Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/6d9ab5-d1ae-449d-a7e9-1f5f94ce35ee/1/tI_dbSxKrEHmMjOi13MIrKw4-78.roa
File: tI_dbSxKrEHmMjOi13MIrKw4-78.roa (raw, json)
Hash identifier: hOLw9HsaYpvEBLwDFaUiQT6ptvREGCbVZOtxejM9BFs=
Subject key identifier: B4:8F:DD:6D:2C:4A:AC:41:E6:32:33:A2:D7:73:08:AC:AC:38:FB:BF
Certificate issuer: /CN=e1085b6248bd72076ab421ffa0e3bfef93565e9d
Certificate serial: 0183264C15120005AF9D07D9A9F5E3338C66
Authority key identifier: E1:08:5B:62:48:BD:72:07:6A:B4:21:FF:A0:E3:BF:EF:93:56:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4QhbYki9cgdqtCH_oOO_75NWXp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/6d9ab5-d1ae-449d-a7e9-1f5f94ce35ee/1/tI_dbSxKrEHmMjOi13MIrKw4-78.roa
Signing time: Sat 10 Sep 2022 07:27:43 +0000
ROA not before: Sat 10 Sep 2022 07:27:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60131
IP address blocks: 185.52.176.0/22 maxlen: 22
46.23.80.0/20 maxlen: 20
2a03:6000::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:26:4c:15:12:00:05:af:9d:07:d9:a9:f5:e3:33:8c:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1085b6248bd72076ab421ffa0e3bfef93565e9d
Validity
Not Before: Sep 10 07:27:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b48fdd6d2c4aac41e63233a2d77308acac38fbbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c5:c3:b2:f8:7e:62:4b:2d:92:63:7b:d6:2b:
a2:85:0e:6c:d2:7f:3f:05:7e:d6:e2:dd:41:d1:b7:
d0:df:60:a7:5b:e6:24:2a:5e:dd:b9:1a:9f:74:8f:
be:46:b6:e5:b7:6e:3b:69:4b:53:55:a5:4f:e3:ae:
ae:81:0e:c0:02:d3:dd:9f:27:15:c8:40:84:e4:5e:
cc:3b:ee:bc:85:e8:9b:1c:49:6d:c8:1e:31:e4:24:
83:3a:4f:6d:e8:6d:54:de:af:f1:f0:aa:15:6d:e0:
7d:bb:f8:11:a9:84:17:8f:a3:d0:17:0f:f3:d4:69:
f0:a4:89:a5:11:a7:d2:57:8f:14:3a:d0:8b:54:ee:
8c:a1:c8:3b:35:c8:b9:99:5c:e7:d2:77:8c:71:9b:
dd:fd:fa:bf:a1:30:35:89:d6:5b:69:da:13:1c:fa:
f3:a7:e9:f9:7f:cf:c1:e8:73:ad:3d:78:bd:71:d6:
3f:4f:45:08:34:58:d7:53:d5:bb:38:9e:d8:41:41:
b9:5a:e5:d5:f3:bc:ec:62:94:0a:2e:4e:ce:a7:92:
01:62:9f:61:cf:9d:c7:d6:5a:03:e9:56:25:52:44:
5c:14:c8:62:de:ea:d5:ea:dc:17:b6:e9:35:b6:f5:
c2:c5:b3:86:9a:bf:57:91:92:d9:75:cf:b2:96:b2:
a6:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:8F:DD:6D:2C:4A:AC:41:E6:32:33:A2:D7:73:08:AC:AC:38:FB:BF
X509v3 Authority Key Identifier:
keyid:E1:08:5B:62:48:BD:72:07:6A:B4:21:FF:A0:E3:BF:EF:93:56:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4QhbYki9cgdqtCH_oOO_75NWXp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/6d9ab5-d1ae-449d-a7e9-1f5f94ce35ee/1/tI_dbSxKrEHmMjOi13MIrKw4-78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/6d9ab5-d1ae-449d-a7e9-1f5f94ce35ee/1/4QhbYki9cgdqtCH_oOO_75NWXp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.80.0/20
