Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/UA1J3wiWCuWliRZh7IU8p1vPZWQ.roa
File: UA1J3wiWCuWliRZh7IU8p1vPZWQ.roa (raw, json)
Hash identifier: OVm+eVrhGsnEj7UMsgfiZpXmjfySF9nlOjfQMvl6oMo=
Subject key identifier: 50:0D:49:DF:08:96:0A:E5:A5:89:16:61:EC:85:3C:A7:5B:CF:65:64
Certificate issuer: /CN=8bbb538fc4f8f1984100640dd8435766a6206723
Certificate serial: 09E5B7BA
Authority key identifier: 8B:BB:53:8F:C4:F8:F1:98:41:00:64:0D:D8:43:57:66:A6:20:67:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i7tTj8T48ZhBAGQN2ENXZqYgZyM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/UA1J3wiWCuWliRZh7IU8p1vPZWQ.roa
Signing time: Sat 01 Jan 2022 08:55:09 +0000
ROA not before: Sat 01 Jan 2022 08:55:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60295
IP address blocks: 195.20.216.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166049722 (0x9e5b7ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bbb538fc4f8f1984100640dd8435766a6206723
Validity
Not Before: Jan 1 08:55:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=500d49df08960ae5a5891661ec853ca75bcf6564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:65:3c:b4:93:ad:f8:93:da:89:ed:04:a6:2a:
dd:76:6c:6b:93:52:2c:63:ed:c2:9b:a8:37:9f:82:
40:ca:54:5a:41:ba:8c:2d:6c:e6:58:de:70:40:f6:
48:a6:de:73:b0:e3:cd:67:94:73:91:6c:da:43:a5:
2f:8b:3d:36:8b:3d:27:5e:af:f5:db:96:ae:0b:66:
55:85:a6:16:39:ec:b3:22:07:7e:84:17:e9:b9:a8:
0f:12:8b:82:1b:79:6f:08:27:b2:66:70:ce:b8:c9:
98:90:d6:f9:f2:8c:84:6b:6e:ab:5b:d9:03:1c:64:
a9:2b:31:2a:a0:8c:5c:36:e1:1b:62:96:f1:39:d2:
c1:80:f5:da:b7:e7:05:63:c5:63:6b:c1:c6:cc:d2:
7a:55:a7:d2:27:02:16:a7:42:7c:df:57:6b:a9:dc:
ed:c1:a1:fe:ba:19:db:61:f4:2e:0b:62:73:d6:85:
fc:ec:e4:20:e7:67:4c:93:f7:bf:32:64:04:7e:47:
59:7f:8f:cf:60:4a:75:a9:08:4e:d8:ee:3a:c4:c0:
2f:00:89:60:c7:8e:d1:24:00:be:f2:00:c0:12:f8:
40:8d:f8:56:51:b6:89:1e:09:88:d2:8c:cb:28:34:
98:b8:cb:84:ca:3e:cd:94:a9:a2:93:e0:e8:f7:62:
90:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:0D:49:DF:08:96:0A:E5:A5:89:16:61:EC:85:3C:A7:5B:CF:65:64
X509v3 Authority Key Identifier:
keyid:8B:BB:53:8F:C4:F8:F1:98:41:00:64:0D:D8:43:57:66:A6:20:67:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i7tTj8T48ZhBAGQN2ENXZqYgZyM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/UA1J3wiWCuWliRZh7IU8p1vPZWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/i7tTj8T48ZhBAGQN2ENXZqYgZyM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.20.216.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:87:7f:02:71:7a:8e:60:7b:7f:bc:e3:f8:ea:19:46:c7:c4:
