Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/403ec4-266e-4ea4-ba3a-4fdc48da8f33/1/Fz8dOzskf68giU-f4v5neEvQo3U.roa
File: Fz8dOzskf68giU-f4v5neEvQo3U.roa (raw, json)
Hash identifier: AKz1xg3tdB+6V3zKaxy3hShJ8JBam0oaStjnYjVpNkA=
Subject key identifier: 17:3F:1D:3B:3B:24:7F:AF:20:89:4F:9F:E2:FE:67:78:4B:D0:A3:75
Certificate issuer: /CN=23d8f620999506cc86d7548ea7282bb129f02d68
Certificate serial: 0341A482
Authority key identifier: 23:D8:F6:20:99:95:06:CC:86:D7:54:8E:A7:28:2B:B1:29:F0:2D:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9j2IJmVBsyG11SOpygrsSnwLWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/403ec4-266e-4ea4-ba3a-4fdc48da8f33/1/Fz8dOzskf68giU-f4v5neEvQo3U.roa
Signing time: Thu 10 Feb 2022 09:50:11 +0000
ROA not before: Thu 10 Feb 2022 09:50:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 46.227.40.0/24 maxlen: 24
46.227.41.0/24 maxlen: 24
185.31.206.0/24 maxlen: 24
46.227.44.0/24 maxlen: 24
46.227.42.0/24 maxlen: 24
185.31.204.0/24 maxlen: 24
46.227.43.0/24 maxlen: 24
185.31.205.0/24 maxlen: 24
46.227.47.0/24 maxlen: 24
185.31.207.0/24 maxlen: 24
46.227.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54633602 (0x341a482)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23d8f620999506cc86d7548ea7282bb129f02d68
Validity
Not Before: Feb 10 09:50:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=173f1d3b3b247faf20894f9fe2fe67784bd0a375
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:28:5c:3e:9f:ad:72:c8:0f:ea:5f:55:9c:76:
5d:8f:2f:44:95:31:52:12:c8:c3:51:55:1d:e7:55:
51:2f:42:3d:1b:12:e2:9b:f6:4b:54:0d:fa:5e:13:
29:c1:8f:08:72:64:e0:f7:38:6d:17:5d:c1:62:19:
f1:0a:87:93:52:26:fb:05:15:fb:f3:7b:0f:a6:8c:
f2:a1:ee:0e:87:29:1d:15:ca:18:21:aa:40:63:3f:
aa:f8:16:50:e4:65:ab:b3:0a:67:f5:a3:b6:2e:26:
2a:41:09:ff:ff:a9:5c:55:bf:0f:01:d0:9f:24:c2:
2f:d1:11:6c:7b:73:21:3f:c5:51:37:64:4c:f1:a5:
84:76:46:e0:4f:6d:00:41:1a:9b:76:4b:f6:cd:dc:
4e:b4:f5:58:30:ca:e2:67:cc:c7:b7:64:78:52:93:
0b:04:0a:d5:f3:5f:68:16:fb:10:c6:39:06:7e:3d:
57:cb:b8:64:96:da:fc:de:2f:7d:8a:66:7f:ed:3c:
a0:7c:2e:c1:33:22:ed:5d:c9:92:46:a1:69:bc:8c:
3e:6c:bd:ac:68:65:32:7f:7d:21:95:6b:b1:39:f2:
13:e7:d2:90:7c:cf:ff:81:03:07:7d:47:3a:cd:b4:
16:d8:a7:ed:fb:5d:2a:ca:b1:39:82:dd:30:0b:a4:
7e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:3F:1D:3B:3B:24:7F:AF:20:89:4F:9F:E2:FE:67:78:4B:D0:A3:75
X509v3 Authority Key Identifier:
keyid:23:D8:F6:20:99:95:06:CC:86:D7:54:8E:A7:28:2B:B1:29:F0:2D:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9j2IJmVBsyG11SOpygrsSnwLWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/403ec4-266e-4ea4-ba3a-4fdc48da8f33/1/Fz8dOzskf68giU-f4v5neEvQo3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/403ec4-266e-4ea4-ba3a-4fdc48da8f33/1/I9j2IJmVBsyG11SOpygrsSnwLWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.227.40.0-46.227.45.255
