Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/UQYeLXxUjK5DXfyHQTSx9PFQJjk.roa
File: UQYeLXxUjK5DXfyHQTSx9PFQJjk.roa (raw, json)
Hash identifier: rLerU/4ElFah0Fb+a4PfMALq0lc59dY2/89icUkHI6Y=
Subject key identifier: 51:06:1E:2D:7C:54:8C:AE:43:5D:FC:87:41:34:B1:F4:F1:50:26:39
Certificate issuer: /CN=ab54fe831b6a719f42e6c8486fd03b550be761fb
Certificate serial: 01851A81D7DC77D049DE9EDF957FF5DA13FA
Authority key identifier: AB:54:FE:83:1B:6A:71:9F:42:E6:C8:48:6F:D0:3B:55:0B:E7:61:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q1T-gxtqcZ9C5shIb9A7VQvnYfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/UQYeLXxUjK5DXfyHQTSx9PFQJjk.roa
Signing time: Fri 16 Dec 2022 10:36:34 +0000
ROA not before: Fri 16 Dec 2022 10:36:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201735
IP address blocks: 213.162.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1a:81:d7:dc:77:d0:49:de:9e:df:95:7f:f5:da:13:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab54fe831b6a719f42e6c8486fd03b550be761fb
Validity
Not Before: Dec 16 10:36:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51061e2d7c548cae435dfc874134b1f4f1502639
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:f7:e1:8c:6c:bf:46:97:b3:3c:07:84:4a:71:
9c:4e:db:3c:62:ef:0f:99:0d:9a:39:3c:13:31:e9:
18:4d:2d:ce:df:7f:05:f0:d0:33:02:6d:f2:02:4d:
44:b8:e4:29:78:e9:ea:01:3b:16:25:9c:0e:f8:79:
84:42:aa:a3:e2:10:90:c6:91:00:d0:9b:07:b4:26:
be:be:cf:22:3c:76:12:30:a0:7b:c7:cc:c3:29:2f:
3d:cc:12:0e:6a:5d:49:8c:c2:7d:cc:84:a9:78:15:
b1:b8:83:d4:5c:b3:79:c7:9f:1e:90:4a:36:67:62:
70:09:77:73:7e:ec:f0:2a:0b:b3:e8:75:ed:14:03:
00:88:31:08:8d:7d:ce:20:52:c4:12:13:be:bf:5c:
c2:c8:80:2b:b3:38:ac:76:76:bf:78:64:62:48:27:
ed:1d:45:61:1e:36:ee:f8:bb:12:d0:ed:0b:38:be:
41:16:d0:ff:9c:fb:a8:81:fa:42:64:4c:bd:18:c9:
a8:c7:6d:7e:83:dc:2c:10:c4:7b:53:9f:74:e2:eb:
d1:c9:56:33:f6:c8:d8:f4:09:17:67:ee:cd:35:64:
45:1f:ca:2e:48:12:e6:6e:29:c1:fe:4f:8b:d2:98:
43:aa:72:27:bb:4a:47:d5:8b:31:30:3a:8c:cd:6d:
ab:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:06:1E:2D:7C:54:8C:AE:43:5D:FC:87:41:34:B1:F4:F1:50:26:39
X509v3 Authority Key Identifier:
keyid:AB:54:FE:83:1B:6A:71:9F:42:E6:C8:48:6F:D0:3B:55:0B:E7:61:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q1T-gxtqcZ9C5shIb9A7VQvnYfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/UQYeLXxUjK5DXfyHQTSx9PFQJjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/q1T-gxtqcZ9C5shIb9A7VQvnYfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.162.220.0/24
Signature Algorithm: sha256WithRSAEncryption
