Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/55303a-f225-4a3f-825f-5dcd82def84f/1/Ut82iitTgrQV_TamZannDxnI7Ik.roa
File: Ut82iitTgrQV_TamZannDxnI7Ik.roa (raw, json)
Hash identifier: 5tG4Aqk/08xuGJzDRxqv83QSl3bDj7uLXHmqY3WUzWE=
Subject key identifier: 52:DF:36:8A:2B:53:82:B4:15:FD:36:A6:65:A9:E7:0F:19:C8:EC:89
Certificate issuer: /CN=73fc89023eac74ab298563f99ddb71f6f15f9538
Certificate serial: 018558EBBA74368D9F5D60279795100A1062
Authority key identifier: 73:FC:89:02:3E:AC:74:AB:29:85:63:F9:9D:DB:71:F6:F1:5F:95:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_yJAj6sdKsphWP5ndtx9vFflTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/55303a-f225-4a3f-825f-5dcd82def84f/1/Ut82iitTgrQV_TamZannDxnI7Ik.roa
Signing time: Wed 28 Dec 2022 13:28:41 +0000
ROA not before: Wed 28 Dec 2022 13:28:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201987
IP address blocks: 159.255.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:58:eb:ba:74:36:8d:9f:5d:60:27:97:95:10:0a:10:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73fc89023eac74ab298563f99ddb71f6f15f9538
Validity
Not Before: Dec 28 13:28:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52df368a2b5382b415fd36a665a9e70f19c8ec89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:25:a1:61:86:6a:55:3b:4c:6a:dc:6f:eb:af:
43:0a:75:34:06:30:3e:5d:36:8f:2e:36:63:50:cd:
ea:26:f7:7b:fb:82:48:ce:0a:aa:de:5c:33:44:ac:
b4:02:58:43:c0:6d:49:ef:50:ac:f1:c7:ce:07:b8:
16:2f:4c:3a:09:d9:e9:85:3a:08:de:a4:c1:72:b7:
95:67:bd:9d:48:ae:e5:86:66:24:1f:ed:77:e7:91:
80:f0:db:bc:0c:97:07:0e:46:fc:e0:0a:a0:81:54:
9d:ef:eb:3d:09:d8:f2:f6:33:03:62:01:b5:74:63:
fd:ae:69:c7:41:3f:af:21:46:f1:f6:aa:6e:31:a6:
82:0b:33:16:41:06:54:c5:5f:61:34:37:4a:f3:d4:
47:4e:fe:6b:ff:53:31:ca:f3:63:36:e1:9e:cb:28:
63:2b:14:fe:0e:30:f1:6f:58:b0:ad:70:1c:8e:8a:
7e:71:0b:84:a8:07:0b:87:27:24:81:cd:5c:b2:eb:
cd:2d:b1:0d:f8:50:08:8e:25:3d:b2:c9:bb:fa:eb:
9b:24:56:99:67:7a:8e:38:c3:75:62:b9:d5:95:1e:
9c:8f:d0:4e:29:8e:32:a0:e7:fe:3e:e2:ef:80:78:
f5:78:ea:bc:23:b8:f1:34:a2:1b:96:0e:45:6b:84:
87:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:DF:36:8A:2B:53:82:B4:15:FD:36:A6:65:A9:E7:0F:19:C8:EC:89
X509v3 Authority Key Identifier:
keyid:73:FC:89:02:3E:AC:74:AB:29:85:63:F9:9D:DB:71:F6:F1:5F:95:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_yJAj6sdKsphWP5ndtx9vFflTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/55303a-f225-4a3f-825f-5dcd82def84f/1/Ut82iitTgrQV_TamZannDxnI7Ik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/55303a-f225-4a3f-825f-5dcd82def84f/1/c_yJAj6sdKsphWP5ndtx9vFflTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.255.148.0/24
