Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/u4VtUExB2SGvfv4WA9MFjGFvTqE.roa
File: u4VtUExB2SGvfv4WA9MFjGFvTqE.roa (raw, json)
Hash identifier: 0W+nGcFSuQ/zAfkKS0BOX9AD41A3GMb6IhBac3T1R/Q=
Subject key identifier: BB:85:6D:50:4C:41:D9:21:AF:7E:FE:16:03:D3:05:8C:61:6F:4E:A1
Certificate issuer: /CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Certificate serial: 4550FC6F
Authority key identifier: 5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/u4VtUExB2SGvfv4WA9MFjGFvTqE.roa
Signing time: Tue 05 Jul 2022 03:47:25 +0000
ROA not before: Tue 05 Jul 2022 03:47:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60077
IP address blocks: 193.151.128.0/20 maxlen: 32
193.151.128.0/19 maxlen: 32
193.151.144.0/20 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1162935407 (0x4550fc6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Validity
Not Before: Jul 5 03:47:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb856d504c41d921af7efe1603d3058c616f4ea1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:8d:16:d1:3b:cc:75:a8:a3:ec:6c:5a:2c:ae:
f1:81:3e:29:f5:25:73:6a:bf:ad:22:ea:8a:dd:65:
bf:7a:0d:7e:c7:cd:bb:bb:24:08:65:db:5d:2e:2d:
14:c0:2b:eb:bc:71:24:da:07:1e:ba:31:2a:ff:62:
fc:c2:f1:0c:c5:05:32:85:39:84:5f:91:e2:a0:f0:
e2:4f:0c:02:2d:74:cd:dd:41:63:55:d8:80:ac:64:
8a:50:be:19:2e:38:7e:6c:6a:d5:e5:d6:78:07:0d:
cb:82:d1:0b:fc:63:5f:d6:f6:4e:13:e5:12:4c:a3:
a3:08:4e:95:aa:86:67:55:4e:1f:d7:ac:0e:1f:e8:
96:32:fa:f2:a1:9e:19:39:36:c2:e9:bd:89:78:b5:
9c:31:a4:7b:09:d3:a8:ef:a6:14:4e:c1:f7:58:75:
9e:cc:25:ca:c1:40:db:68:6e:1e:03:e6:fd:62:f1:
ce:5c:f3:b8:a3:4f:af:96:16:a2:a1:0b:e6:ef:26:
6b:0a:96:93:0d:e9:ed:b3:85:77:64:35:ae:2f:72:
55:a9:d0:83:13:24:f5:34:68:6a:de:fb:5e:cb:d6:
3f:96:7e:01:80:c7:56:81:48:40:22:52:10:d2:c5:
58:e7:e9:bd:df:56:e4:9c:79:f3:2d:bc:42:45:87:
3b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:85:6D:50:4C:41:D9:21:AF:7E:FE:16:03:D3:05:8C:61:6F:4E:A1
X509v3 Authority Key Identifier:
keyid:5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/u4VtUExB2SGvfv4WA9MFjGFvTqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/W1JjSi6wP4VlteM9wrn0kEH3z7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.151.128.0/19
Signature Algorithm: sha256WithRSAEncryption
30:31:54:2d:f9:a1:fb:96:c6:48:58:88:22:5f:27:b5:6a:44:
59:d0:18:0b:bb:70:d0:3a:b3:f9:2d:c9:13:69:06:d6:b7:f5:
