Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/05d8ba-9433-4a2e-bfe6-37b21bab3b00/1/UtRbWD29yVI2S6WxyR82IR3MbVs.roa
File: UtRbWD29yVI2S6WxyR82IR3MbVs.roa (raw, json)
Hash identifier: 00N390Vnr32dEQ+FmiqeFUUx8BrQXpO/XKr2I3Rs05A=
Subject key identifier: 52:D4:5B:58:3D:BD:C9:52:36:4B:A5:B1:C9:1F:36:21:1D:CC:6D:5B
Certificate issuer: /CN=82d7fe7312efb42bd8d1ecd82ac76191ea26c356
Certificate serial: D1A69A
Authority key identifier: 82:D7:FE:73:12:EF:B4:2B:D8:D1:EC:D8:2A:C7:61:91:EA:26:C3:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gtf-cxLvtCvY0ezYKsdhkeomw1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/05d8ba-9433-4a2e-bfe6-37b21bab3b00/1/UtRbWD29yVI2S6WxyR82IR3MbVs.roa
Signing time: Sun 15 May 2022 00:43:41 +0000
ROA not before: Sun 15 May 2022 00:43:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44465
IP address blocks: 92.43.170.0/24 maxlen: 24
92.43.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13739674 (0xd1a69a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82d7fe7312efb42bd8d1ecd82ac76191ea26c356
Validity
Not Before: May 15 00:43:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52d45b583dbdc952364ba5b1c91f36211dcc6d5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7c:b6:9f:84:bf:69:16:14:38:35:91:e8:ad:
7c:ab:8f:62:a5:87:a0:05:64:cf:d4:d1:da:db:e8:
6b:58:e2:e7:81:5c:dd:48:e6:1e:49:5d:8b:c7:b5:
23:cc:aa:47:4f:86:9f:e9:a2:73:26:65:77:cc:e3:
aa:e5:bc:ce:ab:59:63:0d:63:db:51:8f:78:fe:a4:
b7:9c:8e:a2:f6:1a:c8:01:79:73:5f:01:50:ed:58:
75:53:60:00:51:ce:85:6e:f4:76:10:e0:6e:cc:dc:
1a:8c:d1:10:11:45:f7:f2:a3:42:8a:4b:14:6c:4d:
15:b4:84:ee:71:59:ab:08:61:3f:96:03:6c:25:db:
39:5b:79:c0:e9:a9:b9:c6:b4:1b:c0:3e:9d:44:29:
0a:9c:f3:f1:54:07:a8:a9:71:79:6a:25:95:54:a8:
f3:18:81:13:92:7f:7d:da:b3:91:41:1c:21:73:1f:
94:0c:be:03:ab:fb:2b:b7:f4:7a:58:25:03:1c:ef:
72:30:c7:84:cd:40:06:6e:c1:94:8f:ea:c6:76:ae:
ee:92:aa:5a:32:36:b7:64:61:c6:18:e2:d0:79:2b:
3c:fd:4f:a2:9f:5a:f2:63:25:7b:2e:7b:8e:6e:7c:
19:17:15:40:e8:77:5d:e8:cb:e7:5a:49:96:ee:49:
24:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:D4:5B:58:3D:BD:C9:52:36:4B:A5:B1:C9:1F:36:21:1D:CC:6D:5B
X509v3 Authority Key Identifier:
keyid:82:D7:FE:73:12:EF:B4:2B:D8:D1:EC:D8:2A:C7:61:91:EA:26:C3:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gtf-cxLvtCvY0ezYKsdhkeomw1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/05d8ba-9433-4a2e-bfe6-37b21bab3b00/1/UtRbWD29yVI2S6WxyR82IR3MbVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/05d8ba-9433-4a2e-bfe6-37b21bab3b00/1/gtf-cxLvtCvY0ezYKsdhkeomw1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.43.170.0/24
