Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/UtbInFL8yrexV4FDqebGhc00pPI.roa
File: UtbInFL8yrexV4FDqebGhc00pPI.roa (raw, json)
Hash identifier: 58kFV5j1zrIZOfAK+Y/rjAnFfeClNppFCxDCqJk9rDE=
Subject key identifier: 52:D6:C8:9C:52:FC:CA:B7:B1:57:81:43:A9:E6:C6:85:CD:34:A4:F2
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 07C338BF
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/UtbInFL8yrexV4FDqebGhc00pPI.roa
Signing time: Wed 04 May 2022 11:04:10 +0000
ROA not before: Wed 04 May 2022 11:04:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12735
IP address blocks: 45.8.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130234559 (0x7c338bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 4 11:04:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52d6c89c52fccab7b1578143a9e6c685cd34a4f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:24:e4:16:66:28:93:e9:3b:57:fa:93:cc:ea:
86:45:21:11:c2:2f:fb:68:7c:a0:b6:94:a0:4e:e9:
b8:50:d4:3f:4a:a2:1c:c9:41:4d:d8:fa:9d:1f:b5:
10:4a:55:4a:36:7a:12:b9:d6:1c:13:90:66:cb:45:
8c:0b:c9:bf:67:29:2e:da:13:9b:1e:e0:a1:3c:45:
cc:4b:bb:bd:95:45:5b:27:a0:0c:a4:43:91:31:21:
8f:d9:ba:91:ba:3c:8e:66:72:e1:ad:21:bd:73:8d:
26:c2:9e:6a:e0:86:1e:7e:b1:1a:14:35:92:b5:03:
1b:ac:66:d7:e1:38:1a:4e:e1:e4:70:b2:cd:92:3f:
9c:35:77:eb:27:68:48:4a:c6:a3:ab:0b:47:3f:ee:
b6:c3:9f:e6:bc:53:88:a5:50:80:64:56:75:03:30:
67:46:8b:df:06:34:3e:69:52:c1:e3:ae:a2:09:b1:
92:cb:89:1b:ef:fe:4a:1a:16:da:b7:e2:96:49:38:
22:98:d3:db:e9:47:8f:ad:57:63:b9:ea:1e:6a:08:
34:ba:a6:21:fa:35:d3:72:b4:88:7e:66:2e:52:46:
12:84:b2:14:e2:d3:f1:8d:ca:23:db:00:97:0a:d0:
a6:87:16:2c:53:bf:b0:d1:51:83:04:9c:76:e5:a6:
18:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:D6:C8:9C:52:FC:CA:B7:B1:57:81:43:A9:E6:C6:85:CD:34:A4:F2
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/UtbInFL8yrexV4FDqebGhc00pPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
Signature Algorithm: sha256WithRSAEncryption
be:1a:57:77:db:17:cb:44:05:9d:7b:7b:e5:5a:2b:0a:f9:e8:
90:69:38:d5:39:16:9e:ff:84:40:36:ef:8d:e9:9e:90:a7:08:
ca:3f:58:31:be:f9:b4:e2:0f:0a:f1:33:f9:6f:0e:d3:f9:88:
5e:a8:4c:22:22:a1:ea:f3:7c:3e:40:e9:c4:02:17:bd:66:9c:
8e:33:3d:0c:3f:52:03:59:d7:28:b3:f0:93:32:4a:d4:0d:69:
c5:a7:16:0e:22:a5:af:52:b0:2d:0a:e6:03:80:80:35:5b:a5:
dd:ff:9e:5f:5c:62:95:cf:8a:0a:62:08:4a:8a:ed:00:ae:04:
c4:70:bb:65:d4:68:5c:17:9b:30:3f:d0:3f:f7:51:d6:e2:80:
41:37:17:8d:ba:20:04:4e:0d:70:13:37:ed:c7:7b:b9:b7:fa:
71:11:92:ec:b3:b6:df:1d:67:f3:40:f7:5c:d6:47:14:6a:8f:
9b:20:00:32:df:63:a9:7e:c0:2f:cb:d6:05:47:ad:d3:3d:c8:
bb:a9:20:f2:67:1f:95:11:4a:31:5c:7a:0f:cf:b1:6a:a1:d2:
3a:db:5c:43:bd:a3:62:f9:78:2f:a5:a2:46:36:60:d8:75:3f:
7b:76:46:68:93:c3:fb:cb:7f:60:6b:50:62:74:67:a4:46:57:
4e:24:9e:b5
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB8M4vzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MDY3ODRjMTA1MDg1YjlkNmFkNWY3M2EwM2IyMGQ5YTVjMTE0Y2FmMB4XDTIyMDUw
NDExMDQxMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTJkNmM4OWM1MmZj
Y2FiN2IxNTc4MTQzYTllNmM2ODVjZDM0YTRmMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALck5BZmKJPpO1f6k8zqhkUhEcIv+2h8oLaUoE7puFDUP0qi
HMlBTdj6nR+1EEpVSjZ6ErnWHBOQZstFjAvJv2cpLtoTmx7goTxFzEu7vZVFWyeg
DKRDkTEhj9m6kbo8jmZy4a0hvXONJsKeauCGHn6xGhQ1krUDG6xm1+E4Gk7h5HCy
zZI/nDV36ydoSErGo6sLRz/utsOf5rxTiKVQgGRWdQMwZ0aL3wY0PmlSweOuogmx
ksuJG+/+ShoW2rfilkk4IpjT2+lHj61XY7nqHmoINLqmIfo103K0iH5mLlJGEoSy
FOLT8Y3KI9sAlwrQpocWLFO/sNFRgwScduWmGL0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRS1sicUvzKt7FXgUOp5saFzTSk8jAfBgNVHSMEGDAWgBRgZ4TBBQhbnWrV
9zoDsg2aXBFMrzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lHZUV3UVVJVzUxcTFmYzZBN0lObWx3UlRLOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvMmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8x
L1V0YkluRkw4eXJleFY0RkRxZWJHaGMwMHBQSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
MmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8xL1lHZUV3UVVJVzUx
cTFmYzZBN0lObWx3UlRLOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC0IFTANBgkqhkiG9w0BAQsFAAOC
AQEAvhpXd9sXy0QFnXt75VorCvnokGk41TkWnv+EQDbvjemekKcIyj9YMb75tOIP
CvEz+W8O0/mIXqhMIiKh6vN8PkDpxAIXvWacjjM9DD9SA1nXKLPwkzJK1A1pxacW
DiKlr1KwLQrmA4CANVul3f+eX1xilc+KCmIISortAK4ExHC7ZdRoXBebMD/QP/dR
1uKAQTcXjbogBE4NcBM37cd7ubf6cRGS7LO23x1n80D3XNZHFGqPmyAAMt9jqX7A
L8vWBUet0z3Iu6kg8mcflRFKMVx6D8+xaqHSOttcQ72jYvl4L6WiRjZg2HU/e3ZG
aJPD+8t/YGtQYnRnpEZXTiSetQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:26 2024 by rpki-client on console-ams.rpki-client.org