Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/6094af-72c5-4eb5-98ea-0e2ea6a02182/1/Ufvv00n8ySrqQUKw9YP1r56D25o.roa
File: Ufvv00n8ySrqQUKw9YP1r56D25o.roa (raw, json)
Hash identifier: Xp5afWTJzfm71bjcpyAn37kMSUUWZdJ4MmPp9lXC2uc=
Subject key identifier: 51:FB:EF:D3:49:FC:C9:2A:EA:41:42:B0:F5:83:F5:AF:9E:83:DB:9A
Certificate issuer: /CN=4c3393b2a1bd7919859807838ab1e3b0037b8b4f
Certificate serial: 551D
Authority key identifier: 4C:33:93:B2:A1:BD:79:19:85:98:07:83:8A:B1:E3:B0:03:7B:8B:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDOTsqG9eRmFmAeDirHjsAN7i08.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/6094af-72c5-4eb5-98ea-0e2ea6a02182/1/Ufvv00n8ySrqQUKw9YP1r56D25o.roa
Signing time: Tue 19 Apr 2022 12:35:26 +0000
ROA not before: Tue 19 Apr 2022 12:35:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208138
IP address blocks: 185.251.40.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21789 (0x551d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c3393b2a1bd7919859807838ab1e3b0037b8b4f
Validity
Not Before: Apr 19 12:35:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51fbefd349fcc92aea4142b0f583f5af9e83db9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7a:f7:23:4d:92:28:5e:24:f4:db:1b:45:48:
fb:6b:5e:59:eb:19:98:9b:15:58:bd:9a:5f:94:33:
be:3b:ea:58:7c:25:4f:19:09:2f:37:bf:a9:7a:03:
c1:25:14:d3:a5:df:bb:21:d2:01:d3:33:87:8e:73:
d5:ea:fd:5d:1e:3c:8a:19:0f:19:d9:ae:6e:98:51:
b4:92:f6:85:16:28:64:55:23:89:e4:57:b8:c4:90:
dc:79:ce:a5:e8:8e:4c:52:67:5e:7d:e1:7c:1d:df:
19:0b:49:81:14:72:be:8c:f1:bb:9a:cc:7e:5b:e2:
84:50:a3:21:cb:ce:e2:25:96:be:eb:e5:96:f1:2d:
ea:5b:90:ba:0e:9d:12:e7:95:6e:56:17:81:a0:06:
74:ac:2e:8b:c5:9c:b3:69:b5:83:ed:dc:db:5c:d2:
16:85:9a:cf:62:ed:aa:91:7a:77:36:f3:b5:4d:2c:
9c:1f:65:72:b7:2f:81:b6:9e:42:f5:a3:ba:d1:7b:
72:ca:5b:84:b1:00:c0:81:04:b3:60:d9:f2:0e:ed:
79:60:c2:9f:9f:38:27:af:c4:35:52:77:fc:9e:8e:
92:65:f7:5b:d3:be:50:78:2e:1d:50:c0:a6:32:5b:
4e:d4:05:56:d1:b9:58:61:21:76:dd:d3:21:3d:c5:
5b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:FB:EF:D3:49:FC:C9:2A:EA:41:42:B0:F5:83:F5:AF:9E:83:DB:9A
X509v3 Authority Key Identifier:
keyid:4C:33:93:B2:A1:BD:79:19:85:98:07:83:8A:B1:E3:B0:03:7B:8B:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDOTsqG9eRmFmAeDirHjsAN7i08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/6094af-72c5-4eb5-98ea-0e2ea6a02182/1/Ufvv00n8ySrqQUKw9YP1r56D25o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/6094af-72c5-4eb5-98ea-0e2ea6a02182/1/TDOTsqG9eRmFmAeDirHjsAN7i08.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.40.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:9a:50:6a:4c:2a:53:77:97:86:8b:be:35:16:05:a4:4f:e2:
