Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/0_uaX2tDvMhEzOqwxPlatDReGjI.roa
File: 0_uaX2tDvMhEzOqwxPlatDReGjI.roa (raw, json)
Hash identifier: yHmQiCTwgKiaPcQaJXad9CWeZy3Eli2u4HInG7C8So0=
Subject key identifier: D3:FB:9A:5F:6B:43:BC:C8:44:CC:EA:B0:C4:F9:5A:B4:34:5E:1A:32
Certificate issuer: /CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Certificate serial: 10C72AEB
Authority key identifier: 17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/0_uaX2tDvMhEzOqwxPlatDReGjI.roa
Signing time: Sat 01 Jan 2022 13:02:24 +0000
ROA not before: Sat 01 Jan 2022 13:02:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204086
IP address blocks: 82.160.86.0/23 maxlen: 23
82.160.138.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 281488107 (0x10c72aeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Validity
Not Before: Jan 1 13:02:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3fb9a5f6b43bcc844cceab0c4f95ab4345e1a32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:51:11:db:45:f7:6a:9c:8e:08:2b:bc:67:99:
96:89:a3:a9:c0:43:44:b8:20:61:cd:42:32:41:3b:
9e:4a:a2:ae:57:4d:c2:ed:b3:77:8c:12:59:b3:c5:
a6:f8:5e:40:77:69:52:83:c6:3d:bf:32:8e:29:bf:
23:56:ee:a4:bc:e9:65:69:ef:67:df:fe:be:d7:b8:
30:bb:ef:ab:98:c2:2e:a9:d7:82:8b:16:77:5f:a6:
03:4f:16:54:09:d0:25:4d:84:1e:77:77:fa:d0:23:
60:94:10:39:1a:9f:d4:1f:35:c4:2b:39:fd:fe:31:
1c:8c:7f:6a:9a:7e:8a:ff:06:ec:3d:23:3d:cc:07:
df:98:f2:83:37:63:cd:95:e2:d7:17:a0:fc:bc:85:
d9:98:33:60:b0:7f:ec:e8:ad:4d:e7:e5:f5:4d:61:
a0:4e:5e:33:19:18:89:99:04:96:b1:c9:3e:ec:6b:
c6:b4:26:3b:e9:14:6a:1d:b1:4e:81:cd:8b:9d:10:
26:0b:80:ab:25:8e:05:b8:81:69:c6:37:45:07:dc:
bd:b2:3a:bc:9c:54:fa:46:d2:7c:f1:bc:28:d0:a6:
8f:7d:8a:7f:8a:8d:94:89:e1:fe:b9:8a:b6:34:48:
06:8b:85:84:39:ba:25:52:47:d0:87:96:2d:11:36:
3c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:FB:9A:5F:6B:43:BC:C8:44:CC:EA:B0:C4:F9:5A:B4:34:5E:1A:32
X509v3 Authority Key Identifier:
keyid:17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/0_uaX2tDvMhEzOqwxPlatDReGjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.160.86.0/23
82.160.138.0/23
Signature Algorithm: sha256WithRSAEncryption
66:2a:b7:e0:7d:2d:23:b4:65:67:ad:4c:96:9b:fc:46:56:74:
1b:18:1b:df:bf:4b:1b:0a:c8:da:d5:9d:8f:3a:fd:62:0b:a8:
98:57:5e:fd:36:3c:aa:c1:31:6c:f9:98:bc:5d:4d:b4:b2:7f:
c2:ee:17:ae:7b:98:fa:61:f6:90:fc:d6:d5:1e:65:a4:7f:f4:
d8:81:a8:71:8c:28:f5:a2:6e:fa:08:39:f9:9a:ff:62:4e:2e:
06:59:3e:04:a3:d2:db:fc:af:64:c1:1a:74:ec:31:a9:62:7a:
59:99:6c:52:03:85:8d:40:57:b5:2a:85:3e:07:48:5d:ff:cc:
98:8b:0f:eb:23:b7:7d:49:75:68:6d:12:7a:ac:0c:7a:f9:ba:
b1:05:26:d4:8f:ce:d6:6d:cb:64:45:9f:18:bb:28:4f:cd:27:
f7:f1:0a:cd:38:6e:f9:9a:f6:02:35:b9:16:87:da:92:c2:4a:
80:f0:df:f5:ea:66:06:74:f0:c3:04:60:94:26:36:eb:5d:34:
bb:21:a2:3c:0e:97:7c:2c:ea:3f:84:78:27:45:de:07:52:1c:
58:c0:79:21:ef:3a:8d:59:80:d4:64:91:8c:37:5a:22:24:97:
f4:a6:16:9b:0d:7e:6f:60:8a:4c:81:14:9c:d8:5a:fc:ef:2c:
42:eb:86:df
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEEMcq6zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
NzkzMDFkY2M3ZmFlNGY3Y2UwMWU0OTg3YTc3Y2I4MmEzMzZhYmZmMB4XDTIyMDEw
MTEzMDIyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDNmYjlhNWY2YjQz
YmNjODQ0Y2NlYWIwYzRmOTVhYjQzNDVlMWEzMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJlREdtF92qcjggrvGeZlomjqcBDRLggYc1CMkE7nkqirldN
wu2zd4wSWbPFpvheQHdpUoPGPb8yjim/I1bupLzpZWnvZ9/+vte4MLvvq5jCLqnX
gosWd1+mA08WVAnQJU2EHnd3+tAjYJQQORqf1B81xCs5/f4xHIx/app+iv8G7D0j
PcwH35jygzdjzZXi1xeg/LyF2ZgzYLB/7OitTefl9U1hoE5eMxkYiZkElrHJPuxr
xrQmO+kUah2xToHNi50QJguAqyWOBbiBacY3RQfcvbI6vJxU+kbSfPG8KNCmj32K
f4qNlInh/rmKtjRIBouFhDm6JVJH0IeWLRE2PIUCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTT+5pfa0O8yETM6rDE+Vq0NF4aMjAfBgNVHSMEGDAWgBQXkwHcx/rk984B
5Jh6d8uCozar/zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0Y1TUIzTWY2NVBmT0FlU1llbmZMZ3FNMnFfOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjYvZWQ3OTYzLTcyZWEtNGMxZC1hZGRkLWFmZjkyYzE2ZDhlMy8x
LzBfdWFYMnREdk1oRXpPcXd4UGxhdERSZUdqSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjYv
ZWQ3OTYzLTcyZWEtNGMxZC1hZGRkLWFmZjkyYzE2ZDhlMy8xL0Y1TUIzTWY2NVBm
T0FlU1llbmZMZ3FNMnFfOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAVKgVgMEAVKgijANBgkqhkiG9w0B
AQsFAAOCAQEAZiq34H0tI7RlZ61Mlpv8RlZ0Gxgb379LGwrI2tWdjzr9YguomFde
/TY8qsExbPmYvF1NtLJ/wu4XrnuY+mH2kPzW1R5lpH/02IGocYwo9aJu+gg5+Zr/
Yk4uBlk+BKPS2/yvZMEadOwxqWJ6WZlsUgOFjUBXtSqFPgdIXf/MmIsP6yO3fUl1
aG0SeqwMevm6sQUm1I/O1m3LZEWfGLsoT80n9/EKzThu+Zr2AjW5FofaksJKgPDf
9epmBnTwwwRglCY26100uyGiPA6XfCzqP4R4J0XeB1IcWMB5Ie86jVmA1GSRjDda
IiSX9KYWmw1+b2CKTIEUnNha/O8sQuuG3w==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:15 2023 by rpki-client on console-fra.rpki-client.org