFP+3HUu44P0P5pW9SQj8jAZ/vdmMB8GA1UdIwQY
MBaAFHKMK/1rtQOgHQGGAr2hUtc07VbwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY293cl9XdTFBNkFkQVlZQ3ZhRlMxelR0VnZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS82N2Y0MmUtNzA2Mi00MTEyLWFkNDIt
OTM0OWYxMGEyNjQ5LzEvVV83Y2RTN2pnX1FfbWxiMUpDUHlNQm4tOTJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS82N2Y0MmUtNzA2Mi00MTEyLWFkNDItOTM0OWYxMGEyNjQ5
LzEvY293cl9XdTFBNkFkQVlZQ3ZhRlMxelR0VnZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQABba8MA0E
AgACMAcDBQAqDmQAMA0GCSqGSIb3DQEBCwUAA4IBAQAcs+sk6xLpT9gZAORUtXyB
cY1D3cMYl0NL+XTLg9A96AORwZ4hyegS6WNJXs65jisVliwlszoaOKWzf+QlNmGL
eV91Nrud+0ZprJTxLPdDmsZBwSfEllkga60DFjg1r1dbNfugXFdaQC/bx2lSnwqL
FUYNPybUgas2rFOnYN3wlxygSRzkAfakU2uU3vSOhXVNFxnKvEMN1kOU/8VbIi9O
nqt9rMaJqs8jGfKL6cAWutTp1BlwfCWJvDix5Fps1sE1U8sePK03suwjVK+wuS1u
RHVs6uM4VYzeeeG47homma4Y5XCGUvkO6qQG+cvozqx5FpPBobHhBm1VTfWGaSpt
-----END CERTIFICATE-----
Generated at Thu Apr 17 06:38:57 2025 by rpki-client