Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/4cea79-2a09-4ae7-a50c-f8a836f01b21/1/ppQU8G8WUAf2PQJ1CEqBqKKtxVE.roa
File: ppQU8G8WUAf2PQJ1CEqBqKKtxVE.roa (raw, json)
Hash identifier: J3fgcgL5A25gq7BFuGkfzgLDXTWGLMkd/O9Y/s8+6Bw=
Subject key identifier: A6:94:14:F0:6F:16:50:07:F6:3D:02:75:08:4A:81:A8:A2:AD:C5:51
Certificate issuer: /CN=8a5d86aab4c0974f0c27f43d968df426f53df5d2
Certificate serial: 08D3ABB5
Authority key identifier: 8A:5D:86:AA:B4:C0:97:4F:0C:27:F4:3D:96:8D:F4:26:F5:3D:F5:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/il2GqrTAl08MJ_Q9lo30JvU99dI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/4cea79-2a09-4ae7-a50c-f8a836f01b21/1/ppQU8G8WUAf2PQJ1CEqBqKKtxVE.roa
Signing time: Sat 01 Jan 2022 04:59:17 +0000
ROA not before: Sat 01 Jan 2022 04:59:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 46.174.136.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148089781 (0x8d3abb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a5d86aab4c0974f0c27f43d968df426f53df5d2
Validity
Not Before: Jan 1 04:59:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a69414f06f165007f63d0275084a81a8a2adc551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:16:07:24:a6:d3:78:63:49:52:36:c1:a6:aa:
83:da:04:29:eb:11:15:9b:62:9a:cc:e5:92:49:d3:
01:d0:34:be:30:2f:d8:f4:a2:05:7d:4d:3a:3b:85:
63:83:f3:2f:04:e4:61:23:d2:63:1e:2e:9b:fb:54:
9a:1d:97:43:a7:02:83:27:0a:39:69:ed:7e:af:fd:
11:e6:0c:d7:92:23:4d:db:8c:38:40:d5:b4:ee:3b:
68:b3:42:87:09:f2:7f:ac:40:1f:8c:06:f2:41:14:
15:08:2f:57:25:cc:01:d3:d3:56:ef:be:86:22:5a:
ef:a5:f9:4a:a5:0c:ae:8a:8e:a9:c8:b6:6c:9c:cf:
79:17:a4:ee:b0:9f:ef:10:b7:b0:a1:68:da:12:c0:
5a:ce:d8:17:b3:43:b6:58:cb:b5:97:c1:34:9a:f5:
64:89:c8:8c:8d:7b:82:37:12:b3:9e:74:db:75:95:
0a:a9:0b:39:f3:99:cb:d7:c7:12:74:f0:1a:88:18:
ac:c3:91:36:5c:9e:2c:e1:85:8e:d0:21:ae:0d:35:
32:cb:be:3c:26:c3:39:b7:0d:f3:87:69:4b:ac:59:
6d:a7:97:10:33:e7:40:80:11:30:9a:61:ea:c6:dc:
7f:d7:e3:e5:ab:74:eb:fe:16:ed:31:6c:1c:19:99:
d5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:94:14:F0:6F:16:50:07:F6:3D:02:75:08:4A:81:A8:A2:AD:C5:51
X509v3 Authority Key Identifier:
keyid:8A:5D:86:AA:B4:C0:97:4F:0C:27:F4:3D:96:8D:F4:26:F5:3D:F5:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/il2GqrTAl08MJ_Q9lo30JvU99dI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/4cea79-2a09-4ae7-a50c-f8a836f01b21/1/ppQU8G8WUAf2PQJ1CEqBqKKtxVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/4cea79-2a09-4ae7-a50c-f8a836f01b21/1/il2GqrTAl08MJ_Q9lo30JvU99dI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.174.136.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:a0:08:59:d5:e1:14:c5:76:eb:81:96:06:9a:f7:a7:a7:d7:
