Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/2669ee-4ba7-4110-8370-dd803c5b85db/1/DliFTn83FVBdlrz9kVKxJO1ICM4.roa
File: DliFTn83FVBdlrz9kVKxJO1ICM4.roa (raw, json)
Hash identifier: JjQ3fAWMWqCf7WWfFjjdLdJVbeRMnTy8JTPQiZzyXY8=
Subject key identifier: 0E:58:85:4E:7F:37:15:50:5D:96:BC:FD:91:52:B1:24:ED:48:08:CE
Certificate issuer: /CN=5336a106cecdeba92e0b80e5e9a5c789ba74c62b
Certificate serial: 01857803539598B42C686AD3AFA8141DED5B
Authority key identifier: 53:36:A1:06:CE:CD:EB:A9:2E:0B:80:E5:E9:A5:C7:89:BA:74:C6:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UzahBs7N66kuC4Dl6aXHibp0xis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/2669ee-4ba7-4110-8370-dd803c5b85db/1/DliFTn83FVBdlrz9kVKxJO1ICM4.roa
Signing time: Tue 03 Jan 2023 14:22:41 +0000
ROA not before: Tue 03 Jan 2023 14:22:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210299
IP address blocks: 46.16.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:78:03:53:95:98:b4:2c:68:6a:d3:af:a8:14:1d:ed:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5336a106cecdeba92e0b80e5e9a5c789ba74c62b
Validity
Not Before: Jan 3 14:22:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e58854e7f3715505d96bcfd9152b124ed4808ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:d6:33:95:fe:35:b5:b3:bf:b7:a3:f3:0d:86:
5d:5e:ea:09:df:1e:c2:3a:b3:73:de:68:fd:60:05:
07:f9:79:2d:e8:8c:d3:db:a2:5d:22:7c:c8:4e:0e:
88:b5:d5:d7:85:3a:6a:36:74:ea:61:fb:3b:be:94:
16:a4:50:ce:e9:9d:50:09:13:2d:61:f9:27:85:b4:
24:1a:77:63:01:31:e8:a6:21:c0:13:ad:e1:fc:90:
a0:9d:e2:a0:ca:38:b7:f9:d5:99:85:98:aa:1e:ee:
50:b2:31:83:06:d0:96:e9:f0:76:46:3a:65:bf:1d:
b3:ca:5d:20:f3:77:44:fb:69:c8:8d:1e:f8:9d:c6:
c4:a6:50:d1:52:80:f3:7d:85:2b:b6:6b:74:75:a7:
5b:08:55:05:01:19:d4:4f:6d:80:2d:5b:54:eb:5c:
01:f2:85:44:cb:77:20:cd:be:17:8d:b6:8f:07:71:
8d:48:89:5b:44:a6:29:3d:c8:b6:44:dc:9a:ad:1f:
1f:79:42:93:4c:ed:f4:cf:20:ec:e5:5e:99:f0:99:
e1:5e:fd:ae:36:0b:b0:2b:67:81:59:f9:cf:87:36:
b5:91:c9:e7:3c:65:fe:18:5e:d4:79:69:ef:b0:11:
b0:89:b7:1d:6a:85:f1:8c:63:41:72:cb:75:8f:9f:
e7:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:58:85:4E:7F:37:15:50:5D:96:BC:FD:91:52:B1:24:ED:48:08:CE
X509v3 Authority Key Identifier:
keyid:53:36:A1:06:CE:CD:EB:A9:2E:0B:80:E5:E9:A5:C7:89:BA:74:C6:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UzahBs7N66kuC4Dl6aXHibp0xis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2669ee-4ba7-4110-8370-dd803c5b85db/1/DliFTn83FVBdlrz9kVKxJO1ICM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2669ee-4ba7-4110-8370-dd803c5b85db/1/UzahBs7N66kuC4Dl6aXHibp0xis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.16.199.0/24