Signature Algorithm: sha256WithRSAEncryption
71:80:e5:de:d4:5d:ff:11:4b:22:d5:a7:5b:f8:df:79:10:05:
29:5b:c1:34:c4:eb:b3:64:05:65:36:4f:81:e4:05:d8:70:ab:
f7:a3:3b:85:93:4c:cb:be:76:16:66:89:15:b3:03:50:84:6a:
e9:5b:9c:ab:1d:fc:6e:ac:8d:72:15:2b:26:5c:aa:c2:37:26:
95:98:3c:04:7b:cc:94:8f:71:da:41:ea:f3:57:2f:44:8c:14:
df:72:8c:0e:18:66:c7:61:7e:7f:bd:d1:44:08:74:fb:cd:db:
df:ca:94:1e:41:69:99:c8:c6:0e:f7:5e:7e:81:74:a9:09:26:
9e:da:8b:b3:bd:ac:24:bc:95:09:4c:1e:d0:32:dd:28:2b:b0:
5e:7a:73:59:c1:a1:56:91:37:ac:9f:b0:d0:c0:8f:2c:7b:47:
02:ab:50:1a:04:fd:7f:99:06:ac:68:f5:40:0c:27:32:ea:9e:
68:5a:29:46:83:ed:5d:71:87:c2:0a:de:b2:25:4b:a7:e2:d4:
da:9d:0c:18:e0:38:09:7d:06:84:d8:bf:09:5e:6d:39:e9:d9:
98:16:94:e0:69:4f:45:fa:ad:a5:5b:b4:46:1b:d9:fb:17:d0:
29:e7:b2:c7:dc:b0:2f:1f:b5:e7:cb:c5:5a:39:02:9a:09:f5:
07:4f:e6:d2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVY67p0No2fXWAnl5UQChBiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczZmM4OTAyM2VhYzc0YWIyOTg1NjNmOTlkZGI3MWY2ZjE1
Zjk1MzgwHhcNMjIxMjI4MTMyODQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MmRmMzY4YTJiNTM4MmI0MTVmZDM2YTY2NWE5ZTcwZjE5YzhlYzg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtyWhYYZqVTtMatxv669DCnU0BjA+
XTaPLjZjUM3qJvd7+4JIzgqq3lwzRKy0AlhDwG1J71Cs8cfOB7gWL0w6CdnphToI
3qTBcreVZ72dSK7lhmYkH+1355GA8Nu8DJcHDkb84AqggVSd7+s9Cdjy9jMDYgG1
dGP9rmnHQT+vIUbx9qpuMaaCCzMWQQZUxV9hNDdK89RHTv5r/1MxyvNjNuGeyyhj
KxT+DjDxb1iwrXAcjop+cQuEqAcLhyckgc1csuvNLbEN+FAIjiU9ssm7+uubJFaZ
Z3qOOMN1YrnVlR6cj9BOKY4yoOf+PuLvgHj1eOq8I7jxNKIblg5Fa4SHhQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFLfNoorU4K0Ff02pmWp5w8ZyOyJMB8GA1UdIwQY
MBaAFHP8iQI+rHSrKYVj+Z3bcfbxX5U4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY195SkFqNnNkS3NwaFdQNW5kdHg5dkZmbFRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC81NTMwM2EtZjIyNS00YTNmLTgyNWYt
NWRjZDgyZGVmODRmLzEvVXQ4MmlpdFRnclFWX1RhbVphbm5EeG5JN0lrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC81NTMwM2EtZjIyNS00YTNmLTgyNWYtNWRjZDgyZGVmODRm
LzEvY195SkFqNnNkS3NwaFdQNW5kdHg5dkZmbFRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAn/+UMA0G
CSqGSIb3DQEBCwUAA4IBAQBxgOXe1F3/EUsi1adb+N95EAUpW8E0xOuzZAVlNk+B
5AXYcKv3ozuFk0zLvnYWZokVswNQhGrpW5yrHfxurI1yFSsmXKrCNyaVmDwEe8yU
j3HaQerzVy9EjBTfcowOGGbHYX5/vdFECHT7zdvfypQeQWmZyMYO915+gXSpCSae
2ouzvawkvJUJTB7QMt0oK7BeenNZwaFWkTesn7DQwI8se0cCq1AaBP1/mQasaPVA
DCcy6p5oWilGg+1dcYfCCt6yJUun4tTanQwY4DgJfQaE2L8JXm056dmYFpTgaU9F
+q2lW7RGG9n7F9Ap57LH3LAvH7Xny8VaOQKaCfUHT+bS
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:58 2024 by rpki-client on console-ams.rpki-client.org