Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/64a392-372e-48a6-a0e2-f5ad167d8494/1/UGTTVmpGsTAmrM_5iSd_LXPlQV0.roa
File: UGTTVmpGsTAmrM_5iSd_LXPlQV0.roa (raw, json)
Hash identifier: 7ww7VOYD4g3YdN3pKsqK6mubEs9MadGNyobFHtIbubw=
Subject key identifier: 50:64:D3:56:6A:46:B1:30:26:AC:CF:F9:89:27:7F:2D:73:E5:41:5D
Certificate issuer: /CN=6c0a9614ac4e10e7a2e2a5bc12f8623064c89ef9
Certificate serial: 071FB6EC
Authority key identifier: 6C:0A:96:14:AC:4E:10:E7:A2:E2:A5:BC:12:F8:62:30:64:C8:9E:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bAqWFKxOEOei4qW8EvhiMGTInvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/64a392-372e-48a6-a0e2-f5ad167d8494/1/UGTTVmpGsTAmrM_5iSd_LXPlQV0.roa
Signing time: Sat 01 Jan 2022 08:55:10 +0000
ROA not before: Sat 01 Jan 2022 08:55:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208144
IP address blocks: 45.157.152.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119518956 (0x71fb6ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c0a9614ac4e10e7a2e2a5bc12f8623064c89ef9
Validity
Not Before: Jan 1 08:55:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5064d3566a46b13026accff989277f2d73e5415d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:e6:89:b1:25:30:a6:f5:e3:3e:e0:5d:c6:a7:
d0:2e:fb:44:98:cf:1b:6a:d8:c0:3c:24:69:98:b7:
51:fd:30:68:88:0c:be:67:0f:05:80:a2:e8:db:b3:
a1:50:6b:03:df:59:6d:ef:89:31:fe:e1:65:14:02:
f1:aa:e3:ea:0a:1b:6d:d5:0c:0e:3a:22:71:8c:cc:
a2:69:a9:e4:6e:fc:59:32:2f:97:18:3b:87:ab:54:
bb:76:a3:70:35:0f:f1:37:4f:63:2d:a9:ff:9a:d4:
8d:7c:f7:65:b0:3b:40:c5:6e:b1:6f:d0:42:74:c8:
0b:a6:44:9e:4e:31:a0:69:86:5b:b0:09:4f:91:da:
f7:48:e4:d8:dd:39:0b:d1:9b:a3:76:13:8a:2d:ed:
d6:55:3c:ea:e9:97:f9:d0:fb:f9:af:93:40:e0:ce:
a8:a4:34:a6:b3:44:6a:f9:e5:d7:2b:b0:d7:d3:ae:
d3:9a:0f:8b:ce:e3:38:90:14:13:5c:7b:e0:b5:dc:
64:62:ab:aa:72:bc:b4:87:18:21:a9:bf:5c:26:02:
33:81:7b:b7:d6:e3:4d:d0:63:5b:0a:87:c0:dd:d8:
ea:57:27:12:4b:a0:48:0b:75:c5:97:35:43:fe:18:
2c:91:25:8b:b2:d2:7e:54:bc:b8:7d:ac:ad:c6:7c:
31:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:64:D3:56:6A:46:B1:30:26:AC:CF:F9:89:27:7F:2D:73:E5:41:5D
X509v3 Authority Key Identifier:
keyid:6C:0A:96:14:AC:4E:10:E7:A2:E2:A5:BC:12:F8:62:30:64:C8:9E:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bAqWFKxOEOei4qW8EvhiMGTInvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/64a392-372e-48a6-a0e2-f5ad167d8494/1/UGTTVmpGsTAmrM_5iSd_LXPlQV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/64a392-372e-48a6-a0e2-f5ad167d8494/1/bAqWFKxOEOei4qW8EvhiMGTInvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.152.0/22
Signature Algorithm: sha256WithRSAEncryption
bb:57:59:44:60:b8:00:dd:e1:26:e3:ff:37:ac:b2:06:84:3c:
d0:89:5c:f9:30:22:eb:e4:22:7a:eb:25:75:a2:08:7a:07:a9:
2f:89:a9:21:e8:42:b0:bb:ba:ce:44:23:76:99:08:b6:f1:b2:
65:98:83:2e:44:1c:fe:43:e3:de:de:ff:ec:40:96:e0:2f:65:
06:7f:68:f6:fb:c1:57:a6:45:3e:2b:0f:6c:bc:40:f9:7e:4b:
c4:67:01:fa:25:a6:25:b2:b8:33:c7:58:89:99:1d:7d:b7:be:
84:cd:b9:81:7b:13:ef:15:6a:4f:7e:9f:b8:60:a1:70:82:f3:
63:40:7c:3d:e5:dd:c7:e6:88:dc:39:f9:41:5c:6c:3d:64:6f:
99:e3:82:4a:a7:7d:5b:7d:47:96:87:62:fe:45:38:2d:c0:e8:
3e:18:a0:7b:ac:75:ae:53:d6:06:70:29:a6:5f:2f:29:3b:a3:
4b:6d:d0:fa:bd:54:6d:ee:1b:48:54:f7:9c:a7:79:98:18:27:
fd:b0:bf:33:40:61:7f:16:90:35:1d:be:3b:bb:25:fd:de:1a:
43:06:84:2e:bc:c9:78:a0:a0:d9:e2:ea:9f:d5:8d:74:15:b8:
05:02:e1:f9:10:5f:c0:3b:fd:8f:19:3e:14:60:46:c1:8b:3f:
48:aa:b1:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 00:17:18 2025 by rpki-client