Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/d2aab0-8363-4b14-9cc2-c8bb8ea39804/1/uYLFWNiC2U7AgaxLVNIB1LwVAfE.roa
File: uYLFWNiC2U7AgaxLVNIB1LwVAfE.roa (raw, json)
Hash identifier: 9eLAedJPlXPX4wzgfC4z1yKynQcKpII1uWgos1lWz8Y=
Subject key identifier: B9:82:C5:58:D8:82:D9:4E:C0:81:AC:4B:54:D2:01:D4:BC:15:01:F1
Certificate issuer: /CN=77b020308865c3360dab19f3a5703341864e9f50
Certificate serial: 018452AEFAE05B18E589663448BF913A5227
Authority key identifier: 77:B0:20:30:88:65:C3:36:0D:AB:19:F3:A5:70:33:41:86:4E:9F:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d7AgMIhlwzYNqxnzpXAzQYZOn1A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/d2aab0-8363-4b14-9cc2-c8bb8ea39804/1/uYLFWNiC2U7AgaxLVNIB1LwVAfE.roa
Signing time: Mon 07 Nov 2022 15:21:49 +0000
ROA not before: Mon 07 Nov 2022 15:21:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8680
IP address blocks: 185.87.144.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:52:ae:fa:e0:5b:18:e5:89:66:34:48:bf:91:3a:52:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77b020308865c3360dab19f3a5703341864e9f50
Validity
Not Before: Nov 7 15:21:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b982c558d882d94ec081ac4b54d201d4bc1501f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:75:a5:b8:ee:35:c2:09:f1:8d:54:69:23:69:
16:80:5f:be:26:be:f3:56:47:a3:7f:e8:15:8a:73:
72:7c:ad:92:3c:e1:66:8d:c2:23:ae:4a:93:55:a8:
05:dc:3e:a2:03:3e:94:01:9a:f9:42:83:e5:f2:69:
ee:56:3b:13:b5:05:77:fc:86:dc:59:da:f0:d5:3b:
50:6c:cc:7b:bd:2c:91:33:e3:37:3a:68:5a:82:72:
9d:01:01:c2:49:b7:5c:57:1c:4a:3a:32:00:c0:b0:
3d:c7:73:fe:ab:1f:bc:77:9d:9a:b2:9e:10:2b:32:
e4:89:b2:4e:c7:28:ed:40:04:b7:e4:8d:1b:af:a1:
84:29:3c:0d:17:5f:86:b2:5a:c6:e7:5e:6d:32:90:
8c:03:e7:61:1b:4e:9d:21:9d:e3:74:6a:28:c2:6f:
b5:92:ab:03:12:83:9b:31:09:12:d2:08:1f:cb:b0:
4b:93:b9:61:4d:4c:4a:74:f3:13:4f:13:52:c9:d0:
59:20:c9:41:a7:6e:ad:9c:bc:a1:cd:0a:bd:44:a2:
05:7c:f3:6d:04:b2:dc:09:6e:39:a2:7b:33:69:6a:
65:54:01:25:4d:1e:24:67:3b:fa:65:07:f6:93:2c:
7e:0c:51:c6:fb:67:7b:68:ef:31:2c:c4:eb:5e:79:
9b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:82:C5:58:D8:82:D9:4E:C0:81:AC:4B:54:D2:01:D4:BC:15:01:F1
X509v3 Authority Key Identifier:
keyid:77:B0:20:30:88:65:C3:36:0D:AB:19:F3:A5:70:33:41:86:4E:9F:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7AgMIhlwzYNqxnzpXAzQYZOn1A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d2aab0-8363-4b14-9cc2-c8bb8ea39804/1/uYLFWNiC2U7AgaxLVNIB1LwVAfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d2aab0-8363-4b14-9cc2-c8bb8ea39804/1/d7AgMIhlwzYNqxnzpXAzQYZOn1A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.87.144.0/22
