Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/3m-sVMDZ6WiPqqMyjUTQsJ4-ZkM.roa
File: 3m-sVMDZ6WiPqqMyjUTQsJ4-ZkM.roa (raw, json)
Hash identifier: 5tbGNfwcHq5qOyYLh9iXx07t0Fv7RTVIPhxx6tAbFmo=
Subject key identifier: DE:6F:AC:54:C0:D9:E9:68:8F:AA:A3:32:8D:44:D0:B0:9E:3E:66:43
Certificate issuer: /CN=1ee5efbf65897160d55a52dc3a22c017876cd06c
Certificate serial: 0CC667D2
Authority key identifier: 1E:E5:EF:BF:65:89:71:60:D5:5A:52:DC:3A:22:C0:17:87:6C:D0:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HuXvv2WJcWDVWlLcOiLAF4ds0Gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/3m-sVMDZ6WiPqqMyjUTQsJ4-ZkM.roa
Signing time: Sat 01 Jan 2022 07:52:39 +0000
ROA not before: Sat 01 Jan 2022 07:52:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197529
IP address blocks: 185.176.124.0/22 maxlen: 24
46.226.72.0/21 maxlen: 24
2a00:5a00::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 214329298 (0xcc667d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ee5efbf65897160d55a52dc3a22c017876cd06c
Validity
Not Before: Jan 1 07:52:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de6fac54c0d9e9688faaa3328d44d0b09e3e6643
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:8c:70:62:34:63:8d:82:8c:49:8b:2b:3c:c4:
02:fb:59:20:2c:20:d4:04:82:18:2d:35:6c:26:91:
45:19:58:b8:cf:75:6f:33:3f:fb:30:cc:e3:fb:04:
9e:2a:ce:c1:06:11:6a:e8:b5:13:30:01:58:29:4a:
80:df:91:f5:1c:b2:4e:81:5a:a2:1f:56:51:f4:be:
fb:0f:e6:ab:45:5d:fe:aa:04:28:75:f4:bd:48:ee:
d7:b9:c3:ff:66:56:2c:29:44:d5:14:ab:4b:b9:40:
7f:18:d1:d3:2a:37:16:03:97:94:22:00:7d:19:82:
c9:8a:72:8f:16:d3:7b:79:20:93:be:4b:cf:7d:30:
a7:63:fe:75:5b:4d:fc:b4:25:57:6b:d4:d2:bc:93:
e0:89:2a:02:34:aa:2c:3c:b5:5f:df:16:e1:f0:d8:
7f:7d:a0:63:94:63:19:77:45:2e:e5:7f:43:7e:69:
55:15:d0:20:d1:ac:23:1d:88:ac:94:44:b3:c8:86:
41:23:6b:c0:91:ee:c1:78:73:67:06:ea:e0:f9:f5:
c0:da:e9:d7:6d:a0:14:ac:42:cb:ec:db:84:53:a9:
51:9c:12:05:00:40:35:a1:a6:f5:6d:f2:89:79:ee:
eb:12:7e:1c:ed:df:88:1c:74:1a:c7:ab:6c:cf:3a:
9b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:6F:AC:54:C0:D9:E9:68:8F:AA:A3:32:8D:44:D0:B0:9E:3E:66:43
X509v3 Authority Key Identifier:
keyid:1E:E5:EF:BF:65:89:71:60:D5:5A:52:DC:3A:22:C0:17:87:6C:D0:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HuXvv2WJcWDVWlLcOiLAF4ds0Gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/3m-sVMDZ6WiPqqMyjUTQsJ4-ZkM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/HuXvv2WJcWDVWlLcOiLAF4ds0Gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.72.0/21
185.176.124.0/22
IPv6:
2a00:5a00::/32
Signature Algorithm: sha256WithRSAEncryption
