Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/UfvxJ3doJfFAxL1DlHpWRkjsvSc.roa
File: UfvxJ3doJfFAxL1DlHpWRkjsvSc.roa (raw, json)
Hash identifier: LYpsc0mW9kgXX7uroymCz0I8yP0SSvrmdy0UgNY+RSs=
Subject key identifier: 51:FB:F1:27:77:68:25:F1:40:C4:BD:43:94:7A:56:46:48:EC:BD:27
Certificate issuer: /CN=dee623e2aff7b03afeb94260348c1633b54d9056
Certificate serial: 0BD0FEB3
Authority key identifier: DE:E6:23:E2:AF:F7:B0:3A:FE:B9:42:60:34:8C:16:33:B5:4D:90:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3uYj4q_3sDr-uUJgNIwWM7VNkFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/UfvxJ3doJfFAxL1DlHpWRkjsvSc.roa
Signing time: Sun 23 Jan 2022 15:02:22 +0000
ROA not before: Sun 23 Jan 2022 15:02:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205371
IP address blocks: 194.127.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 198246067 (0xbd0feb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dee623e2aff7b03afeb94260348c1633b54d9056
Validity
Not Before: Jan 23 15:02:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51fbf127776825f140c4bd43947a564648ecbd27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:cd:fd:c8:2a:2b:06:89:5d:e2:0e:4b:63:58:
55:62:9c:28:f4:a8:19:1f:89:ec:62:0e:6b:71:4f:
59:ae:1b:13:ec:32:ff:1c:ea:7c:c0:87:c4:5a:fb:
a3:e0:9a:fe:17:a7:da:4d:12:a8:de:e4:c6:b0:09:
a3:1f:ff:13:9d:0b:3f:be:84:b7:3b:e4:45:15:9d:
4c:7d:92:41:b5:5a:c5:ac:e1:8f:73:c0:33:b2:c8:
fd:34:00:72:8f:ea:ee:77:bd:2c:54:71:12:5d:76:
ed:df:a7:12:22:e3:c8:f5:3f:ae:cf:84:7d:da:a6:
be:8d:95:3a:66:53:db:5d:fd:81:5b:f6:ee:0e:e2:
69:87:aa:4a:33:66:92:e0:64:1f:68:22:be:72:33:
79:2d:8a:0f:a6:b9:c7:af:01:ed:02:ae:63:cc:43:
f5:7c:57:76:5e:01:2c:c9:35:c4:d2:46:e8:63:9c:
6f:11:06:26:3a:aa:3b:0f:8a:40:88:31:22:96:18:
06:fb:32:00:36:90:a7:f1:02:5d:55:a9:fa:b4:16:
99:26:e7:d1:5b:58:eb:e9:63:02:c4:05:6b:52:04:
2e:48:6d:59:8a:8e:d4:06:98:4a:86:2a:b3:2a:d7:
e3:be:10:77:9f:a0:0d:a5:67:fb:96:9b:6e:8d:a9:
94:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:FB:F1:27:77:68:25:F1:40:C4:BD:43:94:7A:56:46:48:EC:BD:27
X509v3 Authority Key Identifier:
keyid:DE:E6:23:E2:AF:F7:B0:3A:FE:B9:42:60:34:8C:16:33:B5:4D:90:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3uYj4q_3sDr-uUJgNIwWM7VNkFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/UfvxJ3doJfFAxL1DlHpWRkjsvSc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/3uYj4q_3sDr-uUJgNIwWM7VNkFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.127.111.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:da:69:31:ec:83:82:0e:5e:7b:e6:ba:d1:81:50:12:5e:9b:
85:21:82:3d:32:4b:85:6e:7c:93:57:ae:95:57:b0:e7:fe:cb:
82:a6:19:a1:d2:51:49:24:53:1f:34:40:f2:1a:c3:8c:d4:50:
5e:5e:20:48:09:6e:ae:83:44:8e:53:3d:95:c3:cc:f4:8d:89:
ae:8d:59:fa:6d:12:98:05:6a:11:e4:6f:42:5e:23:ae:23:84:
37:ea:0e:04:bc:59:be:fc:b6:88:90:a5:50:90:88:0d:3f:7e:
c0:e0:db:67:e8:12:58:65:d5:b5:e3:09:1b:00:39:0b:bd:0b:
9a:af:c6:34:70:5d:3c:c0:09:d8:02:57:03:48:16:71:d7:59:
3f:ac:59:cc:f7:ca:2a:72:11:c4:14:e5:99:b4:6b:c3:89:69:
bc:49:61:77:9a:e6:e4:18:27:0e:4b:4c:4a:7e:49:4f:f5:0d:
1f:08:dd:14:1e:35:33:b9:d0:66:f4:e9:b3:fe:ec:34:f1:77:
54:4c:ee:26:b6:79:6c:75:cd:e6:ff:c7:04:b1:18:3c:56:66:
73:4a:44:36:43:44:99:1e:38:6f:d9:58:51:7d:cb:14:8b:e5:
e6:5d:4d:4f:55:d7:72:4e:8a:32:74:89:71:c9:55:ac:3d:ba:
90:23:c5:a8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEC9D+szANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
ZWU2MjNlMmFmZjdiMDNhZmViOTQyNjAzNDhjMTYzM2I1NGQ5MDU2MB4XDTIyMDEy
MzE1MDIyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTFmYmYxMjc3NzY4
MjVmMTQwYzRiZDQzOTQ3YTU2NDY0OGVjYmQyNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMTN/cgqKwaJXeIOS2NYVWKcKPSoGR+J7GIOa3FPWa4bE+wy
/xzqfMCHxFr7o+Ca/hen2k0SqN7kxrAJox//E50LP76EtzvkRRWdTH2SQbVaxazh
j3PAM7LI/TQAco/q7ne9LFRxEl127d+nEiLjyPU/rs+Efdqmvo2VOmZT2139gVv2
7g7iaYeqSjNmkuBkH2givnIzeS2KD6a5x68B7QKuY8xD9XxXdl4BLMk1xNJG6GOc
bxEGJjqqOw+KQIgxIpYYBvsyADaQp/ECXVWp+rQWmSbn0VtY6+ljAsQFa1IELkht
WYqO1AaYSoYqsyrX474Qd5+gDaVn+5abbo2plCUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRR+/End2gl8UDEvUOUelZGSOy9JzAfBgNVHSMEGDAWgBTe5iPir/ewOv65
QmA0jBYztU2QVjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzN1WWo0cV8zc0RyLXVVSmdOSXdXTTdWTmtGWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGQvOTg3MWZmLTNmMjYtNGI5NC1hNDY0LTZjYzFkM2VhODMyZS8x
L1VmdnhKM2RvSmZGQXhMMURsSHBXUmtqc3ZTYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGQv
OTg3MWZmLTNmMjYtNGI5NC1hNDY0LTZjYzFkM2VhODMyZS8xLzN1WWo0cV8zc0Ry
LXVVSmdOSXdXTTdWTmtGWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMJ/bzANBgkqhkiG9w0BAQsFAAOC
AQEAHtppMeyDgg5ee+a60YFQEl6bhSGCPTJLhW58k1eulVew5/7LgqYZodJRSSRT
HzRA8hrDjNRQXl4gSAluroNEjlM9lcPM9I2Jro1Z+m0SmAVqEeRvQl4jriOEN+oO
BLxZvvy2iJClUJCIDT9+wODbZ+gSWGXVteMJGwA5C70Lmq/GNHBdPMAJ2AJXA0gW
cddZP6xZzPfKKnIRxBTlmbRrw4lpvElhd5rm5BgnDktMSn5JT/UNHwjdFB41M7nQ
ZvTps/7sNPF3VEzuJrZ5bHXN5v/HBLEYPFZmc0pENkNEmR44b9lYUX3LFIvl5l1N
T1XXck6KMnSJcclVrD26kCPFqA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:59 2024 by rpki-client on console-ams.rpki-client.org