Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/83aa8c-0581-44d8-a5c1-05373ba9483d/1/es4RQYdJRpVRGzLvuwKx3dDfhRo.roa
File: es4RQYdJRpVRGzLvuwKx3dDfhRo.roa (raw, json)
Hash identifier: XLexxU+QfwQMV6kUYpo5ZUlyp4usPxed2QxrLYG5qAM=
Subject key identifier: 7A:CE:11:41:87:49:46:95:51:1B:32:EF:BB:02:B1:DD:D0:DF:85:1A
Certificate issuer: /CN=01723506718dfcf2a8bd176d4ea24e275322fcfb
Certificate serial: 06B4B11C
Authority key identifier: 01:72:35:06:71:8D:FC:F2:A8:BD:17:6D:4E:A2:4E:27:53:22:FC:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AXI1BnGN_PKovRdtTqJOJ1Mi_Ps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/83aa8c-0581-44d8-a5c1-05373ba9483d/1/es4RQYdJRpVRGzLvuwKx3dDfhRo.roa
Signing time: Sat 01 Jan 2022 12:00:28 +0000
ROA not before: Sat 01 Jan 2022 12:00:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56911
IP address blocks: 185.111.76.0/22 maxlen: 24
46.149.168.0/22 maxlen: 24
2a0d:f7c0::/32 maxlen: 34
2a06:5bc0::/29 maxlen: 34
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112505116 (0x6b4b11c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01723506718dfcf2a8bd176d4ea24e275322fcfb
Validity
Not Before: Jan 1 12:00:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ace114187494695511b32efbb02b1ddd0df851a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:df:9b:25:68:4b:52:db:22:94:4f:4d:d9:98:
60:45:2b:12:da:ff:e0:d1:f4:02:0d:d1:81:57:b5:
29:98:fa:e2:62:60:86:f6:eb:57:72:be:f2:d2:3d:
9a:06:9a:70:cc:3a:79:1d:e7:eb:ee:3d:51:d3:ac:
25:95:a5:ef:f1:27:9d:71:36:9f:e6:c7:93:e8:ce:
03:aa:55:14:44:1a:bb:c0:1b:75:ae:4a:6e:64:d3:
29:fa:37:1f:d2:a0:73:ed:1c:18:96:aa:7f:ed:d3:
cb:4d:16:ef:4e:f1:b7:58:c7:31:0e:18:3f:94:17:
ee:a7:99:58:d0:93:e7:a5:c0:b1:76:0f:b9:b5:b7:
72:8e:b9:7c:a2:25:a8:7a:ff:b5:62:8d:ae:b9:2b:
cd:be:4d:80:ea:60:ce:30:2d:d9:c9:bd:4d:79:aa:
57:90:91:e1:6d:4c:41:2a:1f:bc:e0:3a:36:d1:fa:
c5:26:77:fd:84:03:55:16:1c:83:6e:57:8e:ef:fc:
0b:b9:c8:5c:86:20:37:a0:2f:9a:6f:d8:73:03:55:
e1:a7:c0:ff:50:1a:de:11:8e:05:4c:74:4c:8d:1a:
7e:11:4b:07:85:e3:d8:3e:52:3b:33:91:19:00:3c:
e0:d0:17:eb:d9:26:84:54:ed:f5:96:11:51:c9:88:
8c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:CE:11:41:87:49:46:95:51:1B:32:EF:BB:02:B1:DD:D0:DF:85:1A
X509v3 Authority Key Identifier:
keyid:01:72:35:06:71:8D:FC:F2:A8:BD:17:6D:4E:A2:4E:27:53:22:FC:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AXI1BnGN_PKovRdtTqJOJ1Mi_Ps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/83aa8c-0581-44d8-a5c1-05373ba9483d/1/es4RQYdJRpVRGzLvuwKx3dDfhRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/83aa8c-0581-44d8-a5c1-05373ba9483d/1/AXI1BnGN_PKovRdtTqJOJ1Mi_Ps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.149.168.0/22