185.52.176.0/22
IPv6:
2a03:6000::/32
Signature Algorithm: sha256WithRSAEncryption
30:dc:10:f9:e5:f9:0a:a1:d0:29:cf:81:ff:2c:0d:2b:54:d3:
88:46:b0:c7:1f:e7:64:a5:e3:70:37:52:90:22:bc:6b:85:c3:
cd:a9:02:b3:7a:e4:f6:2f:85:7c:05:9c:91:3b:40:75:3d:d7:
7e:e4:10:19:08:81:0a:a3:98:88:2f:08:a9:b4:6c:db:dc:2b:
92:27:34:b4:0f:80:08:71:a5:35:db:5a:dc:22:97:11:25:db:
25:ae:6c:e8:5c:62:b3:6e:db:d8:86:e0:35:4c:7a:46:1a:a1:
43:a0:77:41:ee:b0:3d:ce:b6:a6:2b:01:e7:9a:9d:00:ae:09:
24:8a:a3:57:97:a9:0d:f0:e0:3e:c5:d2:09:41:59:99:3e:80:
e6:e7:69:1e:8a:be:88:10:1c:ce:0b:ae:da:8b:a3:ca:ea:cc:
67:d7:88:d9:1e:89:0f:f7:74:27:a3:64:eb:5b:26:5a:75:05:
57:a8:fc:ad:ac:4c:ae:79:59:fd:65:1d:56:cc:d6:8c:c2:e9:
1c:6f:82:75:a0:a5:f7:06:35:86:76:68:b3:ad:26:ea:86:97:
29:35:72:b2:1d:55:a3:fa:2b:16:dc:54:8e:bc:24:f7:ff:27:
55:e7:d1:7d:c3:d6:70:80:d1:fd:e7:20:c9:1d:ac:6d:23:f1:
15:77:34:68
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAYMmTBUSAAWvnQfZqfXjM4xmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxMDg1YjYyNDhiZDcyMDc2YWI0MjFmZmEwZTNiZmVmOTM1
NjVlOWQwHhcNMjIwOTEwMDcyNzQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNDhmZGQ2ZDJjNGFhYzQxZTYzMjMzYTJkNzczMDhhY2FjMzhmYmJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqsXDsvh+YkstkmN71iuihQ5s0n8/
BX7W4t1B0bfQ32CnW+YkKl7duRqfdI++Rrblt247aUtTVaVP466ugQ7AAtPdnycV
yECE5F7MO+68heibHEltyB4x5CSDOk9t6G1U3q/x8KoVbeB9u/gRqYQXj6PQFw/z
1GnwpImlEafSV48UOtCLVO6Mocg7Nci5mVzn0neMcZvd/fq/oTA1idZbadoTHPrz
p+n5f8/B6HOtPXi9cdY/T0UINFjXU9W7OJ7YQUG5WuXV87zsYpQKLk7Op5IBYp9h
z53H1loD6VYlUkRcFMhi3urV6twXtuk1tvXCxbOGmr9XkZLZdc+ylrKm+wIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFLSP3W0sSqxB5jIzotdzCKysOPu/MB8GA1UdIwQY
MBaAFOEIW2JIvXIHarQh/6Djv++TVl6dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNFFoYllraTljZ2RxdENIX29PT183NU5XWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy82ZDlhYjUtZDFhZS00NDlkLWE3ZTkt
MWY1Zjk0Y2UzNWVlLzEvdElfZGJTeEtyRUhtTWpPaTEzTUlyS3c0LTc4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYy82ZDlhYjUtZDFhZS00NDlkLWE3ZTktMWY1Zjk0Y2UzNWVl
LzEvNFFoYllraTljZ2RxdENIX29PT183NU5XWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQELhdQAwQC
uTSwMA0EAgACMAcDBQAqA2AAMA0GCSqGSIb3DQEBCwUAA4IBAQAw3BD55fkKodAp
z4H/LA0rVNOIRrDHH+dkpeNwN1KQIrxrhcPNqQKzeuT2L4V8BZyRO0B1Pdd+5BAZ
CIEKo5iILwiptGzb3CuSJzS0D4AIcaU121rcIpcRJdslrmzoXGKzbtvYhuA1THpG
GqFDoHdB7rA9zramKwHnmp0ArgkkiqNXl6kN8OA+xdIJQVmZPoDm52keir6IEBzO
C67ai6PK6sxn14jZHokP93Qno2TrWyZadQVXqPytrEyueVn9ZR1WzNaMwukcb4J1
oKX3BjWGdmizrSbqhpcpNXKyHVWj+isW3FSOvCT3/ydV59F9w9ZwgNH95yDJHaxt
I/EVdzRo
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:39 2023 by rpki-client on console-ams.rpki-client.org