Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/852221-d616-4e12-8fa4-9a72d9903eb8/1/_Uy8EKeBXhR96HGAx06mUZu9G5Y.roa
File: _Uy8EKeBXhR96HGAx06mUZu9G5Y.roa (raw, json)
Hash identifier: XLTU24StjrAIGSdAy+u98e93gjATSmC+qCWKdwP+I00=
Subject key identifier: FD:4C:BC:10:A7:81:5E:14:7D:E8:71:80:C7:4E:A6:51:9B:BD:1B:96
Certificate issuer: /CN=e08aadc069555a1abe031fd0a028069c8fb89b2b
Certificate serial: 01856F548875AC1D2CA31382597137742BC8
Authority key identifier: E0:8A:AD:C0:69:55:5A:1A:BE:03:1F:D0:A0:28:06:9C:8F:B8:9B:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4IqtwGlVWhq-Ax_QoCgGnI-4mys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/852221-d616-4e12-8fa4-9a72d9903eb8/1/_Uy8EKeBXhR96HGAx06mUZu9G5Y.roa
Signing time: Sun 01 Jan 2023 21:54:48 +0000
ROA not before: Sun 01 Jan 2023 21:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 680
IP address blocks: 141.46.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:88:75:ac:1d:2c:a3:13:82:59:71:37:74:2b:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e08aadc069555a1abe031fd0a028069c8fb89b2b
Validity
Not Before: Jan 1 21:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd4cbc10a7815e147de87180c74ea6519bbd1b96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ea:bd:bf:d4:75:7d:10:3e:19:1a:d0:2a:7e:
69:a5:72:e8:d2:66:56:29:cc:7a:94:3d:6f:2b:7f:
79:53:4e:50:f2:f2:c9:aa:e4:cd:fb:2f:53:0f:3a:
c4:6a:09:2d:e1:be:18:5b:ef:be:4d:1c:39:6f:6f:
b3:98:1d:41:36:34:b4:ad:94:50:45:41:be:ad:0a:
b2:ff:4e:dc:e4:db:89:4e:d9:87:86:72:03:3a:bd:
66:ff:69:82:b6:42:55:57:7b:c5:43:1e:ed:fd:de:
85:ef:ff:a3:1a:82:d2:84:bc:17:dc:32:79:2c:03:
75:24:b6:06:d1:5c:55:dd:80:59:e8:55:0c:ee:7e:
bb:8f:d0:de:35:85:ff:07:86:6d:b6:98:e5:6d:9e:
f2:95:37:8f:68:7c:0d:0d:aa:49:62:ba:4d:13:cd:
40:4a:a7:c8:12:45:51:fc:0b:8c:bf:4a:4d:02:4d:
02:23:db:ed:1e:25:5f:e3:12:f8:ab:78:63:b3:30:
b9:63:44:83:b5:f0:0c:51:46:b3:e8:fe:0a:9d:68:
60:7b:b6:5a:64:d9:ce:54:bc:b7:6a:61:2c:bf:15:
cb:1c:62:ee:4f:52:9a:d3:41:0a:9b:e5:7c:dd:5f:
43:f2:d0:b1:53:34:73:d5:0b:6c:36:10:b9:93:56:
47:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:4C:BC:10:A7:81:5E:14:7D:E8:71:80:C7:4E:A6:51:9B:BD:1B:96
X509v3 Authority Key Identifier:
keyid:E0:8A:AD:C0:69:55:5A:1A:BE:03:1F:D0:A0:28:06:9C:8F:B8:9B:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4IqtwGlVWhq-Ax_QoCgGnI-4mys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/852221-d616-4e12-8fa4-9a72d9903eb8/1/_Uy8EKeBXhR96HGAx06mUZu9G5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/852221-d616-4e12-8fa4-9a72d9903eb8/1/4IqtwGlVWhq-Ax_QoCgGnI-4mys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.46.0.0/16