36:07:28:0e:42:4d:12:52:07:aa:41:dc:8a:83:5a:c3:d2:97:
3b:20:4c:76:e7:0b:29:d0:8f:a8:c5:1e:cb:d8:29:c3:ac:8a:
d9:6c:2b:be:85:2a:4d:73:2e:49:16:40:a0:08:d8:db:c4:63:
b7:11:04:f2:79:84:2c:03:04:61:72:2a:09:56:29:e0:f9:73:
3d:46:17:0f:b1:3f:f6:41:8c:b0:70:ae:ed:be:cf:e7:6b:66:
cb:61:66:77:8c:d1:c6:10:a0:60:49:27:af:23:70:a4:ec:66:
b4:88:df:f6:b0:4b:89:25:8e:fe:ca:01:1d:6c:fd:b4:d7:d6:
27:1e:41:46:a9:f2:63:44:9a:ef:4f:f5:4e:a6:7f:af:24:99:
64:e7:9b:3a:91:08:d3:25:dd:56:ba:07:ba:e0:e5:ef:bd:c8:
f1:ce:9f:c7:eb:6d:40:bd:2f:40:87:d3:e0:21:25:19:6c:fc:
42:15:68:8a:f1:39:98:79:a9:78:c4:c3:5f:1f:63:ac:cc:4b:
16:96:3b:60:42:d8:2b:30:a5:62:9f:ae:9e:96:3b:8e:9d:44:
a5:e4:b6:ef
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIERVD8bzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
YjUyNjM0YTJlYjAzZjg1NjViNWUzM2RjMmI5ZjQ5MDQxZjdjZmIwMB4XDTIyMDcw
NTAzNDcyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmI4NTZkNTA0YzQx
ZDkyMWFmN2VmZTE2MDNkMzA1OGM2MTZmNGVhMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIuNFtE7zHWoo+xsWiyu8YE+KfUlc2q/rSLqit1lv3oNfsfN
u7skCGXbXS4tFMAr67xxJNoHHroxKv9i/MLxDMUFMoU5hF+R4qDw4k8MAi10zd1B
Y1XYgKxkilC+GS44fmxq1eXWeAcNy4LRC/xjX9b2ThPlEkyjowhOlaqGZ1VOH9es
Dh/oljL68qGeGTk2wum9iXi1nDGkewnTqO+mFE7B91h1nswlysFA22huHgPm/WLx
zlzzuKNPr5YWoqEL5u8mawqWkw3p7bOFd2Q1ri9yVanQgxMk9TRoat77XsvWP5Z+
AYDHVoFIQCJSENLFWOfpvd9W5Jx58y28QkWHO/cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS7hW1QTEHZIa9+/hYD0wWMYW9OoTAfBgNVHSMEGDAWgBRbUmNKLrA/hWW1
4z3CufSQQffPsDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1cxSmpTaTZ3UDRWbHRlTTl3cm4wa0VIM3o3QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjAvN2E1YjQ0LTZiMTgtNDJkMy1hOGQ1LWRjNjU1NGZkMTIzNS8x
L3U0VnRVRXhCMlNHdmZ2NFdBOU1GakdGdlRxRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAv
N2E1YjQ0LTZiMTgtNDJkMy1hOGQ1LWRjNjU1NGZkMTIzNS8xL1cxSmpTaTZ3UDRW
bHRlTTl3cm4wa0VIM3o3QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcGXgDANBgkqhkiG9w0BAQsFAAOC
AQEAMDFULfmh+5bGSFiIIl8ntWpEWdAYC7tw0Dqz+S3JE2kG1rf1NgcoDkJNElIH
qkHcioNaw9KXOyBMducLKdCPqMUey9gpw6yK2WwrvoUqTXMuSRZAoAjY28RjtxEE
8nmELAMEYXIqCVYp4PlzPUYXD7E/9kGMsHCu7b7P52tmy2Fmd4zRxhCgYEknryNw
pOxmtIjf9rBLiSWO/soBHWz9tNfWJx5BRqnyY0Sa70/1TqZ/rySZZOebOpEI0yXd
VroHuuDl773I8c6fx+ttQL0vQIfT4CElGWz8QhVoivE5mHmpeMTDXx9jrMxLFpY7
YELYKzClYp+unpY7jp1EpeS27w==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:05 2023 by rpki-client on console.sobornost.net