Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/h-4erTP5JsGSmt5hC9-aG_ALnXg.roa
File: h-4erTP5JsGSmt5hC9-aG_ALnXg.roa (raw, json)
Hash identifier: lHomXNVsGyAGBvM46x1CIs8xLDOYUQ8ZAEM+0uu6xEg=
Subject key identifier: 87:EE:1E:AD:33:F9:26:C1:92:9A:DE:61:0B:DF:9A:1B:F0:0B:9D:78
Certificate issuer: /CN=352ae33b11b36a319ba81347d852480d8e74c87d
Certificate serial: 05FE581D
Authority key identifier: 35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/h-4erTP5JsGSmt5hC9-aG_ALnXg.roa
Signing time: Sat 01 Jan 2022 13:55:33 +0000
ROA not before: Sat 01 Jan 2022 13:55:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206837
IP address blocks: 46.25.127.0/24 maxlen: 24
46.25.145.0/24 maxlen: 24
46.25.159.0/24 maxlen: 24
46.25.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100554781 (0x5fe581d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352ae33b11b36a319ba81347d852480d8e74c87d
Validity
Not Before: Jan 1 13:55:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87ee1ead33f926c1929ade610bdf9a1bf00b9d78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:04:c3:f2:c4:54:b4:c2:69:c6:d9:bf:33:85:
9a:a4:4b:37:7d:ed:5c:41:86:d5:d8:ab:dd:71:88:
fb:cb:b0:1d:83:7f:43:6f:37:2d:90:1d:d4:61:d7:
ae:36:d0:13:e0:a7:54:72:1f:1e:69:a1:09:6e:9b:
5c:13:5f:69:3d:09:72:22:ba:34:56:29:50:bf:fc:
40:62:2b:d8:f4:4b:7d:97:4c:6d:ec:b8:d9:56:3c:
ab:2f:c9:d6:c1:44:3c:1f:f9:a8:72:bc:4e:d6:9b:
42:40:ff:89:3d:7a:07:42:c7:6c:4d:bb:70:51:c2:
e8:08:d6:40:16:63:ae:db:7e:3e:73:78:2e:2d:62:
7d:51:81:fb:46:9f:be:71:72:a6:d3:1a:02:20:d0:
f1:dc:ec:13:99:1e:84:9c:79:b1:0c:a8:55:44:78:
6c:ba:61:4d:c4:9a:e1:b9:e3:01:e3:af:2d:65:a9:
31:f3:6d:6a:42:64:bf:18:bf:50:b9:23:f1:2c:34:
67:a6:9a:b0:1c:ba:4e:ba:5f:56:ed:08:69:66:05:
fb:93:12:5f:21:39:68:3e:c1:95:a9:da:f0:9d:0b:
f5:f3:1f:81:c2:80:5b:4f:38:c8:ed:af:2f:28:94:
66:58:42:00:af:bb:b9:1c:3e:f7:66:fc:59:9c:78:
e4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:EE:1E:AD:33:F9:26:C1:92:9A:DE:61:0B:DF:9A:1B:F0:0B:9D:78
X509v3 Authority Key Identifier:
keyid:35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/h-4erTP5JsGSmt5hC9-aG_ALnXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/NSrjOxGzajGbqBNH2FJIDY50yH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.25.127.0/24
46.25.145.0/24
46.25.159.0/24
46.25.185.0/24
Signature Algorithm: sha256WithRSAEncryption
48:e3:5b:9a:f3:3d:74:83:1e:d3:ea:d1:64:58:ed:8e:08:b0:
46:14:5c:0b:3f:0a:94:bd:de:d7:8a:fc:cb:14:28:20:a6:4f:
