Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/bn2C19MP4bd7Fc2uwD5P8ncDSgk.roa
File: bn2C19MP4bd7Fc2uwD5P8ncDSgk.roa (raw, json)
Hash identifier: dV4NJ0hXQZUMIf8ififqqhO372HwBmNKJdWhjKQwfE8=
Subject key identifier: 6E:7D:82:D7:D3:0F:E1:B7:7B:15:CD:AE:C0:3E:4F:F2:77:03:4A:09
Certificate issuer: /CN=a2f974efb50e729c9e015a8bc2b6c2b0619dfc84
Certificate serial: 018419D133CF6A5141A14590F91E458139A1
Authority key identifier: A2:F9:74:EF:B5:0E:72:9C:9E:01:5A:8B:C2:B6:C2:B0:61:9D:FC:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ovl077UOcpyeAVqLwrbCsGGd_IQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/bn2C19MP4bd7Fc2uwD5P8ncDSgk.roa
Signing time: Thu 27 Oct 2022 14:20:51 +0000
ROA not before: Thu 27 Oct 2022 14:20:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39480
IP address blocks: 46.182.72.0/21 maxlen: 21
195.225.204.0/23 maxlen: 23
195.225.206.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:19:d1:33:cf:6a:51:41:a1:45:90:f9:1e:45:81:39:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2f974efb50e729c9e015a8bc2b6c2b0619dfc84
Validity
Not Before: Oct 27 14:20:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e7d82d7d30fe1b77b15cdaec03e4ff277034a09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:49:f2:3e:f9:f8:97:3c:a2:58:f5:2b:a8:71:
20:ef:bc:0b:44:34:76:e2:e1:33:90:d5:c0:b7:25:
39:71:da:dc:6c:34:31:b3:ca:70:63:4e:76:60:4a:
89:5e:8f:00:66:d2:61:f2:69:7f:1c:08:bf:8c:e2:
a3:40:53:6c:2f:02:18:bc:53:c3:c0:03:cd:a7:c0:
e2:9d:e6:40:56:d6:2d:1b:89:bd:5c:33:a7:51:02:
7e:34:34:bf:5c:2a:a1:c4:f1:00:99:08:67:86:ef:
b2:ab:e5:eb:70:51:12:b7:b7:d3:cc:c3:24:e8:74:
91:d8:8d:66:e6:3f:45:4a:43:5f:b5:59:35:30:8d:
7c:ec:3a:04:4b:20:d7:9d:32:a7:11:db:c7:b7:d2:
91:f3:04:41:b1:df:11:57:af:b3:ab:f1:5b:66:76:
79:2a:37:03:1d:61:73:a6:8c:a9:83:ca:9c:38:e8:
86:7d:9c:6d:ad:1e:ec:e2:c9:30:3b:41:dd:3e:f7:
38:3e:6e:38:5c:ce:97:48:b4:6a:72:74:3d:bf:fc:
71:1f:51:25:ad:e0:ca:45:01:b7:f1:17:c5:b2:b6:
f5:2a:71:75:a5:f2:f9:ea:ea:7a:99:63:73:c3:b6:
95:1b:ee:ba:ff:61:d8:15:84:14:bb:62:dd:67:6e:
87:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:7D:82:D7:D3:0F:E1:B7:7B:15:CD:AE:C0:3E:4F:F2:77:03:4A:09
X509v3 Authority Key Identifier:
keyid:A2:F9:74:EF:B5:0E:72:9C:9E:01:5A:8B:C2:B6:C2:B0:61:9D:FC:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ovl077UOcpyeAVqLwrbCsGGd_IQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/bn2C19MP4bd7Fc2uwD5P8ncDSgk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.182.72.0/21
195.225.204.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:e8:a9:1b:d8:7c:89:5b:73:6e:50:ff:f0:ba:73:77:3b:98:
bb:3d:52:f1:7e:c0:b5:e8:54:80:26:04:16:e6:67:01:b7:6e:
b2:79:8f:f1:61:6c:9d:a1:a0:56:50:09:fb:89:bf:3f:f0:1a:
e0:54:a7:6f:da:33:5b:2a:35:6f:51:5f:0b:84:7b:18:27:91:
6b:49:38:81:17:50:c9:7c:68:ca:77:0f:b2:1b:8e:80:7c:04:
84:5b:8a:70:7b:0a:bd:78:d2:1e:87:3d:55:f8:64:1f:35:7f:
4f:b0:7a:d0:da:51:50:22:69:7c:8a:f4:e7:52:3c:f3:bb:33:
80:83:70:ac:62:4a:40:74:92:a0:b1:d4:66:32:c4:14:59:c9:
ae:d4:c9:6c:e9:d4:3d:ed:07:a9:3f:21:0b:bd:1e:89:ca:61:
58:da:cf:41:0e:dc:e9:46:9e:4f:d5:2b:ea:6f:92:80:10:4e:
3f:38:a9:25:02:9d:cb:c6:09:70:ec:03:e7:69:61:98:37:48:
7e:35:d6:1a:4e:38:ed:ad:5d:7d:84:ed:6c:56:a3:b8:30:64:
3c:14:18:ee:fc:2f:a7:08:dd:bb:a6:c1:ca:41:02:69:95:05:
ed:91:66:96:c8:d9:9b:c5:97:a1:8d:48:7a:52:f2:21:3e:68:
10:a2:37:8a
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYQZ0TPPalFBoUWQ+R5FgTmhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyZjk3NGVmYjUwZTcyOWM5ZTAxNWE4YmMyYjZjMmIwNjE5
ZGZjODQwHhcNMjIxMDI3MTQyMDUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZTdkODJkN2QzMGZlMWI3N2IxNWNkYWVjMDNlNGZmMjc3MDM0YTA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnUnyPvn4lzyiWPUrqHEg77wLRDR2
4uEzkNXAtyU5cdrcbDQxs8pwY052YEqJXo8AZtJh8ml/HAi/jOKjQFNsLwIYvFPD
wAPNp8DineZAVtYtG4m9XDOnUQJ+NDS/XCqhxPEAmQhnhu+yq+XrcFESt7fTzMMk
6HSR2I1m5j9FSkNftVk1MI187DoESyDXnTKnEdvHt9KR8wRBsd8RV6+zq/FbZnZ5
KjcDHWFzpoypg8qcOOiGfZxtrR7s4skwO0HdPvc4Pm44XM6XSLRqcnQ9v/xxH1El
reDKRQG38RfFsrb1KnF1pfL56up6mWNzw7aVG+66/2HYFYQUu2LdZ26H2wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFG59gtfTD+G3exXNrsA+T/J3A0oJMB8GA1UdIwQY
MBaAFKL5dO+1DnKcngFai8K2wrBhnfyEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3ZsMDc3VU9jcHllQVZxTHdyYkNzR0dkX0lRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC82NjgzNDUtZjViYy00YTNmLWI2ZmYt
MTBkZjQ5ZjY1NjE2LzEvYm4yQzE5TVA0YmQ3RmMydXdENVA4bmNEU2drLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC82NjgzNDUtZjViYy00YTNmLWI2ZmYtMTBkZjQ5ZjY1NjE2
LzEvb3ZsMDc3VU9jcHllQVZxTHdyYkNzR0dkX0lRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDLrZIAwQC
w+HMMA0GCSqGSIb3DQEBCwUAA4IBAQAL6Kkb2HyJW3NuUP/wunN3O5i7PVLxfsC1
6FSAJgQW5mcBt26yeY/xYWydoaBWUAn7ib8/8BrgVKdv2jNbKjVvUV8LhHsYJ5Fr
STiBF1DJfGjKdw+yG46AfASEW4pwewq9eNIehz1V+GQfNX9PsHrQ2lFQIml8ivTn
UjzzuzOAg3CsYkpAdJKgsdRmMsQUWcmu1Mls6dQ97QepPyELvR6JymFY2s9BDtzp
Rp5P1Svqb5KAEE4/OKklAp3Lxglw7APnaWGYN0h+NdYaTjjtrV19hO1sVqO4MGQ8
FBju/C+nCN27psHKQQJplQXtkWaWyNmbxZehjUh6UvIhPmgQojeK
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:44 2024 by rpki-client on console-ams.rpki-client.org