Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Wo0TTfr07xQtOeA8lmshikk4jvI.roa
File: Wo0TTfr07xQtOeA8lmshikk4jvI.roa (raw, json)
Hash identifier: Hh++Nol18Jx4dfQa4J2ECBMfdMyRtW8/ut2o1KHaVds=
Subject key identifier: 5A:8D:13:4D:FA:F4:EF:14:2D:39:E0:3C:96:6B:21:8A:49:38:8E:F2
Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65
Certificate serial: 018CB4DAF823E99ABE778487F2EC2E550264
Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Wo0TTfr07xQtOeA8lmshikk4jvI.roa
Signing time: Fri 29 Dec 2023 09:14:58 +0000
ROA not before: Fri 29 Dec 2023 09:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42689
IP address blocks: 46.20.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b4:da:f8:23:e9:9a:be:77:84:87:f2:ec:2e:55:02:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67499595a65aab0b53768def08091e31061e9e65
Validity
Not Before: Dec 29 09:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a8d134dfaf4ef142d39e03c966b218a49388ef2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:34:38:d4:fb:02:b3:fb:21:c7:00:25:31:60:
df:a9:57:f2:a8:dd:dc:07:03:4f:f7:4a:cc:fe:3b:
b2:88:99:1b:85:e4:93:37:32:d9:87:02:90:cd:83:
71:74:fb:e1:85:da:26:4d:f1:f9:a4:c9:e0:6c:de:
5d:70:f3:61:b1:82:e6:82:a1:38:65:ad:6f:b6:55:
36:df:d1:ef:97:7f:c6:1b:30:de:e0:45:2a:fa:f2:
c4:bb:84:f8:47:3b:fa:19:15:23:e5:0e:98:5e:95:
9b:d8:a1:74:ba:36:72:d4:98:c6:b5:62:bb:76:4e:
52:49:d8:89:6d:9c:dd:a4:f2:e2:53:be:3c:87:da:
ae:03:88:b7:d4:19:76:dc:d8:90:13:05:33:8a:2e:
c9:1a:f3:ad:78:40:0b:f9:df:66:8c:1f:17:05:78:
06:c7:ab:e5:b8:eb:7b:77:6f:1d:53:30:d1:21:c9:
1b:05:10:8c:c3:4a:d2:ea:81:cb:32:91:2b:57:5b:
10:2a:80:43:eb:8d:e9:55:d2:ea:83:1f:f6:19:04:
e9:7f:d8:5d:fa:e6:0e:ef:de:d2:44:d7:e7:4b:fb:
53:24:1c:37:86:f7:f3:57:a2:3a:f2:1f:51:40:f3:
30:ed:ca:d9:b2:b3:1a:97:95:6c:59:97:c0:f8:6b:
2c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:8D:13:4D:FA:F4:EF:14:2D:39:E0:3C:96:6B:21:8A:49:38:8E:F2
X509v3 Authority Key Identifier:
keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Wo0TTfr07xQtOeA8lmshikk4jvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.20.101.0/24
Signature Algorithm: sha256WithRSAEncryption
07:3d:38:b5:d2:65:76:d6:ba:9c:5e:39:76:20:d7:8a:80:6a:
95:df:ce:9d:98:ee:16:fc:2e:ec:57:e0:cd:05:66:80:0b:ba:
eb:0b:3e:26:08:eb:4a:3a:ea:b5:2e:b5:f0:4f:de:6c:5a:18:
53:0f:80:ee:c9:48:04:46:21:08:96:54:72:84:7a:85:cf:61:
33:ad:ba:5e:00:aa:54:ae:fd:40:5f:17:90:ba:cb:b2:0a:60:
86:53:b3:7c:32:51:07:f1:6e:ba:ff:b0:aa:45:41:78:0e:f1:
b2:5a:fe:08:43:5f:a7:46:e5:ac:7b:7f:f2:93:dd:3f:9a:12:
68:3d:dd:b7:9f:1d:c1:94:8c:38:31:7e:00:f6:2f:d0:a0:05:
74:b9:b2:63:89:1f:5f:8a:14:ab:c3:f7:ff:05:fe:cc:25:4a:
3a:f2:9a:45:76:46:aa:45:36:36:a4:73:ca:d2:7a:3f:96:6c:
97:e5:62:1f:87:58:b7:9f:c7:ed:ed:7a:62:f3:c4:e0:75:77:
05:31:ef:a0:63:fa:9d:7d:1e:b9:f1:50:91:a6:2a:b8:48:12:
8b:ec:2b:91:56:55:6a:d2:3c:78:91:13:7c:30:fe:63:24:b0:
98:1d:3b:1d:ea:ec:53:61:c4:43:72:5a:ac:47:f7:61:e3:ae:
66:f1:75:99
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYy02vgj6Zq+d4SH8uwuVQJkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3NDk5NTk1YTY1YWFiMGI1Mzc2OGRlZjA4MDkxZTMxMDYx
ZTllNjUwHhcNMjMxMjI5MDkxNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YThkMTM0ZGZhZjRlZjE0MmQzOWUwM2M5NjZiMjE4YTQ5Mzg4ZWYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmzQ41PsCs/shxwAlMWDfqVfyqN3c
BwNP90rM/juyiJkbheSTNzLZhwKQzYNxdPvhhdomTfH5pMngbN5dcPNhsYLmgqE4
Za1vtlU239Hvl3/GGzDe4EUq+vLEu4T4Rzv6GRUj5Q6YXpWb2KF0ujZy1JjGtWK7
dk5SSdiJbZzdpPLiU748h9quA4i31Bl23NiQEwUzii7JGvOteEAL+d9mjB8XBXgG
x6vluOt7d28dUzDRIckbBRCMw0rS6oHLMpErV1sQKoBD643pVdLqgx/2GQTpf9hd
+uYO797SRNfnS/tTJBw3hvfzV6I68h9RQPMw7crZsrMal5VsWZfA+Gss5QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFqNE0369O8ULTngPJZrIYpJOI7yMB8GA1UdIwQY
MBaAFGdJlZWmWqsLU3aN7wgJHjEGHp5lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTct
MzU1MDgwNDE2NTJkLzEvV28wVFRmcjA3eFF0T2VBOGxtc2hpa2s0anZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTctMzU1MDgwNDE2NTJk
LzEvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALhRlMA0G
CSqGSIb3DQEBCwUAA4IBAQAHPTi10mV21rqcXjl2INeKgGqV386dmO4W/C7sV+DN
BWaAC7rrCz4mCOtKOuq1LrXwT95sWhhTD4DuyUgERiEIllRyhHqFz2EzrbpeAKpU
rv1AXxeQusuyCmCGU7N8MlEH8W66/7CqRUF4DvGyWv4IQ1+nRuWse3/yk90/mhJo
Pd23nx3BlIw4MX4A9i/QoAV0ubJjiR9fihSrw/f/Bf7MJUo68ppFdkaqRTY2pHPK
0no/lmyX5WIfh1i3n8ft7Xpi88TgdXcFMe+gY/qdfR658VCRpiq4SBKL7CuRVlVq
0jx4kRN8MP5jJLCYHTsd6uxTYcRDclqsR/dh465m8XWZ
-----END CERTIFICATE-----
Generated at Sun Apr 20 04:18:45 2025 by rpki-client