Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/UYlXntTZSBh6fmG2zsN4BYYVzQI.roa
File: UYlXntTZSBh6fmG2zsN4BYYVzQI.roa (raw, json)
Hash identifier: Wd2VaP3zRG1nfXHFSVCEt//ztjFW8EOnxsdvn8mGF1s=
Subject key identifier: 51:89:57:9E:D4:D9:48:18:7A:7E:61:B6:CE:C3:78:05:86:15:CD:02
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 01852B6C73D8A3C821ADC3F63D3A284207F4
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/UYlXntTZSBh6fmG2zsN4BYYVzQI.roa
Signing time: Mon 19 Dec 2022 17:26:45 +0000
ROA not before: Mon 19 Dec 2022 17:26:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 17447
IP address blocks: 85.133.202.0/24 maxlen: 24
85.133.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2b:6c:73:d8:a3:c8:21:ad:c3:f6:3d:3a:28:42:07:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Dec 19 17:26:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5189579ed4d948187a7e61b6cec378058615cd02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:0c:e8:6a:0d:17:bb:6c:66:e2:e9:4f:d6:fb:
a4:40:87:bd:34:ec:1b:5d:c2:b8:5d:94:fc:e3:c4:
1e:88:16:46:c2:e4:69:38:b2:a4:5d:ca:46:70:f2:
44:db:d0:3b:9f:e0:08:6c:b0:05:31:10:53:27:6f:
b8:3f:69:ed:b8:3c:83:60:02:17:0c:bd:c4:56:11:
93:4a:9f:28:0a:bf:f2:1a:b8:c3:90:10:3c:d6:2d:
17:a8:0a:4f:17:96:30:07:f8:af:11:c2:14:f1:fd:
be:db:c0:32:49:46:50:23:16:0e:d3:19:dd:c1:fd:
a0:a0:3b:11:d0:a0:44:97:f9:3a:b4:1c:64:57:a0:
94:33:3a:f3:cb:a0:42:e7:d7:c5:32:e4:83:db:98:
b9:ee:14:46:2c:54:c7:9d:a0:af:3e:42:78:5e:09:
f7:90:f2:98:2b:e1:25:1b:8d:ed:7e:36:0f:62:e7:
ed:5a:80:f7:87:ff:54:ea:ea:3e:d2:e1:55:b6:98:
8b:41:09:50:29:61:51:df:e2:ea:e8:05:10:86:a8:
1a:de:71:de:d1:6a:63:34:1d:27:5f:8d:39:0e:5f:
11:73:20:7e:58:5a:9c:b5:3e:ed:db:0b:da:c4:bc:
d6:1d:04:eb:c7:24:f3:8e:c1:d2:0e:87:d3:28:94:
5d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:89:57:9E:D4:D9:48:18:7A:7E:61:B6:CE:C3:78:05:86:15:CD:02
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/UYlXntTZSBh6fmG2zsN4BYYVzQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.156.0/24
85.133.202.0/24
Signature Algorithm: sha256WithRSAEncryption
15:78:4f:34:02:0b:ba:cb:0c:fe:62:01:8d:09:e0:5d:a0:3e:
c6:68:99:6e:dc:1c:82:1c:87:72:01:34:88:91:e8:b8:ec:11:
85:99:27:86:5b:e7:33:68:6c:6b:40:f8:f3:47:07:83:a2:6d:
8c:3a:e8:1f:34:92:ae:cf:af:87:01:9b:8a:13:a6:da:e5:95:
75:81:62:f3:74:8c:49:12:59:08:ad:a6:b5:a2:7a:03:ac:a3:
ef:cb:9a:08:b3:b8:47:6c:30:97:ad:dd:c4:80:24:ba:1c:af:
99:79:a2:51:41:8e:1e:ef:08:b9:fa:4d:ac:8f:03:b6:26:18:
5a:df:33:06:fd:05:40:45:70:34:63:4d:61:b7:bb:d5:d3:46:
e2:d3:f5:86:75:48:dd:21:e7:ef:2f:2e:6f:01:79:f0:f8:36:
1d:cf:45:4f:0e:8c:66:a3:9c:b0:fc:bb:f3:ba:1f:1f:5e:f8:
c5:42:9f:39:27:0c:dc:64:07:ef:73:6f:5f:56:14:6b:d6:a3:
cd:be:21:9f:46:cb:f3:b3:94:b5:8d:1d:48:65:f9:b4:26:21:
0b:34:35:de:18:53:d0:17:95:bd:6b:c2:23:ef:eb:50:4d:94:
ca:2b:8e:a8:d7:ca:4f:27:d5:d5:ad:fe:6d:bc:3b:dd:b5:82:
d9:22:8f:98
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYUrbHPYo8ghrcP2PTooQgf0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5
NDY3MDIwHhcNMjIxMjE5MTcyNjQ1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTg5NTc5ZWQ0ZDk0ODE4N2E3ZTYxYjZjZWMzNzgwNTg2MTVjZDAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlgzoag0Xu2xm4ulP1vukQIe9NOwb
XcK4XZT848QeiBZGwuRpOLKkXcpGcPJE29A7n+AIbLAFMRBTJ2+4P2ntuDyDYAIX
DL3EVhGTSp8oCr/yGrjDkBA81i0XqApPF5YwB/ivEcIU8f2+28AySUZQIxYO0xnd
wf2goDsR0KBEl/k6tBxkV6CUMzrzy6BC59fFMuSD25i57hRGLFTHnaCvPkJ4Xgn3
kPKYK+ElG43tfjYPYuftWoD3h/9U6uo+0uFVtpiLQQlQKWFR3+Lq6AUQhqga3nHe
0WpjNB0nX405Dl8RcyB+WFqctT7t2wvaxLzWHQTrxyTzjsHSDofTKJRd0QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFGJV57U2UgYen5hts7DeAWGFc0CMB8GA1UdIwQY
MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt
NWQxZmE2NmMzNjNiLzEvVVlsWG50VFpTQmg2Zm1HMnpzTjRCWVlWelFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi
LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVYWcAwQA
VYXKMA0GCSqGSIb3DQEBCwUAA4IBAQAVeE80Agu6ywz+YgGNCeBdoD7GaJlu3ByC
HIdyATSIkei47BGFmSeGW+czaGxrQPjzRweDom2MOugfNJKuz6+HAZuKE6ba5ZV1
gWLzdIxJElkIraa1onoDrKPvy5oIs7hHbDCXrd3EgCS6HK+ZeaJRQY4e7wi5+k2s
jwO2Jhha3zMG/QVARXA0Y01ht7vV00bi0/WGdUjdIefvLy5vAXnw+DYdz0VPDoxm
o5yw/Lvzuh8fXvjFQp85JwzcZAfvc29fVhRr1qPNviGfRsvzs5S1jR1IZfm0JiEL
NDXeGFPQF5W9a8Ij7+tQTZTKK46o18pPJ9XVrf5tvDvdtYLZIo+Y
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:05 2023 by rpki-client on console-ams.rpki-client.org