Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/9dc933-5c0d-4461-a45d-8f7d5691c1be/1/uKwjGtIcBGp3ZB02vTq67vYi7rs.roa
File: uKwjGtIcBGp3ZB02vTq67vYi7rs.roa (raw, json)
Hash identifier: VovKLHBFuM7kmsc4m2wzQaGbtpfWgmQpdOxbJqfEtMc=
Subject key identifier: B8:AC:23:1A:D2:1C:04:6A:77:64:1D:36:BD:3A:BA:EE:F6:22:EE:BB
Certificate issuer: /CN=fb782b78f20a6e4b70643052bd1a40af15a56338
Certificate serial: 0553B190
Authority key identifier: FB:78:2B:78:F2:0A:6E:4B:70:64:30:52:BD:1A:40:AF:15:A5:63:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-3grePIKbktwZDBSvRpArxWlYzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/9dc933-5c0d-4461-a45d-8f7d5691c1be/1/uKwjGtIcBGp3ZB02vTq67vYi7rs.roa
Signing time: Thu 24 Feb 2022 07:17:14 +0000
ROA not before: Thu 24 Feb 2022 07:17:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209689
IP address blocks: 212.87.210.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89371024 (0x553b190)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb782b78f20a6e4b70643052bd1a40af15a56338
Validity
Not Before: Feb 24 07:17:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8ac231ad21c046a77641d36bd3abaeef622eebb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e9:88:4b:8c:f5:03:07:90:72:ae:1b:de:24:
55:97:ec:2e:17:8b:15:5a:f1:87:00:1c:44:c1:7a:
99:4c:0d:bf:6c:c4:fb:4d:29:a7:ed:b8:86:56:76:
50:99:da:6e:9d:9a:50:e4:da:2e:15:ee:43:80:aa:
32:9c:cb:15:31:4b:00:c6:46:31:99:b9:cd:48:98:
ce:74:94:98:44:33:c7:b3:99:44:4b:77:f8:6a:3e:
d3:44:c6:9f:32:a9:3b:29:51:56:3a:4a:4a:ba:50:
6b:37:e9:84:af:14:b3:15:03:c2:58:90:ad:30:7e:
0b:bb:3b:3b:0e:1d:51:da:fb:93:69:5a:64:98:0e:
84:40:99:2c:e9:0b:c3:4f:df:44:5e:58:de:1e:07:
9b:b4:34:4e:83:f3:bb:7d:14:52:7c:66:04:b1:ce:
5b:91:0d:9f:65:d9:ec:35:53:49:8f:95:bd:ba:db:
04:1a:46:d0:c4:0f:4b:29:6b:60:5a:24:d3:9c:43:
5c:53:c9:d5:8d:6b:18:8c:49:d9:9e:f7:22:c3:fd:
b5:3c:a8:ec:65:5b:cc:14:dd:07:e8:4b:a3:97:64:
ed:48:df:9f:34:b9:d0:42:96:9e:9e:9f:58:5a:6b:
f6:58:ef:06:87:ec:e8:18:6d:15:36:80:8b:88:84:
e3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:AC:23:1A:D2:1C:04:6A:77:64:1D:36:BD:3A:BA:EE:F6:22:EE:BB
X509v3 Authority Key Identifier:
keyid:FB:78:2B:78:F2:0A:6E:4B:70:64:30:52:BD:1A:40:AF:15:A5:63:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-3grePIKbktwZDBSvRpArxWlYzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/9dc933-5c0d-4461-a45d-8f7d5691c1be/1/uKwjGtIcBGp3ZB02vTq67vYi7rs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/9dc933-5c0d-4461-a45d-8f7d5691c1be/1/1-3grePIKbktwZDBSvRpArxWlYzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.87.210.0/23
