Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/7609a0-af3a-4d7d-bb21-7fbde58c4429/1/UPBmWqWnbxrxQo0Pei92V-9PGKU.roa
File: UPBmWqWnbxrxQo0Pei92V-9PGKU.roa (raw, json)
Hash identifier: Zd2SMoUs2iVnEWsxALW5riAqUh6i5aDZV/P/Kqzn++c=
Subject key identifier: 50:F0:66:5A:A5:A7:6F:1A:F1:42:8D:0F:7A:2F:76:57:EF:4F:18:A5
Certificate issuer: /CN=5b9c145403203444959bc2619aa6819a1c5d01d9
Certificate serial: 018326EB6437E3DD3DD8252089273D5379F4
Authority key identifier: 5B:9C:14:54:03:20:34:44:95:9B:C2:61:9A:A6:81:9A:1C:5D:01:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W5wUVAMgNESVm8JhmqaBmhxdAdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/7609a0-af3a-4d7d-bb21-7fbde58c4429/1/UPBmWqWnbxrxQo0Pei92V-9PGKU.roa
Signing time: Sat 10 Sep 2022 10:21:44 +0000
ROA not before: Sat 10 Sep 2022 10:21:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39855
IP address blocks: 185.225.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:26:eb:64:37:e3:dd:3d:d8:25:20:89:27:3d:53:79:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b9c145403203444959bc2619aa6819a1c5d01d9
Validity
Not Before: Sep 10 10:21:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50f0665aa5a76f1af1428d0f7a2f7657ef4f18a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:95:8d:da:10:38:5e:9d:7f:fc:f6:8b:1c:36:
23:df:6d:bc:c7:48:27:6a:2a:14:79:a0:c6:27:66:
d0:4d:36:5b:2d:81:17:ae:9d:52:43:b8:76:e2:4e:
f3:28:23:70:19:61:2a:06:ee:84:90:e6:c9:f8:8d:
93:a5:2f:7f:85:98:f9:8b:d1:92:21:bf:2f:0c:ec:
12:72:be:0d:a8:2d:51:2d:79:94:52:71:8c:9f:c7:
3b:dc:14:eb:0e:cc:a0:ae:35:81:3b:68:f6:a9:7e:
cc:26:41:17:d0:8f:98:5f:16:04:3b:56:dc:8c:2f:
45:99:86:e7:72:92:b3:d2:32:27:83:7a:d2:29:3b:
af:5c:62:f8:be:63:31:a4:9b:9b:5a:81:d8:24:3a:
d7:86:16:2c:9a:e2:b7:36:d1:4a:b7:4f:f0:28:49:
29:bf:40:0d:dc:c1:fa:93:dc:fa:ac:4d:ca:48:9d:
60:72:d9:fb:3e:63:0f:97:09:9d:4d:2c:34:d0:ea:
bf:45:bf:ef:8f:5d:d6:94:71:0c:a6:35:ec:9e:19:
04:39:a0:0f:42:0e:92:28:d4:90:a3:32:e0:07:1c:
78:d1:b1:11:f1:fb:2f:89:69:54:3b:2e:6a:7a:17:
f7:d8:e5:23:32:e6:ef:7b:0b:8a:38:b4:c9:a6:0c:
b0:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:F0:66:5A:A5:A7:6F:1A:F1:42:8D:0F:7A:2F:76:57:EF:4F:18:A5
X509v3 Authority Key Identifier:
keyid:5B:9C:14:54:03:20:34:44:95:9B:C2:61:9A:A6:81:9A:1C:5D:01:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W5wUVAMgNESVm8JhmqaBmhxdAdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/7609a0-af3a-4d7d-bb21-7fbde58c4429/1/UPBmWqWnbxrxQo0Pei92V-9PGKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/7609a0-af3a-4d7d-bb21-7fbde58c4429/1/W5wUVAMgNESVm8JhmqaBmhxdAdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.188.0/24
