Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/VoUksOMabxZ_yUGfVuc6AuVEAas.roa
File: VoUksOMabxZ_yUGfVuc6AuVEAas.roa (raw, json)
Hash identifier: AfagNjNruJ3HHcr4Bwwauzl2G7N5fgkdfKJDbkBOvVA=
Subject key identifier: 56:85:24:B0:E3:1A:6F:16:7F:C9:41:9F:56:E7:3A:02:E5:44:01:AB
Certificate issuer: /CN=1cee91296c94992d151a232240e6cf3a176d2039
Certificate serial: 018499B041D874D8FC67F97CD629907141FB
Authority key identifier: 1C:EE:91:29:6C:94:99:2D:15:1A:23:22:40:E6:CF:3A:17:6D:20:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HO6RKWyUmS0VGiMiQObPOhdtIDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/VoUksOMabxZ_yUGfVuc6AuVEAas.roa
Signing time: Mon 21 Nov 2022 10:16:15 +0000
ROA not before: Mon 21 Nov 2022 10:16:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203980
IP address blocks: 46.172.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:99:b0:41:d8:74:d8:fc:67:f9:7c:d6:29:90:71:41:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cee91296c94992d151a232240e6cf3a176d2039
Validity
Not Before: Nov 21 10:16:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=568524b0e31a6f167fc9419f56e73a02e54401ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:7d:5a:df:36:3f:1d:53:9c:bc:8b:6b:47:f7:
bf:4d:4b:ef:ec:9d:7c:9c:82:13:44:95:11:f2:2c:
8c:53:4d:12:b5:03:d9:8d:5d:83:74:50:c1:75:15:
35:4f:71:6b:c2:c4:67:f8:6d:5d:e2:b3:db:d0:11:
b3:e0:92:16:0a:52:2c:9d:6e:1a:b8:88:b4:11:be:
3d:b7:19:8a:5c:44:39:16:20:f5:b2:a0:a1:45:3f:
18:da:a0:80:ca:56:11:3d:8e:4d:35:17:fe:4e:7d:
0a:10:73:3f:8a:54:c0:53:e0:bb:f6:43:e4:93:f0:
cf:eb:e7:64:b4:fa:39:85:81:a3:e4:27:44:9d:24:
90:8a:73:fb:9e:86:5d:36:ad:fa:c2:63:50:61:41:
21:5c:c2:68:e7:a4:13:ee:8a:2c:81:77:5a:f1:83:
49:0b:53:71:a8:75:b3:84:0c:00:54:08:67:90:62:
14:d1:82:ab:58:72:67:0c:c0:b6:1b:c0:9f:c4:7b:
ac:52:86:7b:be:80:9e:12:1b:a4:6e:f9:97:88:0a:
79:ce:b0:91:df:af:6a:0a:28:3d:a0:00:6d:79:8e:
c0:e6:4b:27:53:5c:75:d4:98:a5:a2:6b:32:f9:39:
b7:2c:11:6a:61:c3:99:d7:38:15:4e:23:92:b6:78:
c1:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:85:24:B0:E3:1A:6F:16:7F:C9:41:9F:56:E7:3A:02:E5:44:01:AB
X509v3 Authority Key Identifier:
keyid:1C:EE:91:29:6C:94:99:2D:15:1A:23:22:40:E6:CF:3A:17:6D:20:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HO6RKWyUmS0VGiMiQObPOhdtIDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/VoUksOMabxZ_yUGfVuc6AuVEAas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/HO6RKWyUmS0VGiMiQObPOhdtIDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.172.76.0/24
Signature Algorithm: sha256WithRSAEncryption
