Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/uEfsfTLbl4K9AA3_95i0sCuUc2E.roa
File: uEfsfTLbl4K9AA3_95i0sCuUc2E.roa (raw, json)
Hash identifier: uw/+fSanJgHqPh6HXGQVXbFHBKXmAe6G1HxfAofLceo=
Subject key identifier: B8:47:EC:7D:32:DB:97:82:BD:00:0D:FF:F7:98:B4:B0:2B:94:73:61
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17EA34C2
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/uEfsfTLbl4K9AA3_95i0sCuUc2E.roa
Signing time: Sat 01 Jan 2022 04:54:45 +0000
ROA not before: Sat 01 Jan 2022 04:54:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209609
IP address blocks: 185.236.81.0/24 maxlen: 24
147.78.223.0/24 maxlen: 32
2a06:82c4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401224898 (0x17ea34c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b847ec7d32db9782bd000dfff798b4b02b947361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:92:43:8d:e7:bb:36:d1:06:f9:8d:25:c5:a5:
5b:1f:99:3c:be:5a:00:06:3d:eb:25:25:1f:b5:68:
05:b8:38:25:67:54:28:70:0e:62:83:5d:eb:d5:1a:
61:b4:89:19:1f:7a:b0:54:48:55:39:0a:ed:1e:90:
b0:13:e2:8b:12:38:23:fc:d3:22:0b:a0:36:3f:d8:
9a:da:05:1b:1f:20:7a:8a:2f:45:a1:4a:7b:76:74:
96:91:83:08:7f:b7:21:ff:0d:98:40:04:00:50:a7:
69:90:6a:f7:c0:e0:3b:61:3f:3e:7a:02:66:bb:37:
49:30:02:51:1c:d4:63:ca:ef:ee:e6:c6:0a:3b:16:
85:81:d6:b4:ec:6a:68:1a:74:b6:4e:a6:ed:19:74:
3c:8a:85:72:2d:8c:3a:50:6a:6d:25:7b:17:54:f4:
ea:9f:1a:f4:ab:44:69:b4:ce:57:69:98:db:e2:13:
b5:5c:3a:4e:6c:19:82:b7:23:91:a1:96:e3:06:14:
f3:1f:7d:b8:4e:03:e2:c6:86:74:5d:e9:e2:50:32:
68:37:a2:17:1f:9a:d9:a0:78:c2:56:b4:a1:b8:5f:
21:fd:04:86:e9:e3:f3:90:76:2d:ba:0a:5d:b1:a0:
87:a1:82:5e:f8:6f:f4:0a:48:0b:d7:3c:08:8b:e9:
96:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:47:EC:7D:32:DB:97:82:BD:00:0D:FF:F7:98:B4:B0:2B:94:73:61
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/uEfsfTLbl4K9AA3_95i0sCuUc2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.223.0/24
185.236.81.0/24
IPv6:
2a06:82c4::/48
Signature Algorithm: sha256WithRSAEncryption
bb:a2:55:16:b6:34:46:32:f7:f0:d6:55:8e:c5:de:33:bb:74:
2f:b0:44:82:9e:b7:34:6b:62:be:71:68:eb:14:83:1c:ca:c5:
fc:17:c8:e9:1f:54:b1:a8:aa:2d:83:e4:ce:4f:5e:99:70:8c:
d0:30:44:19:98:3c:36:b4:52:6a:bc:24:08:32:77:cf:15:26:
a9:66:a0:5f:87:ae:e0:9d:c7:47:39:7d:0e:17:be:1f:b8:9f:
12:c8:be:8f:39:f3:e6:9b:55:45:38:a6:34:f0:97:74:b3:b3:
d7:de:ae:4b:99:24:f9:ff:e5:57:b6:f0:de:97:ab:4b:ad:e3:
1a:19:96:08:4f:f7:fb:0e:8c:c5:be:47:5e:0d:bf:70:3a:59:
60:67:63:6d:06:c4:fe:be:47:d4:09:87:87:1e:30:3d:49:46:
7e:d0:e7:ec:34:44:f4:bc:f0:88:c0:36:d6:2b:ba:9d:75:97:
6f:24:f8:30:ad:38:2d:dd:3a:7e:69:7f:78:de:ca:b4:c4:e1:
0a:c8:a8:09:e3:47:dc:4a:b7:9c:4d:37:a9:1d:25:1b:73:6f:
fb:71:00:7d:80:2a:52:52:69:8b:4c:96:77:b2:00:83:bd:15:
d4:a0:c8:b7:e4:90:ad:d9:59:dd:fc:e2:43:7c:2c:a6:cb:69:
b7:bb:4f:b4
-----BEGIN CERTIFICATE-----
MIIFBjCCA+6gAwIBAgIEF+o0wjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YzhmZDFhOGFlNTk5NmMxZTU2OTJjMWE4YzQyYmZlOWMzYmE1NzQ1MB4XDTIyMDEw
MTA0NTQ0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjg0N2VjN2QzMmRi
OTc4MmJkMDAwZGZmZjc5OGI0YjAyYjk0NzM2MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALCSQ43nuzbRBvmNJcWlWx+ZPL5aAAY96yUlH7VoBbg4JWdU
KHAOYoNd69UaYbSJGR96sFRIVTkK7R6QsBPiixI4I/zTIgugNj/YmtoFGx8geoov
RaFKe3Z0lpGDCH+3If8NmEAEAFCnaZBq98DgO2E/PnoCZrs3STACURzUY8rv7ubG
CjsWhYHWtOxqaBp0tk6m7Rl0PIqFci2MOlBqbSV7F1T06p8a9KtEabTOV2mY2+IT
tVw6TmwZgrcjkaGW4wYU8x99uE4D4saGdF3p4lAyaDeiFx+a2aB4wla0obhfIf0E
hunj85B2LboKXbGgh6GCXvhv9ApIC9c8CIvplj8CAwEAAaOCAiAwggIcMB0GA1Ud
DgQWBBS4R+x9MtuXgr0ADf/3mLSwK5RzYTAfBgNVHSMEGDAWgBRsj9GorlmWweVp
LBqMQr/pw7pXRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JJX1JxSzVabHNIbGFTd2FqRUtfNmNPNlYwVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvNDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8x
L3VFZnNmVExibDRLOUFBM185NWkwc0N1VWMyRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
NDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8xL2JJX1JxSzVabHNI
bGFTd2FqRUtfNmNPNlYwVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA2
BggrBgEFBQcBBwEB/wQnMCUwEgQCAAEwDAMEAJNO3wMEALnsUTAPBAIAAjAJAwcA
KgaCxAAAMA0GCSqGSIb3DQEBCwUAA4IBAQC7olUWtjRGMvfw1lWOxd4zu3QvsESC
nrc0a2K+cWjrFIMcysX8F8jpH1SxqKotg+TOT16ZcIzQMEQZmDw2tFJqvCQIMnfP
FSapZqBfh67gncdHOX0OF74fuJ8SyL6POfPmm1VFOKY08Jd0s7PX3q5LmST5/+VX
tvDel6tLreMaGZYIT/f7DozFvkdeDb9wOllgZ2NtBsT+vkfUCYeHHjA9SUZ+0Ofs
NET0vPCIwDbWK7qddZdvJPgwrTgt3Tp+aX943sq0xOEKyKgJ40fcSrecTTepHSUb
c2/7cQB9gCpSUmmLTJZ3sgCDvRXUoMi35JCt2Vnd/OJDfCymy2m3u0+0
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:33 2024 by rpki-client on console-ams.rpki-client.org