Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/RKUaKo5mPbk-XWZKjElfPvbRVf4.roa
File: RKUaKo5mPbk-XWZKjElfPvbRVf4.roa (raw, json)
Hash identifier: cRWdnIwjNzQQd9Be6vu2wFtZscZZnip6rJDwzsM+d3A=
Subject key identifier: 44:A5:1A:2A:8E:66:3D:B9:3E:5D:66:4A:8C:49:5F:3E:F6:D1:55:FE
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 3A66E956
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/RKUaKo5mPbk-XWZKjElfPvbRVf4.roa
Signing time: Sat 01 Jan 2022 14:56:41 +0000
ROA not before: Sat 01 Jan 2022 14:56:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209544
IP address blocks: 46.209.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 979822934 (0x3a66e956)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 14:56:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=44a51a2a8e663db93e5d664a8c495f3ef6d155fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8e:7a:13:63:1a:49:a8:2a:66:f8:30:be:15:
24:bd:f2:78:d2:5d:f0:04:60:3c:84:b4:96:cb:96:
2a:f4:a9:10:24:ed:7a:ad:79:72:17:91:7f:3e:5f:
bb:39:14:bd:fe:0d:36:c1:b1:25:9c:48:f6:5a:5e:
8d:41:2f:c1:11:39:8c:ac:30:17:ef:41:27:dc:c0:
e8:77:62:de:05:be:76:1b:13:91:d4:0a:e8:4a:c1:
58:fe:6f:10:a2:27:82:f0:0e:27:a7:b9:e1:0a:3a:
dc:55:54:1d:c6:1b:d8:7d:39:ce:c4:58:e5:a7:c1:
cf:8f:a3:b8:36:24:40:0e:d1:98:e1:a0:8f:d2:d1:
da:86:40:c9:15:d5:8e:97:55:bb:d0:51:0c:8a:67:
33:f5:b5:96:b0:ad:ad:57:1f:fd:b2:f7:d0:0e:22:
1f:e2:68:0b:f3:c5:c9:0b:95:ad:9f:61:a0:0c:81:
98:ba:14:8c:f9:52:89:33:fe:8f:bf:3b:cc:5d:3f:
7b:c8:c3:2e:2f:f6:22:27:0e:a4:c5:26:03:97:59:
10:5d:e9:0b:d7:3a:0b:9f:0e:68:2e:c3:c2:c4:0b:
5c:12:02:7e:7b:51:47:e2:82:b8:95:47:b7:03:61:
e7:d7:66:43:10:21:66:57:49:46:d3:e6:b3:fb:f6:
43:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:A5:1A:2A:8E:66:3D:B9:3E:5D:66:4A:8C:49:5F:3E:F6:D1:55:FE
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/RKUaKo5mPbk-XWZKjElfPvbRVf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.209.101.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:bc:4d:8e:4c:d7:cd:f8:75:d0:4c:e3:79:3b:7e:37:ef:e4:
b5:0b:15:66:a4:cc:93:32:7a:89:eb:a9:1e:c3:a1:aa:05:7a:
88:c8:80:e1:57:98:3c:9c:56:7a:78:37:92:f6:00:61:5f:a2:
17:01:5f:03:c5:4d:2e:1a:07:dd:0a:6d:dd:1e:db:93:c4:16:
d3:24:3a:17:9e:cf:94:64:a7:96:83:9c:3d:17:ab:9c:da:cc:
b8:41:05:3c:a0:f7:c7:02:9c:fc:76:b8:4f:c5:85:05:b6:10:
e2:f9:1d:f1:36:ef:04:4d:0a:59:ca:66:30:aa:aa:19:52:4c:
e3:1b:1b:40:b4:4b:30:3c:ab:e6:99:f1:1a:75:ff:3d:2f:79:
1a:73:10:4a:f0:92:76:b1:52:3a:54:08:a4:3a:58:4f:61:81:
49:f1:ac:77:61:b4:4a:cf:3c:67:2f:0e:bd:33:9e:7d:22:fd:
0a:6d:55:81:df:1b:67:3b:99:cd:a8:be:16:70:0f:e2:35:5e:
f3:1f:cb:5e:34:1b:92:de:23:83:fa:4a:b2:08:43:80:52:3b:
29:57:2c:5a:86:b8:df:8e:80:ae:e4:ec:b8:e1:b0:23:e5:48:
4b:e7:75:dd:f9:a7:db:bf:eb:6e:4a:19:29:f6:d9:c5:b8:cb:
8b:99:ba:d0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOmbpVjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MWNjYTlmMTVlMTkyMTk1M2E2MjhjOGFkMmFjNGJlOTc3YjZjMzAzMB4XDTIyMDEw
MTE0NTY0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDRhNTFhMmE4ZTY2
M2RiOTNlNWQ2NjRhOGM0OTVmM2VmNmQxNTVmZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK6OehNjGkmoKmb4ML4VJL3yeNJd8ARgPIS0lsuWKvSpECTt
eq15cheRfz5fuzkUvf4NNsGxJZxI9lpejUEvwRE5jKwwF+9BJ9zA6Hdi3gW+dhsT
kdQK6ErBWP5vEKIngvAOJ6e54Qo63FVUHcYb2H05zsRY5afBz4+juDYkQA7RmOGg
j9LR2oZAyRXVjpdVu9BRDIpnM/W1lrCtrVcf/bL30A4iH+JoC/PFyQuVrZ9hoAyB
mLoUjPlSiTP+j787zF0/e8jDLi/2IicOpMUmA5dZEF3pC9c6C58OaC7DwsQLXBIC
fntRR+KCuJVHtwNh59dmQxAhZldJRtPms/v2Q0sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBREpRoqjmY9uT5dZkqMSV8+9tFV/jAfBgNVHSMEGDAWgBSBzKnxXhkhlTpi
jIrSrEvpd7bDAzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2djeXA4VjRaSVpVNllveUswcXhMNlhlMnd3TS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvMWVhMmIwLTZiOWEtNDRkNy1hMmU1LTIyMDZjYzJlNjkxYy8x
L1JLVWFLbzVtUGJrLVhXWktqRWxmUHZiUlZmNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
MWVhMmIwLTZiOWEtNDRkNy1hMmU1LTIyMDZjYzJlNjkxYy8xL2djeXA4VjRaSVpV
NllveUswcXhMNlhlMnd3TS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC7RZTANBgkqhkiG9w0BAQsFAAOC
AQEAPbxNjkzXzfh10EzjeTt+N+/ktQsVZqTMkzJ6ieupHsOhqgV6iMiA4VeYPJxW
eng3kvYAYV+iFwFfA8VNLhoH3Qpt3R7bk8QW0yQ6F57PlGSnloOcPRernNrMuEEF
PKD3xwKc/Ha4T8WFBbYQ4vkd8TbvBE0KWcpmMKqqGVJM4xsbQLRLMDyr5pnxGnX/
PS95GnMQSvCSdrFSOlQIpDpYT2GBSfGsd2G0Ss88Zy8OvTOefSL9Cm1Vgd8bZzuZ
zai+FnAP4jVe8x/LXjQbkt4jg/pKsghDgFI7KVcsWoa4346AruTsuOGwI+VIS+d1
3fmn27/rbkoZKfbZxbjLi5m60A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:31 2024 by rpki-client on console-fra.rpki-client.org