Signature Algorithm: sha256WithRSAEncryption
22:04:39:ca:7c:b4:49:0b:bf:1a:79:4e:b7:6b:36:5d:48:91:
77:00:e1:47:3a:42:ec:8b:7e:54:be:5c:b1:5a:6f:3f:f6:54:
f4:62:06:59:4c:f4:82:69:fa:92:fc:35:a1:d9:71:31:78:23:
33:73:44:c9:2d:26:37:ed:4a:9d:73:b3:19:53:ea:aa:6b:10:
f2:03:c8:55:1b:74:2f:05:e6:ac:cb:35:a5:96:91:ca:7f:c1:
89:17:3b:8a:00:ab:b4:1a:80:ff:b2:80:9e:24:3f:f9:14:b9:
f0:c9:6a:92:ae:90:4f:3c:2d:2e:3c:54:de:6b:17:00:5d:53:
bc:3e:0c:fe:e5:c2:37:f7:aa:dc:fe:30:9c:e2:ce:7c:fa:b7:
95:e0:4b:4e:07:52:69:7c:b4:0e:5c:3a:94:d7:09:44:e6:04:
42:9d:fa:ad:77:49:9d:0b:fb:99:53:56:f2:a0:59:e0:15:30:
03:a1:2c:2a:68:a6:4c:a3:d4:d2:77:41:dd:93:3a:18:da:72:
aa:05:09:a3:68:78:d8:4e:f2:8f:9e:98:83:f9:80:c6:04:1f:
22:21:18:fe:fc:27:58:17:e7:5e:79:38:fa:4d:c8:89:54:25:
4e:f2:b9:8d:8b:03:f0:ec:86:a8:cd:a9:e7:65:c9:6a:9b:46:
b9:33:d1:66
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYMm62Q349092CUgiSc9U3n0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViOWMxNDU0MDMyMDM0NDQ5NTliYzI2MTlhYTY4MTlhMWM1
ZDAxZDkwHhcNMjIwOTEwMTAyMTQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MGYwNjY1YWE1YTc2ZjFhZjE0MjhkMGY3YTJmNzY1N2VmNGYxOGE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiJWN2hA4Xp1//PaLHDYj3228x0gn
aioUeaDGJ2bQTTZbLYEXrp1SQ7h24k7zKCNwGWEqBu6EkObJ+I2TpS9/hZj5i9GS
Ib8vDOwScr4NqC1RLXmUUnGMn8c73BTrDsygrjWBO2j2qX7MJkEX0I+YXxYEO1bc
jC9FmYbncpKz0jIng3rSKTuvXGL4vmMxpJubWoHYJDrXhhYsmuK3NtFKt0/wKEkp
v0AN3MH6k9z6rE3KSJ1gctn7PmMPlwmdTSw00Oq/Rb/vj13WlHEMpjXsnhkEOaAP
Qg6SKNSQozLgBxx40bER8fsviWlUOy5qehf32OUjMubvewuKOLTJpgywwQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFDwZlqlp28a8UKND3ovdlfvTxilMB8GA1UdIwQY
MBaAFFucFFQDIDRElZvCYZqmgZocXQHZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVzV3VVZBTWdORVNWbThKaG1xYUJtaHhkQWRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi83NjA5YTAtYWYzYS00ZDdkLWJiMjEt
N2ZiZGU1OGM0NDI5LzEvVVBCbVdxV25ieHJ4UW8wUGVpOTJWLTlQR0tVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi83NjA5YTAtYWYzYS00ZDdkLWJiMjEtN2ZiZGU1OGM0NDI5
LzEvVzV3VVZBTWdORVNWbThKaG1xYUJtaHhkQWRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueG8MA0G
CSqGSIb3DQEBCwUAA4IBAQAiBDnKfLRJC78aeU63azZdSJF3AOFHOkLsi35Uvlyx
Wm8/9lT0YgZZTPSCafqS/DWh2XExeCMzc0TJLSY37Uqdc7MZU+qqaxDyA8hVG3Qv
BeasyzWllpHKf8GJFzuKAKu0GoD/soCeJD/5FLnwyWqSrpBPPC0uPFTeaxcAXVO8
Pgz+5cI396rc/jCc4s58+reV4EtOB1JpfLQOXDqU1wlE5gRCnfqtd0mdC/uZU1by
oFngFTADoSwqaKZMo9TSd0HdkzoY2nKqBQmjaHjYTvKPnpiD+YDGBB8iIRj+/CdY
F+deeTj6TciJVCVO8rmNiwPw7IaozannZclqm0a5M9Fm
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:59 2024 by rpki-client on console-ams.rpki-client.org