92.43.172.0/24
Signature Algorithm: sha256WithRSAEncryption
10:6e:6e:77:df:d6:26:21:b8:f3:4a:a2:bb:f3:f4:43:7d:71:
08:33:aa:1d:8d:69:4e:e3:e6:c4:db:33:1b:cc:2c:74:75:c9:
8b:1a:c4:9d:6d:89:25:8f:46:54:4f:5d:fc:fd:44:ef:33:b0:
92:34:9b:ac:5a:11:6a:65:96:02:88:1e:f7:07:1f:c5:8c:77:
d9:37:e7:3d:93:68:63:9e:30:bb:a1:5b:37:76:dd:6e:5b:05:
fd:68:cc:c2:d0:86:94:e1:41:59:3b:52:d1:80:8e:81:27:1e:
d9:fa:50:0a:a6:dc:0b:64:ed:ad:af:cc:87:04:ed:00:d4:1e:
07:09:9b:f4:4b:ef:29:d9:d0:5d:5a:ac:ed:8a:7b:68:f4:51:
ac:5f:9d:53:88:8f:36:58:ed:9d:f2:a9:c5:b7:30:f1:5e:c6:
08:22:a2:19:bc:38:fc:10:2a:ca:d1:8f:a0:f9:fd:68:c4:2e:
1c:ae:94:12:b0:7d:2c:31:44:7b:8a:c2:c2:f2:ff:15:c1:da:
ba:de:73:47:5d:f7:45:fd:db:11:a1:71:9f:e0:23:8b:dc:02:
56:fc:96:bc:68:07:fc:ba:0d:09:1e:92:1b:eb:1c:fd:4a:1e:
b8:1f:7c:68:70:8e:66:24:ac:6d:7a:50:9f:fb:c3:f9:8f:5e:
2e:cb:23:c9
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEANGmmjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MmQ3ZmU3MzEyZWZiNDJiZDhkMWVjZDgyYWM3NjE5MWVhMjZjMzU2MB4XDTIyMDUx
NTAwNDM0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTJkNDViNTgzZGJk
Yzk1MjM2NGJhNWIxYzkxZjM2MjExZGNjNmQ1YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANB8tp+Ev2kWFDg1keitfKuPYqWHoAVkz9TR2tvoa1ji54Fc
3UjmHkldi8e1I8yqR0+Gn+micyZld8zjquW8zqtZYw1j21GPeP6kt5yOovYayAF5
c18BUO1YdVNgAFHOhW70dhDgbszcGozREBFF9/KjQopLFGxNFbSE7nFZqwhhP5YD
bCXbOVt5wOmpuca0G8A+nUQpCpzz8VQHqKlxeWollVSo8xiBE5J/fdqzkUEcIXMf
lAy+A6v7K7f0elglAxzvcjDHhM1ABm7BlI/qxnau7pKqWjI2t2Rhxhji0HkrPP1P
op9a8mMley57jm58GRcVQOh3XejL51pJlu5JJDECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRS1FtYPb3JUjZLpbHJHzYhHcxtWzAfBgNVHSMEGDAWgBSC1/5zEu+0K9jR
7Ngqx2GR6ibDVjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2d0Zi1jeEx2dEN2WTBlellLc2Roa2VvbXcxWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGIvMDVkOGJhLTk0MzMtNGEyZS1iZmU2LTM3YjIxYmFiM2IwMC8x
L1V0UmJXRDI5eVZJMlM2V3h5UjgySVIzTWJWcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGIv
MDVkOGJhLTk0MzMtNGEyZS1iZmU2LTM3YjIxYmFiM2IwMC8xL2d0Zi1jeEx2dEN2
WTBlellLc2Roa2VvbXcxWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFwrqgMEAFwrrDANBgkqhkiG9w0B
AQsFAAOCAQEAEG5ud9/WJiG480qiu/P0Q31xCDOqHY1pTuPmxNszG8wsdHXJixrE
nW2JJY9GVE9d/P1E7zOwkjSbrFoRamWWAoge9wcfxYx32TfnPZNoY54wu6FbN3bd
blsF/WjMwtCGlOFBWTtS0YCOgSce2fpQCqbcC2Ttra/MhwTtANQeBwmb9EvvKdnQ
XVqs7Yp7aPRRrF+dU4iPNljtnfKpxbcw8V7GCCKiGbw4/BAqytGPoPn9aMQuHK6U
ErB9LDFEe4rCwvL/FcHaut5zR133Rf3bEaFxn+Aji9wCVvyWvGgH/LoNCR6SG+sc
/UoeuB98aHCOZiSsbXpQn/vD+Y9eLssjyQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:07 2024 by rpki-client on console-fra.rpki-client.org