Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/UTv-pP347TJwc4qmdFfsJ8bBd7k.roa
File: UTv-pP347TJwc4qmdFfsJ8bBd7k.roa (raw, json)
Hash identifier: +1sQ+R2ZVfV5lXsmIn1fnaeCuBNwgr/7jiHj5+B/l0o=
Subject key identifier: 51:3B:FE:A4:FD:F8:ED:32:70:73:8A:A6:74:57:EC:27:C6:C1:77:B9
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 191ACD1E
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/UTv-pP347TJwc4qmdFfsJ8bBd7k.roa
Signing time: Sat 12 Mar 2022 04:17:03 +0000
ROA not before: Sat 12 Mar 2022 04:17:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23470
IP address blocks: 185.185.251.0/24 maxlen: 24
185.119.252.0/24 maxlen: 24
185.122.36.0/24 maxlen: 24
79.143.58.0/24 maxlen: 32
79.143.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 421186846 (0x191acd1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Mar 12 04:17:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=513bfea4fdf8ed3270738aa67457ec27c6c177b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d9:e2:63:d2:bd:c4:1c:06:6b:fd:6a:ac:5a:
55:a9:e4:0c:27:78:03:cd:be:2f:42:b4:38:1c:38:
dd:0e:a8:08:eb:6c:12:a6:fe:59:59:c7:14:2e:a9:
fc:0e:10:a4:0a:01:8e:9f:22:62:92:df:93:b1:68:
67:69:29:9e:54:df:fe:38:d1:0b:73:b9:af:0b:03:
42:c6:36:4b:6c:04:63:49:47:75:f9:cc:97:2d:63:
e0:87:6a:c9:cf:e8:1b:33:6d:69:78:09:b6:2b:77:
d9:56:b4:0e:cc:69:53:6e:21:4e:f4:80:9c:f1:2c:
b9:20:4c:6a:f1:9c:16:6b:27:de:23:29:33:89:c2:
10:ec:57:16:1c:34:2e:ed:f0:07:27:cc:52:c2:30:
8c:e8:56:31:be:92:cb:ba:49:9d:0b:f8:2f:ab:52:
36:e4:d9:ef:ba:de:1d:85:dc:e2:42:ff:9d:b5:b7:
74:2a:ec:d7:a9:b2:4d:38:ef:df:61:99:59:b5:c6:
f5:aa:17:30:c2:bc:35:fa:ff:02:1e:d8:ad:35:36:
d5:80:00:32:03:c8:64:27:b9:0f:f2:53:ef:7c:78:
1d:04:01:32:83:33:4c:01:3c:e1:5c:ad:c3:bd:af:
ad:19:2a:bc:31:20:98:c3:fe:01:bb:8c:d1:6f:5d:
43:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:3B:FE:A4:FD:F8:ED:32:70:73:8A:A6:74:57:EC:27:C6:C1:77:B9
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/UTv-pP347TJwc4qmdFfsJ8bBd7k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.143.56.0/24
79.143.58.0/24
185.119.252.0/24
185.122.36.0/24
185.185.251.0/24
Signature Algorithm: sha256WithRSAEncryption
56:78:01:27:bb:3c:9a:08:74:1d:46:63:3b:f2:71:fb:9a:dc:
37:3b:d5:77:61:36:89:54:6c:fb:16:76:8f:31:88:a9:1c:3d:
44:8c:9a:50:0b:95:00:bc:ee:4b:cb:42:91:d4:6d:36:a3:83:
7e:a6:de:e1:c9:08:8b:f5:c6:72:e1:a6:e7:1e:1c:3f:1f:b2:
32:18:c5:49:63:81:19:2f:b5:55:01:be:ad:d8:ec:59:3b:27:
10:c8:c2:64:23:c6:86:68:46:89:a5:e0:b0:b6:0b:60:bc:b5:
65:9e:da:90:9f:b2:95:5e:8f:b0:f1:a6:24:c6:74:2c:10:c4:
7c:4c:cd:78:3e:cb:58:43:fc:bc:a8:33:c3:97:b2:f3:86:b3:
8d:9b:9a:98:3e:8c:a9:26:eb:b1:89:66:63:83:d0:df:13:f1:
1e:e7:e7:54:b2:b6:57:43:16:fd:ff:90:03:7e:8d:41:64:68:
a7:07:1c:2a:4a:59:2c:c6:a6:50:52:b1:5b:66:b8:c5:0a:55:
a2:a9:0d:2c:18:11:87:0b:09:99:83:b3:d8:9e:5f:fb:67:be:
fc:83:2a:c3:c3:1d:64:01:d8:b2:a7:1a:b8:7e:7e:15:a4:78:
0e:af:03:05:62:cc:c7:bd:34:09:a6:36:6e:52:bb:02:31:30:
99:d1:4b:b4
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIEGRrNHjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YzhmZDFhOGFlNTk5NmMxZTU2OTJjMWE4YzQyYmZlOWMzYmE1NzQ1MB4XDTIyMDMx
MjA0MTcwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTEzYmZlYTRmZGY4
ZWQzMjcwNzM4YWE2NzQ1N2VjMjdjNmMxNzdiOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL7Z4mPSvcQcBmv9aqxaVankDCd4A82+L0K0OBw43Q6oCOts
Eqb+WVnHFC6p/A4QpAoBjp8iYpLfk7FoZ2kpnlTf/jjRC3O5rwsDQsY2S2wEY0lH
dfnMly1j4Idqyc/oGzNtaXgJtit32Va0DsxpU24hTvSAnPEsuSBMavGcFmsn3iMp
M4nCEOxXFhw0Lu3wByfMUsIwjOhWMb6Sy7pJnQv4L6tSNuTZ77reHYXc4kL/nbW3
dCrs16myTTjv32GZWbXG9aoXMMK8Nfr/Ah7YrTU21YAAMgPIZCe5D/JT73x4HQQB
MoMzTAE84Vytw72vrRkqvDEgmMP+AbuM0W9dQwcCAwEAAaOCAiEwggIdMB0GA1Ud
DgQWBBRRO/6k/fjtMnBziqZ0V+wnxsF3uTAfBgNVHSMEGDAWgBRsj9GorlmWweVp
LBqMQr/pw7pXRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JJX1JxSzVabHNIbGFTd2FqRUtfNmNPNlYwVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvNDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8x
L1VUdi1wUDM0N1RKd2M0cW1kRmZzSjhiQmQ3ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
NDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8xL2JJX1JxSzVabHNI
bGFTd2FqRUtfNmNPNlYwVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA3
BggrBgEFBQcBBwEB/wQoMCYwJAQCAAEwHgMEAE+POAMEAE+POgMEALl3/AMEALl6
JAMEALm5+zANBgkqhkiG9w0BAQsFAAOCAQEAVngBJ7s8mgh0HUZjO/Jx+5rcNzvV
d2E2iVRs+xZ2jzGIqRw9RIyaUAuVALzuS8tCkdRtNqODfqbe4ckIi/XGcuGm5x4c
Px+yMhjFSWOBGS+1VQG+rdjsWTsnEMjCZCPGhmhGiaXgsLYLYLy1ZZ7akJ+ylV6P
sPGmJMZ0LBDEfEzNeD7LWEP8vKgzw5ey84azjZuamD6MqSbrsYlmY4PQ3xPxHufn
VLK2V0MW/f+QA36NQWRopwccKkpZLMamUFKxW2a4xQpVoqkNLBgRhwsJmYOz2J5f
+2e+/IMqw8MdZAHYsqcauH5+FaR4Dq8DBWLMx700CaY2blK7AjEwmdFLtA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:32 2024 by rpki-client on console-ams.rpki-client.org