08:2a:ec:da:97:78:bd:f9:b2:20:d2:b3:65:2e:36:ae:64:61:
44:78:42:b4:a7:c4:de:c9:1f:1f:6a:3d:f5:dd:6f:c6:3d:db:
da:83:7b:8d:da:79:a6:bc:37:41:3d:44:60:89:53:4b:27:8c:
b6:1e:e8:8c:8e:44:cf:b8:42:2c:d6:9e:1c:bb:8f:2c:b7:58:
fc:d5:26:e9:ca:52:29:e4:59:45:04:8f:5e:18:2f:d5:7c:ef:
c7:f6:8c:f7:3c:96:77:c9:ce:19:b7:cf:13:4b:b9:ff:f6:09:
5f:01:3f:3e:05:c8:11:a3:3d:c7:a2:2a:00:3c:3b:7f:93:ec:
37:13:2a:2e:e5:bb:38:06:a7:1b:fe:dc:a5:76:24:07:1c:9b:
17:7f:f0:36:8a:05:62:af:dc:e6:ed:91:c5:46:45:da:1d:cb:
18:66:ac:39:4a:99:2a:1b:1d:92:4d:a8:30:ff:d8:ae:2e:e0:
a7:1c:aa:85:97:fa:fb:62:19:24:a1:e6:cd:26:c5:67:35:d0:
06:c8:c0:a9:c7:69:bc:65:55:e9:97:4a:3b:b4:42:79:45:f7:
ea:d4:ac:87
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgIEBf5YHTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NTJhZTMzYjExYjM2YTMxOWJhODEzNDdkODUyNDgwZDhlNzRjODdkMB4XDTIyMDEw
MTEzNTUzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODdlZTFlYWQzM2Y5
MjZjMTkyOWFkZTYxMGJkZjlhMWJmMDBiOWQ3ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO4Ew/LEVLTCacbZvzOFmqRLN33tXEGG1dir3XGI+8uwHYN/
Q283LZAd1GHXrjbQE+CnVHIfHmmhCW6bXBNfaT0JciK6NFYpUL/8QGIr2PRLfZdM
bey42VY8qy/J1sFEPB/5qHK8TtabQkD/iT16B0LHbE27cFHC6AjWQBZjrtt+PnN4
Li1ifVGB+0afvnFyptMaAiDQ8dzsE5kehJx5sQyoVUR4bLphTcSa4bnjAeOvLWWp
MfNtakJkvxi/ULkj8Sw0Z6aasBy6TrpfVu0IaWYF+5MSXyE5aD7Blana8J0L9fMf
gcKAW084yO2vLyiUZlhCAK+7uRw+92b8WZx45MUCAwEAAaOCAhswggIXMB0GA1Ud
DgQWBBSH7h6tM/kmwZKa3mEL35ob8AudeDAfBgNVHSMEGDAWgBQ1KuM7EbNqMZuo
E0fYUkgNjnTIfTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05TcmpPeEd6YWpHYnFCTkgyRkpJRFk1MHlIMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjcvYzU1YWIwLWVhMjItNGExOS04YjMzLTI1MDUwYzU5M2FhMS8x
L2gtNGVyVFA1SnNHU210NWhDOS1hR19BTG5YZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjcv
YzU1YWIwLWVhMjItNGExOS04YjMzLTI1MDUwYzU5M2FhMS8xL05TcmpPeEd6YWpH
YnFCTkgyRkpJRFk1MHlIMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAx
BggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEAC4ZfwMEAC4ZkQMEAC4ZnwMEAC4Z
uTANBgkqhkiG9w0BAQsFAAOCAQEASONbmvM9dIMe0+rRZFjtjgiwRhRcCz8KlL3e
14r8yxQoIKZPCCrs2pd4vfmyINKzZS42rmRhRHhCtKfE3skfH2o99d1vxj3b2oN7
jdp5prw3QT1EYIlTSyeMth7ojI5Ez7hCLNaeHLuPLLdY/NUm6cpSKeRZRQSPXhgv
1Xzvx/aM9zyWd8nOGbfPE0u5//YJXwE/PgXIEaM9x6IqADw7f5PsNxMqLuW7OAan
G/7cpXYkBxybF3/wNooFYq/c5u2RxUZF2h3LGGasOUqZKhsdkk2oMP/Yri7gpxyq
hZf6+2IZJKHmzSbFZzXQBsjAqcdpvGVV6ZdKO7RCeUX36tSshw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:12 2024 by rpki-client on console-ams.rpki-client.org