Signature Algorithm: sha256WithRSAEncryption
39:16:63:62:e7:5d:db:d7:bf:0a:b6:ef:0b:e8:9d:49:9b:48:
74:ce:2d:6e:aa:41:96:aa:61:5e:b8:48:2a:79:d3:af:93:cf:
c0:9f:6b:3b:4b:3c:5c:27:b0:be:13:03:f1:83:10:36:3e:68:
b7:f0:a4:ab:99:b4:03:be:42:d0:e1:3b:91:a1:97:20:c7:56:
1d:c5:bf:84:56:5a:1f:79:14:5c:81:a1:90:4b:a8:d8:5f:12:
5f:66:70:94:2a:ad:80:f6:a5:4c:90:0f:55:05:8f:75:51:31:
f4:87:b1:e1:8e:aa:e6:e4:de:3e:78:45:48:85:5c:6e:fc:b8:
47:58:29:86:9a:e1:42:94:89:1d:11:05:d9:bd:9c:8f:35:0c:
1a:e5:60:29:92:06:88:d0:6d:ac:72:c9:9e:dd:36:35:1f:7b:
aa:1d:81:b6:8f:ed:60:06:9b:84:f0:52:4c:3c:a5:d1:82:03:
4c:4e:f0:c6:79:ec:37:9e:61:b6:35:38:1d:58:70:e8:07:e0:
d4:48:8c:dd:49:f0:2b:f1:33:ad:49:42:ac:99:21:88:b6:d5:
93:9f:0d:84:78:a3:9d:4b:7f:ad:63:31:3a:31:e3:20:bb:d4:
53:b0:f0:7e:cf:7f:bb:a1:ca:28:f9:78:43:64:c5:e6:16:25:
97:c0:37:f0
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEBVOxkDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
Yjc4MmI3OGYyMGE2ZTRiNzA2NDMwNTJiZDFhNDBhZjE1YTU2MzM4MB4XDTIyMDIy
NDA3MTcxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjhhYzIzMWFkMjFj
MDQ2YTc3NjQxZDM2YmQzYWJhZWVmNjIyZWViYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKXpiEuM9QMHkHKuG94kVZfsLheLFVrxhwAcRMF6mUwNv2zE
+00pp+24hlZ2UJnabp2aUOTaLhXuQ4CqMpzLFTFLAMZGMZm5zUiYznSUmEQzx7OZ
REt3+Go+00TGnzKpOylRVjpKSrpQazfphK8UsxUDwliQrTB+C7s7Ow4dUdr7k2la
ZJgOhECZLOkLw0/fRF5Y3h4Hm7Q0ToPzu30UUnxmBLHOW5ENn2XZ7DVTSY+Vvbrb
BBpG0MQPSylrYFok05xDXFPJ1Y1rGIxJ2Z73IsP9tTyo7GVbzBTdB+hLo5dk7Ujf
nzS50EKWnp6fWFpr9ljvBofs6BhtFTaAi4iE4+8CAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBS4rCMa0hwEandkHTa9Orru9iLuuzAfBgNVHSMEGDAWgBT7eCt48gpuS3Bk
MFK9GkCvFaVjODAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtM2dyZVBJS2JrdHdaREJTdlJwQXJ4V2xZemcuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxUL2UzLzlkYzkzMy01YzBkLTQ0NjEtYTQ1ZC04ZjdkNTY5MWMxYmUv
MS91S3dqR3RJY0JHcDNaQjAydlRxNjd2WWk3cnMucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Uz
LzlkYzkzMy01YzBkLTQ0NjEtYTQ1ZC04ZjdkNTY5MWMxYmUvMS8xLTNncmVQSUti
a3R3WkRCU3ZScEFyeFdsWXpnLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB1FfSMA0GCSqGSIb3DQEBCwUA
A4IBAQA5FmNi513b178Ktu8L6J1Jm0h0zi1uqkGWqmFeuEgqedOvk8/An2s7Szxc
J7C+EwPxgxA2Pmi38KSrmbQDvkLQ4TuRoZcgx1Ydxb+EVlofeRRcgaGQS6jYXxJf
ZnCUKq2A9qVMkA9VBY91UTH0h7Hhjqrm5N4+eEVIhVxu/LhHWCmGmuFClIkdEQXZ
vZyPNQwa5WApkgaI0G2scsme3TY1H3uqHYG2j+1gBpuE8FJMPKXRggNMTvDGeew3
nmG2NTgdWHDoB+DUSIzdSfAr8TOtSUKsmSGIttWTnw2EeKOdS3+tYzE6MeMgu9RT
sPB+z3+7ocoo+XhDZMXmFiWXwDfw
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:19 2024 by rpki-client on console-fra.rpki-client.org