Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/PpTuZLwtK6BWeZ2eZ8K4H9LBLZc.roa
File: PpTuZLwtK6BWeZ2eZ8K4H9LBLZc.roa (raw, json)
Hash identifier: 04x7Bdbv5gFfPJ5VWALIcy1h7K2Lq+UD+x+yE5gpcOw=
Subject key identifier: 3E:94:EE:64:BC:2D:2B:A0:56:79:9D:9E:67:C2:B8:1F:D2:C1:2D:97
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 38883555
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/PpTuZLwtK6BWeZ2eZ8K4H9LBLZc.roa
Signing time: Sat 01 Jan 2022 05:54:21 +0000
ROA not before: Sat 01 Jan 2022 05:54:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51894
IP address blocks: 159.148.147.0/24 maxlen: 24
159.148.172.0/24 maxlen: 24
2a02:610:7501::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 948450645 (0x38883555)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 05:54:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e94ee64bc2d2ba056799d9e67c2b81fd2c12d97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2f:20:9b:d6:50:be:11:56:cd:8e:87:d0:34:
aa:19:b2:80:f8:e0:33:c4:88:ed:be:4e:ef:6d:7c:
44:de:7a:b9:6a:b2:20:49:52:06:29:6c:3f:22:39:
15:e1:bc:4c:36:a9:b6:85:44:3c:7c:f0:b8:f1:ab:
8d:2e:d8:7e:a5:aa:37:fd:0f:18:af:5d:1d:ba:53:
5a:f0:92:05:0a:b7:a6:6c:e7:46:68:9b:b6:29:dd:
ba:61:6b:98:82:2f:8d:0f:ae:3c:db:87:54:dc:8d:
5d:50:e1:b5:85:bc:ba:65:48:81:ba:35:a3:7b:76:
ab:a5:b8:e4:01:cd:33:05:ad:d1:b5:6d:31:3c:8b:
64:a7:9e:52:ee:18:84:7a:c2:95:23:6f:00:c0:0f:
01:d6:a5:b4:86:ae:72:7c:2e:ad:99:b9:c4:4a:57:
e4:81:1c:12:bf:c4:54:a0:01:70:32:11:a9:66:47:
ef:b8:a3:d4:c6:33:28:d1:a2:b4:b3:e2:28:eb:45:
b3:9e:a5:72:d9:c2:32:b2:df:8c:48:ab:97:dc:74:
bd:63:36:b9:e6:55:89:dc:06:a7:a9:88:13:19:c8:
ae:d0:2a:91:87:ac:05:0b:9a:2b:50:b9:19:33:91:
bb:5c:77:b2:e8:cb:dd:0b:22:70:0f:83:1e:19:9c:
4e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:94:EE:64:BC:2D:2B:A0:56:79:9D:9E:67:C2:B8:1F:D2:C1:2D:97
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/PpTuZLwtK6BWeZ2eZ8K4H9LBLZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.147.0/24
159.148.172.0/24
IPv6:
2a02:610:7501::/48
Signature Algorithm: sha256WithRSAEncryption
0f:69:1a:01:5c:0f:33:79:03:af:b1:14:ac:60:67:f4:5e:c5:
65:27:62:80:83:b3:0e:78:0b:2d:49:c9:30:5f:9b:35:96:6b:
6c:f1:29:d3:c8:22:ec:6d:8d:87:e1:4d:b2:75:a3:e9:ed:2a:
c4:ce:97:c0:a9:17:e6:8e:93:2d:c9:f3:06:98:59:d0:87:0f:
0a:36:d2:ba:6c:d0:ee:e4:f1:bd:4c:6f:fb:c6:00:92:03:ad:
ad:d4:85:56:93:97:b1:93:f7:71:47:3f:02:58:30:cf:57:3d:
9e:e9:b3:6a:36:69:fd:a3:73:ce:1b:98:8d:c1:8c:12:cb:86:
a3:86:f1:11:32:8b:df:b3:20:84:22:65:23:d4:94:dd:f5:18:
e4:d2:46:5f:78:ba:ba:88:fd:df:2d:c3:6c:d7:48:9d:b7:4d:
28:1a:73:f0:3e:6d:43:3b:a2:24:db:ee:7c:1f:f3:51:7d:cb:
b3:3d:b5:01:9c:87:f8:08:e5:f5:51:02:fc:6d:d8:28:24:f0:
ca:c2:1c:93:c5:99:0f:e2:93:c5:02:ee:2c:82:43:19:72:e5:
d6:31:7b:4a:14:80:02:a3:77:33:22:44:4d:e0:94:ac:ea:85:
a2:2a:7d:af:a7:28:b9:13:6c:c3:11:fa:f4:78:e6:4b:6b:b4:
f4:41:dc:16
-----BEGIN CERTIFICATE-----
MIIFBjCCA+6gAwIBAgIEOIg1VTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
YjA5NTJjOGJhOGRhZGIxZDM0ZGU2YzZhOTM4NjRhNjA5ZmM0MWVjMB4XDTIyMDEw
MTA1NTQyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2U5NGVlNjRiYzJk
MmJhMDU2Nzk5ZDllNjdjMmI4MWZkMmMxMmQ5NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL0vIJvWUL4RVs2Oh9A0qhmygPjgM8SI7b5O7218RN56uWqy
IElSBilsPyI5FeG8TDaptoVEPHzwuPGrjS7YfqWqN/0PGK9dHbpTWvCSBQq3pmzn
RmibtindumFrmIIvjQ+uPNuHVNyNXVDhtYW8umVIgbo1o3t2q6W45AHNMwWt0bVt
MTyLZKeeUu4YhHrClSNvAMAPAdaltIaucnwurZm5xEpX5IEcEr/EVKABcDIRqWZH
77ij1MYzKNGitLPiKOtFs56lctnCMrLfjEirl9x0vWM2ueZVidwGp6mIExnIrtAq
kYesBQuaK1C5GTORu1x3sujL3QsicA+DHhmcTsMCAwEAAaOCAiAwggIcMB0GA1Ud
DgQWBBQ+lO5kvC0roFZ5nZ5nwrgf0sEtlzAfBgNVHSMEGDAWgBSrCVLIuo2tsdNN
5sapOGSmCfxB7DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3F3bFN5THFOcmJIVFRlYkdxVGhrcGduOFFldy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGUvMzU1NWZlLTEyY2QtNDAyYS1hODEwLTU1NTRkNmUxNjg2Zi8x
L1BwVHVaTHd0SzZCV2VaMmVaOEs0SDlMQkxaYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGUv
MzU1NWZlLTEyY2QtNDAyYS1hODEwLTU1NTRkNmUxNjg2Zi8xL3F3bFN5THFOcmJI
VFRlYkdxVGhrcGduOFFldy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA2
BggrBgEFBQcBBwEB/wQnMCUwEgQCAAEwDAMEAJ+UkwMEAJ+UrDAPBAIAAjAJAwcA
KgIGEHUBMA0GCSqGSIb3DQEBCwUAA4IBAQAPaRoBXA8zeQOvsRSsYGf0XsVlJ2KA
g7MOeAstSckwX5s1lmts8SnTyCLsbY2H4U2ydaPp7SrEzpfAqRfmjpMtyfMGmFnQ
hw8KNtK6bNDu5PG9TG/7xgCSA62t1IVWk5exk/dxRz8CWDDPVz2e6bNqNmn9o3PO
G5iNwYwSy4ajhvERMovfsyCEImUj1JTd9Rjk0kZfeLq6iP3fLcNs10idt00oGnPw
Pm1DO6Ik2+58H/NRfcuzPbUBnIf4COX1UQL8bdgoJPDKwhyTxZkP4pPFAu4sgkMZ
cuXWMXtKFIACo3czIkRN4JSs6oWiKn2vpyi5E2zDEfr0eOZLa7T0QdwW
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:37 2023 by rpki-client on console-ams.rpki-client.org