21:0c:3e:29:07:58:0d:cc:e4:b3:1d:00:8a:86:56:64:43:1a:
e9:a0:44:67:9b:b3:4a:8c:96:ab:92:72:36:02:b5:b5:6d:24:
f3:ba:a8:30:e1:21:48:f9:f1:53:61:a6:68:f6:20:70:e6:fa:
e5:30:3e:ab:44:ab:37:68:0f:58:e7:18:e4:89:3c:4b:20:30:
b5:6d:9a:5a:aa:02:8e:78:b9:4d:30:77:ce:3d:6d:15:c5:61:
aa:73:45:c7:3d:21:e9:d2:d3:e2:f2:8d:24:12:ec:94:d4:47:
90:3f:f7:6b:2d:88:09:11:07:88:85:a8:2d:05:f6:cf:f1:f6:
71:21:45:13:31:02:5f:0a:36:4c:63:6a:1f:bd:55:a4:1c:7e:
61:cf:d1:23:01:f9:72:18:43:ff:f6:7a:6d:fc:60:c8:ae:1c:
82:eb:c6:46:52:4d:ff:21:91:7f:46:a4:98:55:9f:77:f2:6a:
14:19:11:db:29:de:7f:0c:ad:67:d8:73:ae:15:9c:c9:16:ed:
f4:7f:b1:df:28:ec:d7:41:85:66:bd:6a:11:ac:e9:f6:3b:36:
f2:03:d4:9e:5d:53:fe:ba:03:8a:ac:94:31:ba:09:ff:9f:2f:
3a:cf:3d:b4:af:7b:40:05:f8:70:16:c2:5c:c7:ed:7d:8a:b3:
05:f8:48:b6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSZsEHYdNj8Z/l81imQcUH7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjZWU5MTI5NmM5NDk5MmQxNTFhMjMyMjQwZTZjZjNhMTc2
ZDIwMzkwHhcNMjIxMTIxMTAxNjE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1Njg1MjRiMGUzMWE2ZjE2N2ZjOTQxOWY1NmU3M2EwMmU1NDQwMWFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2X1a3zY/HVOcvItrR/e/TUvv7J18
nIITRJUR8iyMU00StQPZjV2DdFDBdRU1T3FrwsRn+G1d4rPb0BGz4JIWClIsnW4a
uIi0Eb49txmKXEQ5FiD1sqChRT8Y2qCAylYRPY5NNRf+Tn0KEHM/ilTAU+C79kPk
k/DP6+dktPo5hYGj5CdEnSSQinP7noZdNq36wmNQYUEhXMJo56QT7oosgXda8YNJ
C1NxqHWzhAwAVAhnkGIU0YKrWHJnDMC2G8CfxHusUoZ7voCeEhukbvmXiAp5zrCR
369qCig9oABteY7A5ksnU1x11Jilomsy+Tm3LBFqYcOZ1zgVTiOStnjB+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFaFJLDjGm8Wf8lBn1bnOgLlRAGrMB8GA1UdIwQY
MBaAFBzukSlslJktFRojIkDmzzoXbSA5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSE82UktXeVVtUzBWR2lNaVFPYlBPaGR0SURrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9jOTFlYzMtMjgyMC00MTdiLTlhYWQt
YmFjYWI0NzVlNmNjLzEvVm9Va3NPTWFieFpfeVVHZlZ1YzZBdVZFQWFzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS9jOTFlYzMtMjgyMC00MTdiLTlhYWQtYmFjYWI0NzVlNmNj
LzEvSE82UktXeVVtUzBWR2lNaVFPYlBPaGR0SURrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALqxMMA0G
CSqGSIb3DQEBCwUAA4IBAQAhDD4pB1gNzOSzHQCKhlZkQxrpoERnm7NKjJarknI2
ArW1bSTzuqgw4SFI+fFTYaZo9iBw5vrlMD6rRKs3aA9Y5xjkiTxLIDC1bZpaqgKO
eLlNMHfOPW0VxWGqc0XHPSHp0tPi8o0kEuyU1EeQP/drLYgJEQeIhagtBfbP8fZx
IUUTMQJfCjZMY2ofvVWkHH5hz9EjAflyGEP/9npt/GDIrhyC68ZGUk3/IZF/RqSY
VZ938moUGRHbKd5/DK1n2HOuFZzJFu30f7HfKOzXQYVmvWoRrOn2OzbyA9SeXVP+
ugOKrJQxugn/ny86zz20r3tABfhwFsJcx+19irMF+Ei2
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:58 2024 by rpki-client on console-ams.rpki-client.org