Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/Ek9CHwDGnmT0dqJjBqLOHorZGcs.roa
File: Ek9CHwDGnmT0dqJjBqLOHorZGcs.roa (raw, json)
Hash identifier: b28FEEUxSbCq98m932nZwgYnx0h/CsD0BedEToygJr8=
Subject key identifier: 12:4F:42:1F:00:C6:9E:64:F4:76:A2:63:06:A2:CE:1E:8A:D9:19:CB
Certificate issuer: /CN=a63bcc6d25f7476fbb3ec33f6dbc3e9eead92212
Certificate serial: 018776BF9BB9C4CCFD34E4BBAB1253FD9DA5
Authority key identifier: A6:3B:CC:6D:25:F7:47:6F:BB:3E:C3:3F:6D:BC:3E:9E:EA:D9:22:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pjvMbSX3R2-7PsM_bbw-nurZIhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/Ek9CHwDGnmT0dqJjBqLOHorZGcs.roa
Signing time: Wed 12 Apr 2023 18:34:41 +0000
ROA not before: Wed 12 Apr 2023 18:34:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35819
IP address blocks: 46.153.16.0/20 maxlen: 20
46.153.32.0/20 maxlen: 20
46.153.0.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:76:bf:9b:b9:c4:cc:fd:34:e4:bb:ab:12:53:fd:9d:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a63bcc6d25f7476fbb3ec33f6dbc3e9eead92212
Validity
Not Before: Apr 12 18:34:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=124f421f00c69e64f476a26306a2ce1e8ad919cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:eb:67:02:f6:03:38:97:f1:82:36:38:58:51:
3c:f3:a4:b6:64:0a:66:fd:e7:b1:c5:e9:36:a0:ed:
d4:6c:58:f3:a2:d8:9f:67:02:56:32:a3:59:43:21:
33:70:3d:76:ad:9d:56:a1:5d:a4:d0:e2:ad:fb:ef:
ed:66:04:1b:9b:d6:d1:15:4d:bf:70:77:a8:bd:b9:
aa:4c:1b:46:52:f4:d8:5b:5d:d5:5d:30:c9:2d:36:
a4:a6:3a:2a:84:dc:34:8c:23:9f:57:33:8c:ea:a7:
84:67:b6:81:bf:48:0a:aa:bb:9f:b7:bf:0c:30:b3:
a3:f7:24:04:ce:2e:5d:38:d7:e7:5d:71:43:97:bc:
99:4e:ab:ce:d5:fd:d5:c1:a6:4d:0b:55:1b:e8:9b:
46:eb:d3:1a:81:76:2c:ce:63:2d:3e:79:72:d2:2e:
dd:9b:b6:47:d9:1e:7c:9d:17:3f:81:d2:08:3e:47:
88:46:8f:a7:66:8b:d4:ed:79:01:ec:0f:b1:a3:cf:
46:70:20:1e:34:16:c6:71:43:62:e1:ca:f7:a1:58:
de:ce:ae:8d:1c:ce:5a:c4:c1:56:f8:b7:a4:35:31:
72:1f:a1:8b:82:59:2b:3c:9b:80:05:b7:f6:16:b8:
8c:7b:2c:3b:de:8f:f4:d0:99:a0:db:34:e7:3c:0e:
ac:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:4F:42:1F:00:C6:9E:64:F4:76:A2:63:06:A2:CE:1E:8A:D9:19:CB
X509v3 Authority Key Identifier:
keyid:A6:3B:CC:6D:25:F7:47:6F:BB:3E:C3:3F:6D:BC:3E:9E:EA:D9:22:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pjvMbSX3R2-7PsM_bbw-nurZIhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/Ek9CHwDGnmT0dqJjBqLOHorZGcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/pjvMbSX3R2-7PsM_bbw-nurZIhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.153.0.0-46.153.47.255