9b:8d:b7:1c:4c:53:52:a2:40:96:83:5d:72:65:e9:fc:78:b2:
85:90:7e:0c:74:6b:39:bd:d2:05:1e:a6:1e:73:45:1b:44:b7:
1d:54:16:88:b2:93:f3:7a:73:61:10:d2:b9:49:3a:b0:b7:45:
a7:f0:43:78:da:83:73:a7:76:3e:40:fd:0d:21:37:73:d8:fa:
a7:91:b1:67:f2:02:49:08:bb:3d:28:1f:f0:3a:6c:d8:c5:ff:
d4:98:32:43:f1:5d:e2:e6:c6:6e:c7:13:cc:c7:a8:68:e2:fd:
6d:b6:51:9f:d5:f4:b9:08:32:93:ba:17:79:c3:73:a8:45:84:
1b:58:04:9f:72:0d:ab:18:45:6b:5d:a2:3f:6a:a4:5f:27:33:
57:52:8d:b0:7f:04:d5:b0:02:e7:89:77:4e:a2:41:ea:44:05:
17:0e:a4:14:7d:8a:fe:3c:7e:d1:f0:23:6c:7e:9f:35:63:8d:
c6:37:45:56:bc:b5:e7:d3:cf:3e:cf:98:29:e5:79:fb:9e:57:
ae:88:be:cb:f6:f8:26:dc:d6:73:f6:48:6a:61:6d:56:ed:80:
86:ca:64:d8:61:0e:b3:c9:5f:23:4f:57:95:fb:41:0c:53:03:
48:bf:2e:56
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECeW3ujANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
YmJiNTM4ZmM0ZjhmMTk4NDEwMDY0MGRkODQzNTc2NmE2MjA2NzIzMB4XDTIyMDEw
MTA4NTUwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTAwZDQ5ZGYwODk2
MGFlNWE1ODkxNjYxZWM4NTNjYTc1YmNmNjU2NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKhlPLSTrfiT2ontBKYq3XZsa5NSLGPtwpuoN5+CQMpUWkG6
jC1s5ljecED2SKbec7DjzWeUc5Fs2kOlL4s9Nos9J16v9duWrgtmVYWmFjnssyIH
foQX6bmoDxKLght5bwgnsmZwzrjJmJDW+fKMhGtuq1vZAxxkqSsxKqCMXDbhG2KW
8TnSwYD12rfnBWPFY2vBxszSelWn0icCFqdCfN9Xa6nc7cGh/roZ22H0Lgtic9aF
/OzkIOdnTJP3vzJkBH5HWX+Pz2BKdakITtjuOsTALwCJYMeO0SQAvvIAwBL4QI34
VlG2iR4JiNKMyyg0mLjLhMo+zZSpopPg6PdikJkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRQDUnfCJYK5aWJFmHshTynW89lZDAfBgNVHSMEGDAWgBSLu1OPxPjxmEEA
ZA3YQ1dmpiBnIzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2k3dFRqOFQ0OFpoQkFHUU4yRU5YWnFZZ1p5TS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmUvYjQ1ZjIxLTNlZTYtNDcxMi05OGZjLWI4OTg0MGE3NDgwOS8x
L1VBMUozd2lXQ3VXbGlSWmg3SVU4cDF2UFpXUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmUv
YjQ1ZjIxLTNlZTYtNDcxMi05OGZjLWI4OTg0MGE3NDgwOS8xL2k3dFRqOFQ0OFpo
QkFHUU4yRU5YWnFZZ1p5TS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcMU2DANBgkqhkiG9w0BAQsFAAOC
AQEAPod/AnF6jmB7f7zj+OoZRsfEm423HExTUqJAloNdcmXp/HiyhZB+DHRrOb3S
BR6mHnNFG0S3HVQWiLKT83pzYRDSuUk6sLdFp/BDeNqDc6d2PkD9DSE3c9j6p5Gx
Z/ICSQi7PSgf8Dps2MX/1JgyQ/Fd4ubGbscTzMeoaOL9bbZRn9X0uQgyk7oXecNz
qEWEG1gEn3INqxhFa12iP2qkXyczV1KNsH8E1bAC54l3TqJB6kQFFw6kFH2K/jx+
0fAjbH6fNWONxjdFVry159PPPs+YKeV5+55Xroi+y/b4JtzWc/ZIamFtVu2Ahspk
2GEOs8lfI09XlftBDFMDSL8uVg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:41 2024 by rpki-client on console-ams.rpki-client.org