Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/1a8d98-34c9-4d26-97dc-48731b3c03a4/1/h4pSBqut8OZebPED4Aev80o5slg.roa
File: h4pSBqut8OZebPED4Aev80o5slg.roa (raw, json)
Hash identifier: 7cYh0k2Mi12Tx49VV7Hu5AZ72wfPhSUpoKiWJTZeVCE=
Subject key identifier: 87:8A:52:06:AB:AD:F0:E6:5E:6C:F1:03:E0:07:AF:F3:4A:39:B2:58
Certificate issuer: /CN=535db143e906aa20e5782907f845d4a76962ff7b
Certificate serial: 03DAF0DE
Authority key identifier: 53:5D:B1:43:E9:06:AA:20:E5:78:29:07:F8:45:D4:A7:69:62:FF:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U12xQ-kGqiDleCkH-EXUp2li_3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/1a8d98-34c9-4d26-97dc-48731b3c03a4/1/h4pSBqut8OZebPED4Aev80o5slg.roa
Signing time: Sat 01 Jan 2022 04:55:59 +0000
ROA not before: Sat 01 Jan 2022 04:55:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51785
IP address blocks: 46.18.248.0/24 maxlen: 24
46.18.249.0/24 maxlen: 24
46.18.248.0/21 maxlen: 21
46.18.248.0/23 maxlen: 23
46.18.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64680158 (0x3daf0de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535db143e906aa20e5782907f845d4a76962ff7b
Validity
Not Before: Jan 1 04:55:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=878a5206abadf0e65e6cf103e007aff34a39b258
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:9f:ae:d8:a8:0d:17:00:18:13:52:a1:c8:a2:
84:7e:21:68:2d:73:13:4f:46:27:6f:62:d1:a5:75:
1c:4c:81:45:30:5f:61:68:9b:65:67:e0:9a:46:82:
b1:a9:e2:d4:63:ba:80:fe:90:0a:71:e0:a6:af:1a:
92:91:cb:a1:d2:e5:9b:7c:45:b0:5a:85:a1:fa:17:
08:30:27:71:65:1c:7f:c0:b5:42:9f:8c:11:98:48:
34:72:a0:22:d2:c0:c5:e7:fc:e0:50:8f:f4:c4:a6:
fe:2a:ee:0c:f5:d2:19:26:32:62:dd:72:96:0e:e5:
af:eb:32:63:0b:55:76:c8:b5:54:9f:8f:e4:41:2d:
b4:b2:4a:43:8e:b8:ca:a9:21:b9:6e:03:20:60:96:
10:8c:6b:7a:10:5e:e7:cc:9d:09:00:8e:9e:c4:39:
6a:f2:57:be:85:33:43:1e:97:d7:9d:5e:ab:09:a2:
ea:d0:1d:22:a5:c2:c3:cd:4f:92:46:b6:08:86:df:
48:e3:f4:72:a4:29:7c:4d:47:6f:b6:3c:d3:95:36:
c0:d5:8d:0b:a4:13:cc:9a:2c:8b:ec:e1:d2:d5:df:
ab:40:1f:fc:78:9a:48:51:4e:d7:db:2b:37:d3:95:
be:d8:5c:f1:0d:b7:ce:b1:7f:16:99:f2:63:b8:05:
03:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:8A:52:06:AB:AD:F0:E6:5E:6C:F1:03:E0:07:AF:F3:4A:39:B2:58
X509v3 Authority Key Identifier:
keyid:53:5D:B1:43:E9:06:AA:20:E5:78:29:07:F8:45:D4:A7:69:62:FF:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U12xQ-kGqiDleCkH-EXUp2li_3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/1a8d98-34c9-4d26-97dc-48731b3c03a4/1/h4pSBqut8OZebPED4Aev80o5slg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/1a8d98-34c9-4d26-97dc-48731b3c03a4/1/U12xQ-kGqiDleCkH-EXUp2li_3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.18.248.0/21