Signature Algorithm: sha256WithRSAEncryption
68:95:48:88:ef:05:7c:1e:87:b9:65:b4:b2:06:d3:86:1d:a5:
d1:4a:f3:b1:05:66:b3:78:c2:df:f0:39:05:e7:3c:1a:28:66:
35:19:8d:fc:2f:a0:c1:b8:aa:98:81:4a:dd:a9:78:24:23:29:
c5:5c:4c:43:e4:78:42:c6:11:22:b4:fb:12:84:c9:83:51:aa:
14:50:6a:84:c2:55:e3:ae:6e:94:02:00:c2:ff:c8:23:80:a1:
b4:16:fa:32:bc:e4:f4:08:6d:fa:3a:58:42:16:b7:85:a1:e6:
10:27:79:ef:bb:8f:d7:6a:89:e0:a6:6c:95:62:e5:ab:3d:78:
87:fc:f3:9e:2a:48:4f:6a:56:d1:03:d1:e6:7e:ec:2f:cb:3d:
bb:06:92:4e:0a:ea:fc:96:82:66:76:dd:db:73:ba:ee:c9:74:
83:9b:1a:7d:75:ac:da:0e:91:da:54:16:f5:88:71:d5:23:10:
78:4e:2d:21:47:7f:98:b9:d3:dc:a4:d0:2e:9d:27:14:f7:81:
9c:16:77:6d:ad:e9:43:f0:08:7b:af:f0:8e:27:fc:67:83:a2:
86:61:29:23:e3:23:eb:f7:11:f2:5c:42:6d:a0:e8:fc:83:fe:
4f:7e:52:44:33:f6:0e:ce:50:af:a2:7e:d5:6a:37:95:dd:92:
95:99:d4:76
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYV4A1OVmLQsaGrTr6gUHe1bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzMzZhMTA2Y2VjZGViYTkyZTBiODBlNWU5YTVjNzg5YmE3
NGM2MmIwHhcNMjMwMTAzMTQyMjQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZTU4ODU0ZTdmMzcxNTUwNWQ5NmJjZmQ5MTUyYjEyNGVkNDgwOGNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj9Yzlf41tbO/t6PzDYZdXuoJ3x7C
OrNz3mj9YAUH+Xkt6IzT26JdInzITg6ItdXXhTpqNnTqYfs7vpQWpFDO6Z1QCRMt
YfknhbQkGndjATHopiHAE63h/JCgneKgyji3+dWZhZiqHu5QsjGDBtCW6fB2Rjpl
vx2zyl0g83dE+2nIjR74ncbEplDRUoDzfYUrtmt0dadbCFUFARnUT22ALVtU61wB
8oVEy3cgzb4XjbaPB3GNSIlbRKYpPci2RNyarR8feUKTTO30zyDs5V6Z8JnhXv2u
NguwK2eBWfnPhza1kcnnPGX+GF7UeWnvsBGwibcdaoXxjGNBcst1j5/nbQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA5YhU5/NxVQXZa8/ZFSsSTtSAjOMB8GA1UdIwQY
MBaAFFM2oQbOzeupLguA5emlx4m6dMYrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXphaEJzN042Nmt1QzREbDZhWEhpYnAweGlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8yNjY5ZWUtNGJhNy00MTEwLTgzNzAt
ZGQ4MDNjNWI4NWRiLzEvRGxpRlRuODNGVkJkbHJ6OWtWS3hKTzFJQ000LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC8yNjY5ZWUtNGJhNy00MTEwLTgzNzAtZGQ4MDNjNWI4NWRi
LzEvVXphaEJzN042Nmt1QzREbDZhWEhpYnAweGlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALhDHMA0G
CSqGSIb3DQEBCwUAA4IBAQBolUiI7wV8Hoe5ZbSyBtOGHaXRSvOxBWazeMLf8DkF
5zwaKGY1GY38L6DBuKqYgUrdqXgkIynFXExD5HhCxhEitPsShMmDUaoUUGqEwlXj
rm6UAgDC/8gjgKG0FvoyvOT0CG36OlhCFreFoeYQJ3nvu4/XaongpmyVYuWrPXiH
/POeKkhPalbRA9Hmfuwvyz27BpJOCur8loJmdt3bc7ruyXSDmxp9dazaDpHaVBb1
iHHVIxB4Ti0hR3+YudPcpNAunScU94GcFndtrelD8Ah7r/COJ/xng6KGYSkj4yPr
9xHyXEJtoOj8g/5PflJEM/YOzlCvon7VajeV3ZKVmdR2
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:11 2025 by rpki-client