66:6b:65:b1:68:b1:84:03:bf:bb:af:02:e6:25:3c:22:8f:51:
e2:d9:5c:5c:41:14:4f:91:b0:52:9a:d0:c8:84:f9:ee:22:c3:
02:97:15:3f:a3:02:99:29:c4:29:47:c4:da:2a:80:f1:d6:d5:
69:75:56:25:e6:d9:32:4e:31:7e:70:57:23:be:df:7c:86:65:
10:de:39:59:ea:ba:da:4e:3f:b9:50:ba:a0:d1:89:ce:69:5c:
df:b9:1c:e1:0c:e3:c2:3e:a1:48:ad:5d:a4:40:90:ff:a9:63:
eb:4a:58:e0:5f:96:17:99:98:97:cc:27:e0:c0:c7:03:2e:d0:
1e:7e:61:88:1a:a5:f9:c7:fc:f4:9c:24:f7:19:02:e1:20:b3:
5e:2f:95:99:72:1d:27:d3:7e:5f:c6:49:b8:50:33:de:6e:01:
bc:c2:09:da:37:a9:5e:4f:5e:94:dd:c7:40:36:a5:de:68:ba:
84:fa:a4:6d:bc:d5:f4:2c:b5:33:ec:6b:5a:4b:7e:d8:23:d6:
a3:2a:1e:2e:d8:d9:9c:6d:ac:9f:c2:c0:b1:b5:68:57:ff:1c:
7e:53:8a:ca:8c:81:77:4d:ad:7d:a0:d0:5d:24:9e:bc:71:56:
2b:27:b0:7e:7c:a4:c2:01:24:79:c6:cf:e0:1a:7e:3b:f1:81:
d6:5b:20:a7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYUagdfcd9BJ3p7flX/12hP6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiNTRmZTgzMWI2YTcxOWY0MmU2Yzg0ODZmZDAzYjU1MGJl
NzYxZmIwHhcNMjIxMjE2MTAzNjM0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTA2MWUyZDdjNTQ4Y2FlNDM1ZGZjODc0MTM0YjFmNGYxNTAyNjM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhffhjGy/RpezPAeESnGcTts8Yu8P
mQ2aOTwTMekYTS3O338F8NAzAm3yAk1EuOQpeOnqATsWJZwO+HmEQqqj4hCQxpEA
0JsHtCa+vs8iPHYSMKB7x8zDKS89zBIOal1JjMJ9zISpeBWxuIPUXLN5x58ekEo2
Z2JwCXdzfuzwKguz6HXtFAMAiDEIjX3OIFLEEhO+v1zCyIArszisdna/eGRiSCft
HUVhHjbu+LsS0O0LOL5BFtD/nPuogfpCZEy9GMmox21+g9wsEMR7U5904uvRyVYz
9sjY9AkXZ+7NNWRFH8ouSBLmbinB/k+L0phDqnInu0pH1YsxMDqMzW2r6QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFEGHi18VIyuQ138h0E0sfTxUCY5MB8GA1UdIwQY
MBaAFKtU/oMbanGfQubISG/QO1UL52H7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTFULWd4dHFjWjlDNXNoSWI5QTdWUXZuWWZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS81ZWFhYTctMzEwNy00MjY4LWFhZDYt
NmZkOTc4OTIwNWJhLzEvVVFZZUxYeFVqSzVEWGZ5SFFUU3g5UEZRSmprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS81ZWFhYTctMzEwNy00MjY4LWFhZDYtNmZkOTc4OTIwNWJh
LzEvcTFULWd4dHFjWjlDNXNoSWI5QTdWUXZuWWZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1aLcMA0G
CSqGSIb3DQEBCwUAA4IBAQBma2WxaLGEA7+7rwLmJTwij1Hi2VxcQRRPkbBSmtDI
hPnuIsMClxU/owKZKcQpR8TaKoDx1tVpdVYl5tkyTjF+cFcjvt98hmUQ3jlZ6rra
Tj+5ULqg0YnOaVzfuRzhDOPCPqFIrV2kQJD/qWPrSljgX5YXmZiXzCfgwMcDLtAe
fmGIGqX5x/z0nCT3GQLhILNeL5WZch0n035fxkm4UDPebgG8wgnaN6leT16U3cdA
NqXeaLqE+qRtvNX0LLUz7GtaS37YI9ajKh4u2NmcbayfwsCxtWhX/xx+U4rKjIF3
Ta19oNBdJJ68cVYrJ7B+fKTCASR5xs/gGn478YHWWyCn
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:35 2023 by rpki-client on console.sobornost.net