Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/8LrnBEqPx8R8RNl4Wo74LWu6WIw.roa
File: 8LrnBEqPx8R8RNl4Wo74LWu6WIw.roa (raw, json)
Hash identifier: bXRKUmEMZZh/hGAp8R7ae7KIFsilGMx6Hk1uoWT1DKE=
Subject key identifier: F0:BA:E7:04:4A:8F:C7:C4:7C:44:D9:78:5A:8E:F8:2D:6B:BA:58:8C
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 48DBC82D
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/8LrnBEqPx8R8RNl4Wo74LWu6WIw.roa
Signing time: Mon 07 Feb 2022 08:20:17 +0000
ROA not before: Mon 07 Feb 2022 08:20:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212496
IP address blocks: 146.185.239.0/24 maxlen: 24
46.161.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1222363181 (0x48dbc82d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Feb 7 08:20:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0bae7044a8fc7c47c44d9785a8ef82d6bba588c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4f:46:96:5f:cd:9e:c5:3d:3f:94:9d:cb:4f:
94:2a:e9:45:9f:c2:74:4e:22:01:87:f2:02:c9:41:
3b:e5:ea:11:92:a4:79:fd:4f:38:98:42:d8:3f:d2:
bc:ac:84:8a:f1:cd:12:49:1b:d3:2b:79:7f:9a:4c:
51:55:7b:95:ef:11:8b:10:4c:3c:de:36:4b:d7:d2:
6c:d7:76:1a:b0:87:b3:83:55:02:80:3a:7d:ca:de:
0b:05:82:2c:b5:e1:49:c9:2b:45:ba:45:1d:26:74:
8b:0e:81:75:8b:1a:43:f3:5c:df:01:8c:02:18:7b:
1a:6d:10:02:c7:07:2d:3f:95:ae:4a:71:64:ce:fb:
dc:bd:de:54:79:20:ce:19:5d:87:12:fa:0f:f1:58:
f1:a9:80:d5:04:4d:89:b8:6e:6d:7c:d5:40:53:09:
3c:fc:74:52:4e:52:72:dc:bf:2c:ea:af:7b:b7:03:
14:7f:d7:b8:10:97:e8:71:58:3a:d2:36:ba:aa:8c:
3b:02:c4:d5:db:62:eb:b3:85:6e:74:c4:5f:99:52:
1f:1e:3d:c3:82:80:53:eb:a3:97:08:d4:62:2f:6a:
2b:20:57:3b:dc:ac:96:75:fb:9b:44:07:2c:b8:1d:
57:5b:52:fc:86:98:7e:33:f7:65:35:b3:85:5b:5e:
fd:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:BA:E7:04:4A:8F:C7:C4:7C:44:D9:78:5A:8E:F8:2D:6B:BA:58:8C
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/8LrnBEqPx8R8RNl4Wo74LWu6WIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.161.30.0/24
146.185.239.0/24
Signature Algorithm: sha256WithRSAEncryption
79:95:26:80:1a:a2:55:b0:34:52:32:9c:d0:ec:f2:64:e8:d7:
a0:b1:5b:09:b9:ac:38:06:31:dd:e7:8f:29:87:f5:74:34:2f:
da:e3:03:97:19:26:9e:1e:dc:4c:a1:e3:88:79:b9:1d:ed:14:
3e:1f:30:94:68:37:11:b3:76:6f:f5:61:2a:3e:98:cd:00:41:
33:b6:f7:4f:0f:24:9e:ef:70:e5:7d:ec:7b:5c:82:9a:e5:b5:
c9:da:ae:ab:cf:f2:68:d6:d0:03:08:6e:5d:86:0e:f6:19:f1:
5d:2a:73:c0:a4:35:5a:62:62:0f:ab:d4:66:ef:56:47:03:65:
4c:f3:da:35:f7:8a:06:f6:d3:ec:13:9f:65:39:b1:54:91:51:
2e:7a:f6:45:3d:86:6d:05:ad:47:80:4a:2a:24:55:06:96:13:
8d:d0:97:f6:ed:96:8f:e9:40:50:81:a7:7d:9c:6d:61:c5:0e:
1c:e7:54:43:71:6b:6a:c9:2b:ce:58:6a:0a:73:2b:4b:a7:ec:
9f:e5:44:9e:98:16:ab:0e:16:70:fe:f5:3d:05:5c:80:13:c0:
34:ab:14:31:42:20:ef:b9:94:b7:af:6b:c2:d1:df:a3:2b:41:
d0:61:e0:57:3a:6a:b4:43:30:71:c9:df:50:5f:d7:22:c3:7a:
88:3d:ee:4f
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIESNvILTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YWFhOGEwYTVmZGZkNjk4ZTEwNGJlMzZhMmFlZWM4MTNhZWNhMDcxMB4XDTIyMDIw
NzA4MjAxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjBiYWU3MDQ0YThm
YzdjNDdjNDRkOTc4NWE4ZWY4MmQ2YmJhNTg4YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANhPRpZfzZ7FPT+UnctPlCrpRZ/CdE4iAYfyAslBO+XqEZKk
ef1POJhC2D/SvKyEivHNEkkb0yt5f5pMUVV7le8RixBMPN42S9fSbNd2GrCHs4NV
AoA6fcreCwWCLLXhSckrRbpFHSZ0iw6BdYsaQ/Nc3wGMAhh7Gm0QAscHLT+Vrkpx
ZM773L3eVHkgzhldhxL6D/FY8amA1QRNibhubXzVQFMJPPx0Uk5Scty/LOqve7cD
FH/XuBCX6HFYOtI2uqqMOwLE1dti67OFbnTEX5lSHx49w4KAU+ujlwjUYi9qKyBX
O9yslnX7m0QHLLgdV1tS/IaYfjP3ZTWzhVte/fECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTwuucESo/HxHxE2Xhajvgta7pYjDAfBgNVHSMEGDAWgBTqqooKX9/WmOEE
vjairuyBOuygcTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZxcUtDbF9mMXBqaEJMNDJvcTdzZ1Ryc29IRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWMvMjkzMmRmLWE0YmQtNGFmNS1hNGQ0LTg5ZDA5MjQwYzQzYi8x
LzhMcm5CRXFQeDhSOFJObDRXbzc0TFd1NldJdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWMv
MjkzMmRmLWE0YmQtNGFmNS1hNGQ0LTg5ZDA5MjQwYzQzYi8xLzZxcUtDbF9mMXBq
aEJMNDJvcTdzZ1Ryc29IRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAC6hHgMEAJK57zANBgkqhkiG9w0B
AQsFAAOCAQEAeZUmgBqiVbA0UjKc0OzyZOjXoLFbCbmsOAYx3eePKYf1dDQv2uMD
lxkmnh7cTKHjiHm5He0UPh8wlGg3EbN2b/VhKj6YzQBBM7b3Tw8knu9w5X3se1yC
muW1ydquq8/yaNbQAwhuXYYO9hnxXSpzwKQ1WmJiD6vUZu9WRwNlTPPaNfeKBvbT
7BOfZTmxVJFRLnr2RT2GbQWtR4BKKiRVBpYTjdCX9u2Wj+lAUIGnfZxtYcUOHOdU
Q3FraskrzlhqCnMrS6fsn+VEnpgWqw4WcP71PQVcgBPANKsUMUIg77mUt69rwtHf
oytB0GHgVzpqtEMwccnfUF/XIsN6iD3uTw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:28 2024 by rpki-client on console-fra.rpki-client.org