Signature Algorithm: sha256WithRSAEncryption
95:a2:24:73:d6:b8:95:84:a1:4e:ed:62:a2:84:b9:ab:a9:74:
78:52:7f:35:fd:08:ba:45:05:84:3a:47:5e:82:e9:84:b6:7e:
46:35:cb:7a:1c:9a:b3:40:a1:ae:4a:bb:ef:aa:1a:33:b9:65:
54:7f:9e:3f:11:d0:cf:a7:02:6f:89:4e:e9:b2:d7:b7:36:67:
f6:fe:e5:bc:d1:6c:45:a6:b8:cb:31:27:08:e8:fc:bc:01:81:
91:75:44:32:ec:82:1e:0f:ce:82:3b:44:c9:14:b1:e1:57:a8:
79:ae:d8:86:77:74:12:f3:05:7c:ee:c5:a3:b2:2c:05:9d:ba:
c8:a7:d6:4f:72:39:cc:ca:7e:72:1d:89:5c:3e:91:2f:ed:4f:
51:3d:9d:38:98:ee:3f:24:a1:43:fc:64:1b:59:c8:ca:ab:ff:
68:38:04:7a:cd:dd:7f:ed:58:d5:79:9d:46:af:06:6f:34:5f:
45:3a:d4:41:90:f9:fd:62:a4:ef:0e:6b:df:b7:ed:01:f4:f3:
97:95:3a:27:e7:e5:ba:bd:66:2c:db:72:be:46:aa:6a:b2:c9:
8b:4b:db:55:db:ee:cd:23:c3:e4:e1:3c:60:d3:82:85:00:f6:
f6:68:6c:77:25:c1:d9:65:c9:4f:be:51:8e:2a:67:f8:3a:1a:
56:a3:5a:b1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRSrvrgWxjliWY0SL+ROlInMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3YjAyMDMwODg2NWMzMzYwZGFiMTlmM2E1NzAzMzQxODY0
ZTlmNTAwHhcNMjIxMTA3MTUyMTQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOTgyYzU1OGQ4ODJkOTRlYzA4MWFjNGI1NGQyMDFkNGJjMTUwMWYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHWluO41wgnxjVRpI2kWgF++Jr7z
Vkejf+gVinNyfK2SPOFmjcIjrkqTVagF3D6iAz6UAZr5QoPl8mnuVjsTtQV3/Ibc
Wdrw1TtQbMx7vSyRM+M3OmhagnKdAQHCSbdcVxxKOjIAwLA9x3P+qx+8d52asp4Q
KzLkibJOxyjtQAS35I0br6GEKTwNF1+GslrG515tMpCMA+dhG06dIZ3jdGoowm+1
kqsDEoObMQkS0ggfy7BLk7lhTUxKdPMTTxNSydBZIMlBp26tnLyhzQq9RKIFfPNt
BLLcCW45onszaWplVAElTR4kZzv6ZQf2kyx+DFHG+2d7aO8xLMTrXnmbHwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLmCxVjYgtlOwIGsS1TSAdS8FQHxMB8GA1UdIwQY
MBaAFHewIDCIZcM2DasZ86VwM0GGTp9QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDdBZ01JaGx3ellOcXhuenBYQXpRWVpPbjFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9kMmFhYjAtODM2My00YjE0LTljYzIt
YzhiYjhlYTM5ODA0LzEvdVlMRldOaUMyVTdBZ2F4TFZOSUIxTHdWQWZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOC9kMmFhYjAtODM2My00YjE0LTljYzItYzhiYjhlYTM5ODA0
LzEvZDdBZ01JaGx3ellOcXhuenBYQXpRWVpPbjFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuVeQMA0G
CSqGSIb3DQEBCwUAA4IBAQCVoiRz1riVhKFO7WKihLmrqXR4Un81/Qi6RQWEOkde
gumEtn5GNct6HJqzQKGuSrvvqhozuWVUf54/EdDPpwJviU7pste3Nmf2/uW80WxF
prjLMScI6Py8AYGRdUQy7IIeD86CO0TJFLHhV6h5rtiGd3QS8wV87sWjsiwFnbrI
p9ZPcjnMyn5yHYlcPpEv7U9RPZ04mO4/JKFD/GQbWcjKq/9oOAR6zd1/7VjVeZ1G
rwZvNF9FOtRBkPn9YqTvDmvft+0B9POXlTon5+W6vWYs23K+RqpqssmLS9tV2+7N
I8Pk4Txg04KFAPb2aGx3JcHZZclPvlGOKmf4OhpWo1qx
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:29 2024 by rpki-client on console-ams.rpki-client.org