Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/4EJ3Xbtv1BWAy0Ud8vBMN-mI_ns.roa
File: 4EJ3Xbtv1BWAy0Ud8vBMN-mI_ns.roa (raw, json)
Hash identifier: LJFRX+pyoryeB6mPDpQfXr1fYPYzIZ+H1g+vnjtqjVo=
Subject key identifier: E0:42:77:5D:BB:6F:D4:15:80:CB:45:1D:F2:F0:4C:37:E9:88:FE:7B
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 42A85844
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/4EJ3Xbtv1BWAy0Ud8vBMN-mI_ns.roa
Signing time: Sat 01 Jan 2022 06:05:06 +0000
ROA not before: Sat 01 Jan 2022 06:05:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205060
IP address blocks: 46.61.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1118328900 (0x42a85844)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 1 06:05:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e042775dbb6fd41580cb451df2f04c37e988fe7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d3:75:35:29:25:d3:f4:08:b8:0d:46:ee:53:
e7:c9:68:cb:20:ab:ed:ce:9b:cc:0c:8b:3b:ec:e5:
2d:4f:46:ea:aa:7c:f0:f0:8d:f1:1b:e5:93:97:aa:
a5:5c:09:5a:e4:99:1a:b1:a4:e5:1a:84:b7:cb:ca:
d3:1c:79:8b:4f:b4:1e:aa:54:17:96:e0:08:47:c6:
88:05:82:2f:a0:b8:59:f1:bf:6c:ec:d7:13:47:e8:
81:53:13:45:5b:48:4f:93:dd:18:ff:87:ca:fd:4e:
2f:30:01:bc:2a:60:33:de:ee:6c:49:7a:1d:f2:3a:
15:dd:2e:5c:41:42:eb:a6:af:0c:d6:3d:91:14:ad:
58:4c:6a:d7:89:8e:b8:6f:97:22:43:0e:7c:b3:d7:
63:01:37:1b:f6:c7:3a:be:38:e7:e2:81:9c:ed:ae:
72:bb:5d:96:df:4e:76:7f:77:ec:24:24:55:22:d7:
58:0c:41:03:18:f4:c8:4f:e3:60:4d:94:15:4e:23:
a0:d2:d7:30:cb:de:3a:15:b5:e5:76:1f:15:24:27:
25:7b:f7:45:3f:5a:64:c2:b4:42:9a:c6:7e:95:af:
a7:88:72:5f:60:35:e7:ab:06:1a:dc:30:8c:cf:51:
3e:9b:24:7b:0f:91:bf:7f:f3:e7:b0:22:77:89:85:
7a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:42:77:5D:BB:6F:D4:15:80:CB:45:1D:F2:F0:4C:37:E9:88:FE:7B
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/4EJ3Xbtv1BWAy0Ud8vBMN-mI_ns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.61.209.0/24
Signature Algorithm: sha256WithRSAEncryption
19:3e:3f:37:a4:97:ac:15:32:68:95:79:39:51:8e:ae:99:00:
2e:b5:31:8c:7e:8e:95:94:fe:7a:98:73:99:9e:a4:ed:fa:f9:
09:66:d9:77:ca:2e:a3:6b:2c:8d:b0:03:5c:b3:9f:f5:23:2a:
f7:90:05:dc:a1:b5:60:93:33:53:5c:eb:1c:60:bf:ae:75:0c:
df:5d:3b:ad:f6:1e:b9:e0:1c:0e:07:ac:b8:7b:9d:99:6d:b2:
41:a8:75:ea:26:14:1b:ea:e5:d9:e1:60:79:cd:1d:a7:aa:87:
89:54:8d:3c:15:4e:d9:95:9d:63:79:03:0c:9d:a4:98:a6:e8:
6a:50:74:7c:6b:f3:96:79:e4:5f:65:2b:5d:11:6c:95:4a:a7:
a9:92:82:5b:e2:4f:24:08:5c:a1:dd:c1:bf:0d:ea:53:8c:a7:
b0:c0:17:35:82:91:e3:35:f1:9b:d8:c7:e9:1f:eb:80:8c:44:
d9:99:f1:7e:b9:0a:56:75:1f:32:ea:a5:f0:42:39:6e:5d:18:
0e:86:c9:da:b9:54:96:3b:8e:4a:46:76:7a:b2:4e:1c:b8:08:
18:2e:f9:89:1e:d0:04:36:af:15:3e:b6:05:d0:8b:f0:9a:d6:
9e:16:4d:d9:b3:33:9a:10:ca:46:14:b5:07:fc:8d:a7:fd:be:
a1:80:70:2e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEQqhYRDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZWU1MzFiOWFjMjk5MGQ2OWE4YTVjMzAyM2U3MmU2ZDg0MWU2YzA5MB4XDTIyMDEw
MTA2MDUwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTA0Mjc3NWRiYjZm
ZDQxNTgwY2I0NTFkZjJmMDRjMzdlOTg4ZmU3YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALXTdTUpJdP0CLgNRu5T58loyyCr7c6bzAyLO+zlLU9G6qp8
8PCN8Rvlk5eqpVwJWuSZGrGk5RqEt8vK0xx5i0+0HqpUF5bgCEfGiAWCL6C4WfG/
bOzXE0fogVMTRVtIT5PdGP+Hyv1OLzABvCpgM97ubEl6HfI6Fd0uXEFC66avDNY9
kRStWExq14mOuG+XIkMOfLPXYwE3G/bHOr445+KBnO2ucrtdlt9Odn937CQkVSLX
WAxBAxj0yE/jYE2UFU4joNLXMMveOhW15XYfFSQnJXv3RT9aZMK0QprGfpWvp4hy
X2A156sGGtwwjM9RPpskew+Rv3/z57Aid4mFeg8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTgQnddu2/UFYDLRR3y8Ew36Yj+ezAfBgNVHSMEGDAWgBRe5TG5rCmQ1pqK
XDAj5y5thB5sCTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1h1VXh1YXdwa05hYWlsd3dJLWN1YllRZWJBay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmQvOWExZDQ0LTg2MDktNGU1ZS1iYTk0LTVhODZjMjc1N2MxZS8x
LzRFSjNYYnR2MUJXQXkwVWQ4dkJNTi1tSV9ucy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmQv
OWExZDQ0LTg2MDktNGU1ZS1iYTk0LTVhODZjMjc1N2MxZS8xL1h1VXh1YXdwa05h
YWlsd3dJLWN1YllRZWJBay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC490TANBgkqhkiG9w0BAQsFAAOC
AQEAGT4/N6SXrBUyaJV5OVGOrpkALrUxjH6OlZT+ephzmZ6k7fr5CWbZd8ouo2ss
jbADXLOf9SMq95AF3KG1YJMzU1zrHGC/rnUM3107rfYeueAcDgesuHudmW2yQah1
6iYUG+rl2eFgec0dp6qHiVSNPBVO2ZWdY3kDDJ2kmKboalB0fGvzlnnkX2UrXRFs
lUqnqZKCW+JPJAhcod3Bvw3qU4ynsMAXNYKR4zXxm9jH6R/rgIxE2ZnxfrkKVnUf
Muql8EI5bl0YDobJ2rlUljuOSkZ2erJOHLgIGC75iR7QBDavFT62BdCL8JrWnhZN
2bMzmhDKRhS1B/yNp/2+oYBwLg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:55 2024 by rpki-client on console-fra.rpki-client.org