Signature Algorithm: sha256WithRSAEncryption
33:97:86:12:28:15:11:71:67:69:c1:49:d6:14:bc:6d:8c:33:
68:51:65:3d:cd:63:a2:1b:73:5e:49:c0:1b:82:41:80:9e:2b:
ff:6e:42:d2:68:6f:1f:26:c9:79:5d:b3:d6:29:b9:85:00:30:
96:5a:a0:dd:b5:48:68:70:e7:bf:85:7c:fd:ff:cd:cf:ff:af:
63:a0:f3:c0:eb:a2:bf:b3:57:5e:9e:82:de:55:f6:37:0f:f9:
38:9c:c4:3a:76:74:f3:eb:7a:b3:39:3d:f1:c3:d6:f2:27:57:
90:21:3f:22:44:b5:41:95:b0:7e:94:41:14:20:be:9b:6a:5f:
60:d0:c2:68:70:ca:48:35:cd:77:34:86:66:f3:2a:1a:dc:ce:
1c:38:35:b4:cb:28:b6:06:3d:aa:f4:0c:e6:55:cb:63:60:58:
71:ec:cf:12:e7:19:8c:a5:52:ff:af:6a:8f:0c:cf:52:79:a8:
d0:40:4f:d3:50:95:c5:29:cf:f7:06:cc:8e:2e:bb:40:cf:42:
2b:94:3f:47:7a:39:74:76:ea:c9:9e:59:27:0a:71:c7:ce:c4:
dd:9b:83:6f:03:4f:1f:6c:ef:d9:73:69:bd:0d:9e:be:90:e4:
68:ad:80:18:86:9a:b2:e5:87:94:ac:da:bb:b4:38:ca:26:80:
9b:81:94:a5
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA9rw3jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MzVkYjE0M2U5MDZhYTIwZTU3ODI5MDdmODQ1ZDRhNzY5NjJmZjdiMB4XDTIyMDEw
MTA0NTU1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODc4YTUyMDZhYmFk
ZjBlNjVlNmNmMTAzZTAwN2FmZjM0YTM5YjI1ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJSfrtioDRcAGBNSociihH4haC1zE09GJ29i0aV1HEyBRTBf
YWibZWfgmkaCsani1GO6gP6QCnHgpq8akpHLodLlm3xFsFqFofoXCDAncWUcf8C1
Qp+MEZhINHKgItLAxef84FCP9MSm/iruDPXSGSYyYt1ylg7lr+syYwtVdsi1VJ+P
5EEttLJKQ464yqkhuW4DIGCWEIxrehBe58ydCQCOnsQ5avJXvoUzQx6X151eqwmi
6tAdIqXCw81Pkka2CIbfSOP0cqQpfE1Hb7Y805U2wNWNC6QTzJosi+zh0tXfq0Af
/HiaSFFO19srN9OVvthc8Q23zrF/FpnyY7gFA4UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSHilIGq63w5l5s8QPgB6/zSjmyWDAfBgNVHSMEGDAWgBRTXbFD6QaqIOV4
KQf4RdSnaWL/ezAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1UxMnhRLWtHcWlEbGVDa0gtRVhVcDJsaV8zcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODcvMWE4ZDk4LTM0YzktNGQyNi05N2RjLTQ4NzMxYjNjMDNhNC8x
L2g0cFNCcXV0OE9aZWJQRUQ0QWV2ODBvNXNsZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcv
MWE4ZDk4LTM0YzktNGQyNi05N2RjLTQ4NzMxYjNjMDNhNC8xL1UxMnhRLWtHcWlE
bGVDa0gtRVhVcDJsaV8zcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAy4S+DANBgkqhkiG9w0BAQsFAAOC
AQEAM5eGEigVEXFnacFJ1hS8bYwzaFFlPc1johtzXknAG4JBgJ4r/25C0mhvHybJ
eV2z1im5hQAwllqg3bVIaHDnv4V8/f/Nz/+vY6DzwOuiv7NXXp6C3lX2Nw/5OJzE
OnZ08+t6szk98cPW8idXkCE/IkS1QZWwfpRBFCC+m2pfYNDCaHDKSDXNdzSGZvMq
GtzOHDg1tMsotgY9qvQM5lXLY2BYcezPEucZjKVS/69qjwzPUnmo0EBP01CVxSnP
9wbMji67QM9CK5Q/R3o5dHbqyZ5ZJwpxx87E3ZuDbwNPH2zv2XNpvQ2evpDkaK2A
GIaasuWHlKzau7Q4yiaAm4GUpQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:42 2024 by rpki-client on console-ams.rpki-client.org