185.111.76.0/22
IPv6:
2a06:5bc0::/29
2a0d:f7c0::/32
Signature Algorithm: sha256WithRSAEncryption
5f:20:d4:56:c8:0b:72:52:d8:11:86:a5:07:32:4b:f4:73:e8:
bb:88:78:38:c1:93:fc:78:91:52:8d:3a:26:33:61:90:da:75:
07:27:bd:b9:d7:ab:65:27:3a:91:88:40:0b:fb:27:17:08:76:
da:9e:7d:13:66:dc:3a:a3:ea:d0:55:a0:8a:77:22:1c:c5:45:
8c:13:32:23:e0:ec:cf:a5:fb:ed:46:26:72:a6:9c:6c:58:65:
a6:a6:bd:d6:6f:b9:25:93:3e:fe:af:e6:eb:79:7a:14:f2:e0:
4f:14:9d:26:ae:a5:2f:70:c4:d4:d8:ab:ad:38:37:93:28:7f:
35:91:7f:e0:0f:15:17:41:11:7e:3b:ea:34:b4:6a:b5:b5:52:
2f:4c:04:f2:c2:21:f0:0c:c7:f7:1e:c2:1e:c0:34:f0:16:f4:
c5:03:73:be:08:df:87:c1:fb:78:de:23:e0:4b:16:7b:92:a3:
7f:b5:b9:51:c5:07:0e:76:23:02:df:e6:5f:35:1f:ac:af:d2:
be:94:b0:6d:7d:f9:e8:10:e4:9a:b5:3c:3d:b3:7e:f6:f9:c7:
7a:99:bc:69:72:b9:43:56:c6:b9:cf:83:de:9d:0b:ec:e7:20:
39:b9:90:96:4d:a7:69:b0:82:ef:91:fb:d2:ec:79:01:46:66:
fe:63:f8:38
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgIEBrSxHDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MTcyMzUwNjcxOGRmY2YyYThiZDE3NmQ0ZWEyNGUyNzUzMjJmY2ZiMB4XDTIyMDEw
MTEyMDAyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2FjZTExNDE4NzQ5
NDY5NTUxMWIzMmVmYmIwMmIxZGRkMGRmODUxYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANDfmyVoS1LbIpRPTdmYYEUrEtr/4NH0Ag3RgVe1KZj64mJg
hvbrV3K+8tI9mgaacMw6eR3n6+49UdOsJZWl7/EnnXE2n+bHk+jOA6pVFEQau8Ab
da5KbmTTKfo3H9Kgc+0cGJaqf+3Ty00W707xt1jHMQ4YP5QX7qeZWNCT56XAsXYP
ubW3co65fKIlqHr/tWKNrrkrzb5NgOpgzjAt2cm9TXmqV5CR4W1MQSofvOA6NtH6
xSZ3/YQDVRYcg25Xju/8C7nIXIYgN6Avmm/YcwNV4afA/1Aa3hGOBUx0TI0afhFL
B4Xj2D5SOzORGQA84NAX69kmhFTt9ZYRUcmIjEcCAwEAAaOCAiUwggIhMB0GA1Ud
DgQWBBR6zhFBh0lGlVEbMu+7ArHd0N+FGjAfBgNVHSMEGDAWgBQBcjUGcY388qi9
F21Ook4nUyL8+zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0FYSTFCbkdOX1BLb3ZSZHRUcUpPSjFNaV9Qcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWYvODNhYThjLTA1ODEtNDRkOC1hNWMxLTA1MzczYmE5NDgzZC8x
L2VzNFJRWWRKUnBWUkd6THZ1d0t4M2REZmhSby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWYv
ODNhYThjLTA1ODEtNDRkOC1hNWMxLTA1MzczYmE5NDgzZC8xL0FYSTFCbkdOX1BL
b3ZSZHRUcUpPSjFNaV9Qcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA7
BggrBgEFBQcBBwEB/wQsMCowEgQCAAEwDAMEAi6VqAMEArlvTDAUBAIAAjAOAwUD
KgZbwAMFACoN98AwDQYJKoZIhvcNAQELBQADggEBAF8g1FbIC3JS2BGGpQcyS/Rz
6LuIeDjBk/x4kVKNOiYzYZDadQcnvbnXq2UnOpGIQAv7JxcIdtqefRNm3Dqj6tBV
oIp3IhzFRYwTMiPg7M+l++1GJnKmnGxYZaamvdZvuSWTPv6v5ut5ehTy4E8UnSau
pS9wxNTYq604N5MofzWRf+APFRdBEX476jS0arW1Ui9MBPLCIfAMx/cewh7ANPAW
9MUDc74I34fB+3jeI+BLFnuSo3+1uVHFBw52IwLf5l81H6yv0r6UsG19+egQ5Jq1
PD2zfvb5x3qZvGlyuUNWxrnPg96dC+znIDm5kJZNp2mwgu+R+9LseQFGZv5j+Dg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:52 2024 by rpki-client on console-fra.rpki-client.org