Signature Algorithm: sha256WithRSAEncryption
74:cc:f1:d5:3f:e7:14:00:f9:af:b6:ed:22:0b:14:3a:db:06:
16:6d:16:f8:48:90:9b:7c:39:4d:f4:76:09:4d:04:e7:90:b9:
28:88:fd:1a:8e:37:24:e1:f0:cb:8f:e7:86:90:78:9e:e5:12:
5c:fa:0b:84:2e:68:0e:99:30:6f:c4:4e:67:84:73:d7:73:3f:
fb:fe:ee:98:d6:74:33:6e:25:64:18:69:47:cf:c2:05:2f:81:
c6:ea:92:d4:b8:7d:b6:a7:ad:86:4d:36:c0:8b:09:76:ed:1f:
ce:88:a8:9a:90:27:61:99:18:61:b9:26:73:5c:8b:b8:92:a9:
3e:4c:fe:35:12:bc:3f:cc:d8:cc:b6:68:d6:c3:a6:14:76:ad:
c1:d7:bd:e6:df:97:94:17:09:8b:dc:d1:d2:1c:d2:2d:8d:46:
80:79:23:4c:4e:76:dc:5a:ef:ce:43:a3:b3:eb:ac:6a:72:4d:
89:8f:ce:2b:52:4b:a1:cc:08:c3:8f:1a:d0:6c:5f:09:41:7f:
03:fa:53:9c:fd:99:d8:25:8f:e8:65:b2:a1:c3:95:61:c2:ea:
c4:99:6c:58:39:ae:ce:0c:02:a3:16:19:c1:91:72:0c:29:d3:
11:7a:3a:83:86:c7:25:d1:a0:41:a4:7d:fe:e4:38:a9:3d:6e:
20:41:77:7b
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAYVvVIh1rB0soxOCWXE3dCvIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwOGFhZGMwNjk1NTVhMWFiZTAzMWZkMGEwMjgwNjljOGZi
ODliMmIwHhcNMjMwMTAxMjE1NDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZDRjYmMxMGE3ODE1ZTE0N2RlODcxODBjNzRlYTY1MTliYmQxYjk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjOq9v9R1fRA+GRrQKn5ppXLo0mZW
Kcx6lD1vK395U05Q8vLJquTN+y9TDzrEagkt4b4YW+++TRw5b2+zmB1BNjS0rZRQ
RUG+rQqy/07c5NuJTtmHhnIDOr1m/2mCtkJVV3vFQx7t/d6F7/+jGoLShLwX3DJ5
LAN1JLYG0VxV3YBZ6FUM7n67j9DeNYX/B4ZttpjlbZ7ylTePaHwNDapJYrpNE81A
SqfIEkVR/AuMv0pNAk0CI9vtHiVf4xL4q3hjszC5Y0SDtfAMUUaz6P4KnWhge7Za
ZNnOVLy3amEsvxXLHGLuT1Ka00EKm+V83V9D8tCxUzRz1QtsNhC5k1ZHTwIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFP1MvBCngV4UfehxgMdOplGbvRuWMB8GA1UdIwQY
MBaAFOCKrcBpVVoavgMf0KAoBpyPuJsrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNElxdHdHbFZXaHEtQXhfUW9DZ0duSS00bXlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny84NTIyMjEtZDYxNi00ZTEyLThmYTQt
OWE3MmQ5OTAzZWI4LzEvX1V5OEVLZUJYaFI5NkhHQXgwNm1VWnU5RzVZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny84NTIyMjEtZDYxNi00ZTEyLThmYTQtOWE3MmQ5OTAzZWI4
LzEvNElxdHdHbFZXaHEtQXhfUW9DZ0duSS00bXlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjS4wDQYJ
KoZIhvcNAQELBQADggEBAHTM8dU/5xQA+a+27SILFDrbBhZtFvhIkJt8OU30dglN
BOeQuSiI/RqONyTh8MuP54aQeJ7lElz6C4QuaA6ZMG/ETmeEc9dzP/v+7pjWdDNu
JWQYaUfPwgUvgcbqktS4fbanrYZNNsCLCXbtH86IqJqQJ2GZGGG5JnNci7iSqT5M
/jUSvD/M2My2aNbDphR2rcHXvebfl5QXCYvc0dIc0i2NRoB5I0xOdtxa785Do7Pr
rGpyTYmPzitSS6HMCMOPGtBsXwlBfwP6U5z9mdglj+hlsqHDlWHC6sSZbFg5rs4M
AqMWGcGRcgwp0xF6OoOGxyXRoEGkff7kOKk9biBBd3s=
-----END CERTIFICATE-----
Generated at Tue Apr 22 23:12:46 2025 by rpki-client