Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/jvvqlHbUGQskP1zQQrkHRY3_020.roa
File: jvvqlHbUGQskP1zQQrkHRY3_020.roa (raw, json)
Hash identifier: X9A7LJIqUj+zKE4yNr0HOZH2EsoFTOyN7gIXflbyTIU=
Subject key identifier: 8E:FB:EA:94:76:D4:19:0B:24:3F:5C:D0:42:B9:07:45:8D:FF:D3:6D
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 16D95372
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/jvvqlHbUGQskP1zQQrkHRY3_020.roa
Signing time: Sat 01 Jan 2022 12:01:33 +0000
ROA not before: Sat 01 Jan 2022 12:01:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58727
IP address blocks: 46.243.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 383341426 (0x16d95372)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 12:01:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8efbea9476d4190b243f5cd042b907458dffd36d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ca:d4:c6:a8:c4:bc:57:34:51:80:a8:cf:ea:
cf:84:94:f0:45:69:8f:ef:a7:3c:10:29:2f:46:80:
8d:e9:e6:22:f9:d3:8d:94:1c:0b:5b:5d:a2:2c:53:
9c:dd:87:ae:3e:bb:6c:41:78:b7:8c:72:55:95:71:
27:7f:8a:31:f2:2b:fd:50:c7:25:da:04:36:ed:60:
f6:2d:b7:ea:14:4c:23:55:8d:77:b5:e6:20:15:19:
79:84:c5:3b:f7:f7:6e:37:3d:98:85:80:7a:da:a2:
cf:20:3d:74:26:c5:0e:1d:9a:fd:cc:1c:60:50:06:
b4:1c:4a:e1:37:9b:6f:43:b0:4b:15:d6:b0:03:d6:
24:14:97:0d:b6:0c:32:24:c1:95:d7:6c:6d:6c:4a:
fd:f5:34:ef:f8:43:82:c4:01:db:99:fd:51:1d:b7:
3b:56:25:d1:39:2d:97:02:f4:8b:ed:bf:c8:49:7e:
32:49:c9:44:0b:08:da:fa:1c:b4:ad:33:6f:e5:6b:
84:0b:8d:2e:d9:56:b4:0d:52:6d:41:39:32:d6:f6:
ab:32:8f:e1:2c:43:88:48:77:66:37:2f:6a:33:ff:
b6:c7:56:a6:88:10:42:36:a6:72:5f:5e:be:8f:12:
05:b9:78:ab:93:51:cc:71:1a:4e:ea:e1:ad:c7:2d:
c7:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:FB:EA:94:76:D4:19:0B:24:3F:5C:D0:42:B9:07:45:8D:FF:D3:6D
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/jvvqlHbUGQskP1zQQrkHRY3_020.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.243.137.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:b7:fb:19:d3:5f:e5:8c:06:f8:c4:d6:43:9c:72:97:2a:95:
e9:6e:2c:a4:e7:35:e5:82:47:21:4f:46:3b:df:46:e2:ff:ca:
c1:61:3c:e2:62:ee:f5:53:7a:75:01:7e:10:f2:65:a7:0f:1a:
73:20:67:cd:f4:f8:dc:2b:33:5d:9f:0c:cd:dc:14:aa:2a:9a:
d5:47:01:e9:21:39:30:10:69:38:e1:2a:2e:5c:62:0b:4a:5d:
d3:b0:66:8b:92:42:0b:73:9a:18:bc:59:79:25:e0:62:60:38:
ea:c6:75:c4:04:02:42:dc:cb:9e:5a:c5:74:b9:bb:c7:71:7b:
b7:0d:ae:8e:4d:50:ad:4d:c5:03:f9:ac:02:0a:95:09:3e:4f:
fd:81:fa:5e:d0:6c:95:1c:69:8c:07:59:03:b2:b1:77:b1:66:
c4:a6:b6:34:fc:e1:81:36:e8:4e:f6:75:bc:13:ae:5a:06:9e:
81:c1:e0:83:2e:a4:c0:1a:f6:ea:ad:32:17:21:42:30:1d:cf:
df:5d:e1:0f:4e:ee:a2:09:80:c6:c9:ac:75:3e:74:17:ad:0e:
ed:27:19:86:4a:cf:7d:25:c4:6f:37:0e:6e:f4:6d:1b:da:88:
3e:70:e8:7a:74:13:af:1d:b5:d3:43:0d:f9:05:bf:04:81:c0:
7e:70:82:fe
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFtlTcjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ODg1ZTg4NGMyZmM3YTc1ZDEyZGQxZGVhNDljZTIzNDljNDcwNjdlMB4XDTIyMDEw
MTEyMDEzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGVmYmVhOTQ3NmQ0
MTkwYjI0M2Y1Y2QwNDJiOTA3NDU4ZGZmZDM2ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMXK1MaoxLxXNFGAqM/qz4SU8EVpj++nPBApL0aAjenmIvnT
jZQcC1tdoixTnN2Hrj67bEF4t4xyVZVxJ3+KMfIr/VDHJdoENu1g9i236hRMI1WN
d7XmIBUZeYTFO/f3bjc9mIWAetqizyA9dCbFDh2a/cwcYFAGtBxK4Tebb0OwSxXW
sAPWJBSXDbYMMiTBlddsbWxK/fU07/hDgsQB25n9UR23O1Yl0TktlwL0i+2/yEl+
MknJRAsI2voctK0zb+VrhAuNLtlWtA1SbUE5Mtb2qzKP4SxDiEh3ZjcvajP/tsdW
pogQQjamcl9evo8SBbl4q5NRzHEaTurhrcctxyMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSO++qUdtQZCyQ/XNBCuQdFjf/TbTAfBgNVHSMEGDAWgBRYheiEwvx6ddEt
0d6knOI0nEcGfjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1dJWG9oTUw4ZW5YUkxkSGVwSnppTkp4SEJuNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODYvNmMwYmY3LTVmMTMtNDRhMi05OTg5LThjOTU4MWQ5NmQ4Zi8x
L2p2dnFsSGJVR1Fza1AxelFRcmtIUlkzXzAyMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODYv
NmMwYmY3LTVmMTMtNDRhMi05OTg5LThjOTU4MWQ5NmQ4Zi8xL1dJWG9oTUw4ZW5Y
UkxkSGVwSnppTkp4SEJuNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC7ziTANBgkqhkiG9w0BAQsFAAOC
AQEAvbf7GdNf5YwG+MTWQ5xylyqV6W4spOc15YJHIU9GO99G4v/KwWE84mLu9VN6
dQF+EPJlpw8acyBnzfT43CszXZ8MzdwUqiqa1UcB6SE5MBBpOOEqLlxiC0pd07Bm
i5JCC3OaGLxZeSXgYmA46sZ1xAQCQtzLnlrFdLm7x3F7tw2ujk1QrU3FA/msAgqV
CT5P/YH6XtBslRxpjAdZA7Kxd7FmxKa2NPzhgTboTvZ1vBOuWgaegcHggy6kwBr2
6q0yFyFCMB3P313hD07uogmAxsmsdT50F60O7ScZhkrPfSXEbzcObvRtG9qIPnDo
enQTrx2100MN+QW/BIHAfnCC/g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:32 2023 by rpki-client on console-ams.rpki-client.org