a4:de:cd:51:eb:fd:f6:89:32:10:b6:9a:3b:0c:d1:b9:e7:e6:
9e:85:29:39:06:f8:6f:4f:d2:eb:cf:cc:9c:dd:79:40:22:47:
46:3f:81:c9:2e:cd:b1:30:0a:aa:7d:7b:20:ae:91:1b:9e:39:
ed:43:3b:f9:06:a1:11:7c:29:95:57:c3:7e:6e:a2:0a:6c:f2:
bb:f2:af:a3:4d:d1:29:bb:95:70:5c:1a:88:5b:44:3e:a0:39:
93:7a:14:67:bc:2e:c6:72:ef:84:6d:31:2e:f9:be:4e:26:9d:
19:f4:86:5b:3f:50:f6:b2:ae:3d:da:26:52:a1:dd:ad:b2:b4:
eb:00:29:1c:10:2e:82:70:21:0f:e7:ce:a6:bc:89:41:d6:32:
0f:27:8a:e6:94:12:5c:f2:0a:55:c1:b0:73:86:f9:fe:fe:55:
9c:a1:03:73:cc:18:36:67:dd:60:81:f9:33:4e:64:32:f2:d4:
39:75:d6:a1:d3:3d:8f:c0:e2:e5:09:06:4b:02:73:3f:34:38:
b5:24:50:79:6f:35:24:98:2f:86:3a:60:5e:94:5a:11:ec:77:
fa:bf:4c:29:82:ce:e6:44:0b:6d:2a:33:d5:7b:1e:ca:d8:ec:
24:92:26:04:4e:0d:15:c2:eb:27:cf:49:88:9e:a6:b2:d9:48:
2c:29:53:19
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEDMZn0jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZWU1ZWZiZjY1ODk3MTYwZDU1YTUyZGMzYTIyYzAxNzg3NmNkMDZjMB4XDTIyMDEw
MTA3NTIzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGU2ZmFjNTRjMGQ5
ZTk2ODhmYWFhMzMyOGQ0NGQwYjA5ZTNlNjY0MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJyMcGI0Y42CjEmLKzzEAvtZICwg1ASCGC01bCaRRRlYuM91
bzM/+zDM4/sEnirOwQYRaui1EzABWClKgN+R9RyyToFaoh9WUfS++w/mq0Vd/qoE
KHX0vUju17nD/2ZWLClE1RSrS7lAfxjR0yo3FgOXlCIAfRmCyYpyjxbTe3kgk75L
z30wp2P+dVtN/LQlV2vU0ryT4IkqAjSqLDy1X98W4fDYf32gY5RjGXdFLuV/Q35p
VRXQINGsIx2IrJREs8iGQSNrwJHuwXhzZwbq4Pn1wNrp122gFKxCy+zbhFOpUZwS
BQBANaGm9W3yiXnu6xJ+HO3fiBx0GserbM86m58CAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBTeb6xUwNnpaI+qozKNRNCwnj5mQzAfBgNVHSMEGDAWgBQe5e+/ZYlxYNVa
Utw6IsAXh2zQbDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0h1WHZ2MldKY1dEVldsTGNPaUxBRjRkczBHdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGIvMzMyNDc3LWM4M2MtNGY4MC1iMWJlLTdjMGRiN2JhZTEzNS8x
LzNtLXNWTURaNldpUHFxTXlqVVRRc0o0LVprTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGIv
MzMyNDc3LWM4M2MtNGY4MC1iMWJlLTdjMGRiN2JhZTEzNS8xL0h1WHZ2MldKY1dE
VldsTGNPaUxBRjRkczBHdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAy7iSAMEArmwfDANBAIAAjAHAwUA
KgBaADANBgkqhkiG9w0BAQsFAAOCAQEApN7NUev99okyELaaOwzRuefmnoUpOQb4
b0/S68/MnN15QCJHRj+ByS7NsTAKqn17IK6RG5457UM7+QahEXwplVfDfm6iCmzy
u/Kvo03RKbuVcFwaiFtEPqA5k3oUZ7wuxnLvhG0xLvm+TiadGfSGWz9Q9rKuPdom
UqHdrbK06wApHBAugnAhD+fOpryJQdYyDyeK5pQSXPIKVcGwc4b5/v5VnKEDc8wY
NmfdYIH5M05kMvLUOXXWodM9j8Di5QkGSwJzPzQ4tSRQeW81JJgvhjpgXpRaEex3
+r9MKYLO5kQLbSoz1XseytjsJJImBE4NFcLrJ89JiJ6mstlILClTGQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:41 2023 by rpki-client on console-fra.rpki-client.org