d5:d8:0a:cc:48:2f:91:11:92:59:6c:e7:73:19:31:35:56:04:
b7:4e:8e:8d:10:e0:83:df:eb:55:99:bf:5c:65:b4:9e:76:2f:
ec:5a:66:87:a8:42:42:eb:17:5c:61:3a:c7:02:25:01:61:9c:
fb:96:63:d4:26:e1:e3:94:0a:f8:9f:bd:65:58:7b:a3:0a:88:
6c:3a:95:47:44:cc:a8:f3:8f:bb:a7:71:f3:67:0e:af:ba:26:
a9:e4:4f:fa:3a:64:53:09:d7:7b:b9:9b:30:9b:a3:f9:0b:04:
82:6b:6f:ac:4f:ed:1d:59:c6:ce:a4:f8:0a:8f:cf:40:ea:9e:
25:47:be:62:8c:81:d7:73:d2:b1:1a:a3:47:39:10:52:65:a5:
84:c0:bb:ab:59:91:5f:bf:8e:d3:9d:79:15:90:bf:06:58:a1:
fb:eb:fb:34:3b:f0:33:7d:80:56:5a:5e:b8:33:bf:da:e6:2d:
d6:c6:f7:1f:20:16:00:1a:08:9c:66:c0:37:0d:d2:fb:47:76:
e1:a2:4c:d1:ba:1b:00:24:ee:5b:6f:38:aa:26:fb:7d:19:08:
48:88:3f:15:a4:31:38:37:bf:59:79:51:31:2b:c6:fb:38:8d:
21:80:e3:fa
-----BEGIN CERTIFICATE-----
MIIE7TCCA9WgAwIBAgICVR0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNGMz
MzkzYjJhMWJkNzkxOTg1OTgwNzgzOGFiMWUzYjAwMzdiOGI0ZjAeFw0yMjA0MTkx
MjM1MjZaFw0yMzA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDUxZmJlZmQzNDlmY2M5
MmFlYTQxNDJiMGY1ODNmNWFmOWU4M2RiOWEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0evcjTZIoXiT02xtFSPtrXlnrGZibFVi9ml+UM7476lh8JU8Z
CS83v6l6A8ElFNOl37sh0gHTM4eOc9Xq/V0ePIoZDxnZrm6YUbSS9oUWKGRVI4nk
V7jEkNx5zqXojkxSZ1594Xwd3xkLSYEUcr6M8buazH5b4oRQoyHLzuIllr7r5Zbx
LepbkLoOnRLnlW5WF4GgBnSsLovFnLNptYPt3Ntc0haFms9i7aqRenc287VNLJwf
ZXK3L4G2nkL1o7rRe3LKW4SxAMCBBLNg2fIO7Xlgwp+fOCevxDVSd/yejpJl91vT
vlB4Lh1QwKYyW07UBVbRuVhhIXbd0yE9xVtPAgMBAAGjggIJMIICBTAdBgNVHQ4E
FgQUUfvv00n8ySrqQUKw9YP1r56D25owHwYDVR0jBBgwFoAUTDOTsqG9eRmFmAeD
irHjsAN7i08wDgYDVR0PAQH/BAQDAgeAMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEF
BQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9U
RE9Uc3FHOWVSbUZtQWVEaXJIanNBTjdpMDguY2VyMIGNBggrBgEFBQcBCwSBgDB+
MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9E
RUZBVUxUL2ZmLzYwOTRhZi03MmM1LTRlYjUtOThlYS0wZTJlYTZhMDIxODIvMS9V
ZnZ2MDBuOHlTcnFRVUt3OVlQMXI1NkQyNW8ucm9hMIGBBgNVHR8EejB4MHagdKBy
hnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2ZmLzYw
OTRhZi03MmM1LTRlYjUtOThlYS0wZTJlYTZhMDIxODIvMS9URE9Uc3FHOWVSbUZt
QWVEaXJIanNBTjdpMDguY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK5+ygwDQYJKoZIhvcNAQELBQADggEB
AG+aUGpMKlN3l4aLvjUWBaRP4tXYCsxIL5ERklls53MZMTVWBLdOjo0Q4IPf61WZ
v1xltJ52L+xaZoeoQkLrF1xhOscCJQFhnPuWY9Qm4eOUCvifvWVYe6MKiGw6lUdE
zKjzj7uncfNnDq+6JqnkT/o6ZFMJ13u5mzCbo/kLBIJrb6xP7R1Zxs6k+AqPz0Dq
niVHvmKMgddz0rEao0c5EFJlpYTAu6tZkV+/jtOdeRWQvwZYofvr+zQ78DN9gFZa
Xrgzv9rmLdbG9x8gFgAaCJxmwDcN0vtHduGiTNG6GwAk7ltvOKom+30ZCEiIPxWk
MTg3v1l5UTErxvs4jSGA4/o=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:47 2024 by rpki-client on console-ams.rpki-client.org