Signature Algorithm: sha256WithRSAEncryption
7a:57:4b:90:24:5e:fc:12:f0:f3:49:55:64:4a:c1:22:ec:9a:
1c:d9:81:86:f4:2b:65:3b:a0:19:0c:bb:76:1a:72:27:20:75:
e3:6b:5b:e8:5f:d0:4f:84:4c:fa:82:73:dc:ab:46:aa:54:7d:
10:e6:7b:dd:ad:48:b8:49:b1:f6:37:37:98:91:fa:2a:b9:62:
d6:83:c1:21:90:db:fe:51:8d:fc:1f:5a:0e:7f:70:6a:e1:da:
be:53:3a:64:80:7d:b0:be:85:02:0c:2a:7d:b4:49:a3:b5:1e:
79:e4:fa:64:8e:1f:32:c3:89:81:32:ab:a6:d4:25:7b:52:87:
dc:c2:77:80:77:82:d2:ab:1a:16:05:aa:2c:49:17:11:e7:76:
6a:a9:7a:31:46:f6:91:30:69:f2:7b:38:7a:1a:97:01:12:1c:
97:0c:d7:d3:94:9f:91:df:4d:55:0a:9a:d5:8b:49:15:f3:94:
4f:00:64:69:46:24:20:b3:57:89:5b:27:31:d7:d4:59:d4:87:
cc:68:b2:fa:a0:3a:38:b5:be:1c:52:00:cd:7b:ae:b2:b7:a5:
25:56:40:7d:96:92:22:d1:33:c2:88:cf:4b:5e:01:4c:79:f7:
f8:bd:0c:26:7e:c2:f1:99:c3:11:33:fa:1c:a7:17:f1:d4:43:
a3:3e:d8:4d
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgISAYd2v5u5xMz9NOS7qxJT/Z2lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2M2JjYzZkMjVmNzQ3NmZiYjNlYzMzZjZkYmMzZTllZWFk
OTIyMTIwHhcNMjMwNDEyMTgzNDQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMjRmNDIxZjAwYzY5ZTY0ZjQ3NmEyNjMwNmEyY2UxZThhZDkxOWNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh+tnAvYDOJfxgjY4WFE886S2ZApm
/eexxek2oO3UbFjzotifZwJWMqNZQyEzcD12rZ1WoV2k0OKt++/tZgQbm9bRFU2/
cHeovbmqTBtGUvTYW13VXTDJLTakpjoqhNw0jCOfVzOM6qeEZ7aBv0gKqruft78M
MLOj9yQEzi5dONfnXXFDl7yZTqvO1f3VwaZNC1Ub6JtG69MagXYszmMtPnly0i7d
m7ZH2R58nRc/gdIIPkeIRo+nZovU7XkB7A+xo89GcCAeNBbGcUNi4cr3oVjezq6N
HM5axMFW+LekNTFyH6GLglkrPJuABbf2FriMeyw73o/00Jmg2zTnPA6skQIDAQAB
o4ICEDCCAgwwHQYDVR0OBBYEFBJPQh8Axp5k9HaiYwaizh6K2RnLMB8GA1UdIwQY
MBaAFKY7zG0l90dvuz7DP228Pp7q2SISMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGp2TWJTWDNSMi03UHNNX2Jidy1udXJaSWhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS83NjhmZGItZDFiNS00YmVmLWJjYmQt
NDkyNGZhMDAwYjdjLzEvRWs5Q0h3REdubVQwZHFKakJxTE9Ib3JaR2NzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS83NjhmZGItZDFiNS00YmVmLWJjYmQtNDkyNGZhMDAwYjdj
LzEvcGp2TWJTWDNSMi03UHNNX2Jidy1udXJaSWhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCYGCCsGAQUFBwEHAQH/BBcwFTATBAIAATANMAsDAwAumQME
BC6ZIDANBgkqhkiG9w0BAQsFAAOCAQEAeldLkCRe/BLw80lVZErBIuyaHNmBhvQr
ZTugGQy7dhpyJyB142tb6F/QT4RM+oJz3KtGqlR9EOZ73a1IuEmx9jc3mJH6Krli
1oPBIZDb/lGN/B9aDn9wauHavlM6ZIB9sL6FAgwqfbRJo7UeeeT6ZI4fMsOJgTKr
ptQle1KH3MJ3gHeC0qsaFgWqLEkXEed2aql6MUb2kTBp8ns4ehqXARIclwzX05Sf
kd9NVQqa1YtJFfOUTwBkaUYkILNXiVsnMdfUWdSHzGiy+qA6OLW+HFIAzXuusrel
JVZAfZaSItEzwojPS14BTHn3+L0MJn7C8ZnDETP6HKcX8dRDoz7YTQ==
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:52:37 2025 by rpki-client