23:27:63:dd:d6:10:2d:87:15:b4:6f:a4:5c:4e:ea:40:10:6c:
5a:5c:6b:fe:ac:07:4a:1a:7d:1f:2c:33:cb:32:1d:2f:4f:17:
03:01:0a:e9:1f:9f:bd:61:79:01:e5:c7:e0:f1:82:e0:9d:6d:
f3:b9:6c:e6:52:de:a9:c5:bb:0e:91:11:59:8c:37:f2:7d:37:
2a:22:3d:f0:0e:ec:b0:dd:66:81:6e:c8:fd:4e:64:33:48:f7:
5b:99:e2:2c:17:72:54:25:90:d1:2a:4d:bf:a2:8b:82:09:27:
ce:a8:35:79:6c:b1:04:ec:3d:89:4b:a5:1f:f8:20:4e:bc:a5:
3f:49:29:a5:1e:78:55:3f:53:e5:35:a6:d1:62:b9:19:30:01:
0b:5c:c5:06:f2:ec:aa:f3:06:43:4d:d3:d9:0b:c8:4a:69:5e:
f6:76:bf:c3:67:e3:e9:2b:23:9f:c5:b6:c6:ed:82:f8:c6:17:
c2:37:90:f8:5d:38:ad:14:32:4a:6d:0b:5e:ac:28:e6:a6:92:
ca:4e:5a:9b:09:64:a2:32:7e:d5:2a:18:d1:17:41:95:6d:99:
86:ee:a3:0d:76:8e:5f:55:27:0c:64:a8:3f:62:77:f0:c2:51:
db:14:dc:52
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECNOrtTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
YTVkODZhYWI0YzA5NzRmMGMyN2Y0M2Q5NjhkZjQyNmY1M2RmNWQyMB4XDTIyMDEw
MTA0NTkxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTY5NDE0ZjA2ZjE2
NTAwN2Y2M2QwMjc1MDg0YTgxYThhMmFkYzU1MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALgWBySm03hjSVI2waaqg9oEKesRFZtimszlkknTAdA0vjAv
2PSiBX1NOjuFY4PzLwTkYSPSYx4um/tUmh2XQ6cCgycKOWntfq/9EeYM15IjTduM
OEDVtO47aLNChwnyf6xAH4wG8kEUFQgvVyXMAdPTVu++hiJa76X5SqUMroqOqci2
bJzPeRek7rCf7xC3sKFo2hLAWs7YF7NDtljLtZfBNJr1ZInIjI17gjcSs55023WV
CqkLOfOZy9fHEnTwGogYrMORNlyeLOGFjtAhrg01Msu+PCbDObcN84dpS6xZbaeX
EDPnQIARMJph6sbcf9fj5at06/4W7TFsHBmZ1dECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSmlBTwbxZQB/Y9AnUISoGooq3FUTAfBgNVHSMEGDAWgBSKXYaqtMCXTwwn
9D2WjfQm9T310jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lsMkdxclRBbDA4TUpfUTlsbzMwSnZVOTlkSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2YvNGNlYTc5LTJhMDktNGFlNy1hNTBjLWY4YTgzNmYwMWIyMS8x
L3BwUVU4RzhXVUFmMlBRSjFDRXFCcUtLdHhWRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Yv
NGNlYTc5LTJhMDktNGFlNy1hNTBjLWY4YTgzNmYwMWIyMS8xL2lsMkdxclRBbDA4
TUpfUTlsbzMwSnZVOTlkSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi6uiDANBgkqhkiG9w0BAQsFAAOC
AQEACqAIWdXhFMV264GWBpr3p6fXIydj3dYQLYcVtG+kXE7qQBBsWlxr/qwHShp9
HywzyzIdL08XAwEK6R+fvWF5AeXH4PGC4J1t87ls5lLeqcW7DpERWYw38n03KiI9
8A7ssN1mgW7I/U5kM0j3W5niLBdyVCWQ0SpNv6KLggknzqg1eWyxBOw9iUulH/gg
TrylP0kppR54VT9T5TWm0WK5GTABC1zFBvLsqvMGQ03T2QvISmle9na/w2fj6Ssj
n8W2xu2C+MYXwjeQ+F04rRQySm0LXqwo5qaSyk5amwlkojJ+1SoY0RdBlW2Zhu6j
DXaOX1UnDGSoP2J38MJR2xTcUg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:36 2024 by rpki-client on console-fra.rpki-client.org