46.227.47.0/24
185.31.204.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:99:8b:e9:eb:b0:e2:bf:99:59:0a:c3:d4:da:97:ca:46:03:
62:58:88:62:fc:3e:4b:16:06:7f:47:0f:2f:0f:6a:7d:f6:37:
fd:af:65:27:84:d8:2a:d0:ce:16:fd:5e:d0:d4:71:98:9f:c1:
f7:43:51:8d:79:20:bc:d8:2e:12:74:d9:43:fc:7c:a0:2a:4e:
04:68:0c:1e:6c:81:04:55:e6:46:ff:03:cf:cf:e4:74:5f:2f:
e8:d3:cb:4f:6b:9f:63:91:fc:7a:3a:0f:b3:7b:d0:cd:b8:02:
b6:49:7b:f7:09:33:2a:22:fc:36:fd:8b:3b:60:e3:0c:38:75:
88:5e:27:39:09:0e:c7:df:d8:46:b5:cb:59:f0:f0:13:0f:73:
6f:d0:51:8d:23:3e:77:e5:45:81:4e:bf:88:3b:87:11:c1:5e:
6c:37:9d:7d:00:dc:96:79:bc:3b:94:83:37:ea:cd:21:b1:92:
3f:31:da:a6:0d:53:24:23:55:71:a3:22:9f:eb:97:e3:eb:0e:
73:d6:5b:cb:c4:b4:2c:dc:a7:00:57:1e:10:4f:35:ad:0c:a2:
e9:be:a9:80:ac:14:11:9c:d3:fa:d1:07:c1:6c:95:45:21:d7:
c3:b1:e0:15:70:7a:3f:d5:b6:db:4b:a2:f8:4b:0e:7e:c0:f4:
3c:dd:4e:e6
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgIEA0GkgjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
M2Q4ZjYyMDk5OTUwNmNjODZkNzU0OGVhNzI4MmJiMTI5ZjAyZDY4MB4XDTIyMDIx
MDA5NTAxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTczZjFkM2IzYjI0
N2ZhZjIwODk0ZjlmZTJmZTY3Nzg0YmQwYTM3NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPkoXD6frXLID+pfVZx2XY8vRJUxUhLIw1FVHedVUS9CPRsS
4pv2S1QN+l4TKcGPCHJk4Pc4bRddwWIZ8QqHk1Im+wUV+/N7D6aM8qHuDocpHRXK
GCGqQGM/qvgWUORlq7MKZ/Wjti4mKkEJ//+pXFW/DwHQnyTCL9ERbHtzIT/FUTdk
TPGlhHZG4E9tAEEam3ZL9s3cTrT1WDDK4mfMx7dkeFKTCwQK1fNfaBb7EMY5Bn49
V8u4ZJba/N4vfYpmf+08oHwuwTMi7V3JkkahabyMPmy9rGhlMn99IZVrsTnyE+fS
kHzP/4EDB31HOs20Ftin7ftdKsqxOYLdMAukfqcCAwEAAaOCAh0wggIZMB0GA1Ud
DgQWBBQXPx07OyR/ryCJT5/i/md4S9CjdTAfBgNVHSMEGDAWgBQj2PYgmZUGzIbX
VI6nKCuxKfAtaDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0k5ajJJSm1WQnN5RzExU09weWdyc1Nud0xXZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmEvNDAzZWM0LTI2NmUtNGVhNC1iYTNhLTRmZGM0OGRhOGYzMy8x
L0Z6OGRPenNrZjY4Z2lVLWY0djVuZUV2UW8zVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmEv
NDAzZWM0LTI2NmUtNGVhNC1iYTNhLTRmZGM0OGRhOGYzMy8xL0k5ajJJSm1WQnN5
RzExU09weWdyc1Nud0xXZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAz
BggrBgEFBQcBBwEB/wQkMCIwIAQCAAEwGjAMAwQDLuMoAwQBLuMsAwQALuMvAwQC
uR/MMA0GCSqGSIb3DQEBCwUAA4IBAQAPmYvp67Div5lZCsPU2pfKRgNiWIhi/D5L
FgZ/Rw8vD2p99jf9r2UnhNgq0M4W/V7Q1HGYn8H3Q1GNeSC82C4SdNlD/HygKk4E
aAwebIEEVeZG/wPPz+R0Xy/o08tPa59jkfx6Og+ze9DNuAK2SXv3CTMqIvw2/Ys7
YOMMOHWIXic5CQ7H39hGtctZ8PATD3Nv0FGNIz535UWBTr+IO4cRwV5sN519ANyW
ebw7lIM36s0hsZI/MdqmDVMkI1VxoyKf65fj6w5z1lvLxLQs3KcAVx4QTzWtDKLp
vqmArBQRnNP60QfBbJVFIdfDseAVcHo/1bbbS6L4Sw5+wPQ83U7m
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:05 2023 by rpki-client on console-ams.rpki-client.org