Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/JK3nrO4Q4axJY6SiG4MM06MbWYo.roa
File: JK3nrO4Q4axJY6SiG4MM06MbWYo.roa (raw, json)
Hash identifier: TSWsUJVV4Q9TH8KG/Mz0i3Bpl/TigkcJKkqYy+haR4M=
Subject key identifier: 24:AD:E7:AC:EE:10:E1:AC:49:63:A4:A2:1B:83:0C:D3:A3:1B:59:8A
Certificate issuer: /CN=d4375814344df0bf6d017733acdc488f002631b2
Certificate serial: 018A74D1F8C065F06C265B05DC38923DE957
Authority key identifier: D4:37:58:14:34:4D:F0:BF:6D:01:77:33:AC:DC:48:8F:00:26:31:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DdYFDRN8L9tAXczrNxIjwAmMbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/JK3nrO4Q4axJY6SiG4MM06MbWYo.roa
Signing time: Fri 08 Sep 2023 12:43:52 +0000
ROA not before: Fri 08 Sep 2023 12:43:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209242
IP address blocks: 46.8.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:74:d1:f8:c0:65:f0:6c:26:5b:05:dc:38:92:3d:e9:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4375814344df0bf6d017733acdc488f002631b2
Validity
Not Before: Sep 8 12:43:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24ade7acee10e1ac4963a4a21b830cd3a31b598a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f3:74:de:26:42:d1:97:5b:e0:61:33:f0:3f:
40:81:75:16:01:b3:6f:61:e2:34:00:d6:26:5e:5e:
d2:a8:3c:24:49:07:7c:9f:2e:5c:ee:2a:3e:7b:94:
3c:13:e3:fc:02:3f:04:2b:ad:ee:d0:d8:ff:44:a1:
cc:b3:c4:e2:94:45:00:c9:a6:ad:ee:6c:74:88:b6:
31:47:52:90:0f:eb:d0:74:b5:a0:9c:b9:ff:5c:b8:
11:92:70:8e:42:10:2b:6b:1a:82:44:0e:62:8e:8a:
42:16:b0:0d:59:ca:61:e9:fa:69:14:26:58:dc:ab:
87:4c:b0:76:df:e1:0c:45:cd:88:82:0f:b4:3d:d3:
1b:34:55:55:30:7d:c3:37:2b:5a:bd:b5:a5:4e:c4:
e6:e0:12:6e:a0:4d:33:83:04:c3:f6:08:b5:2c:e8:
6a:e1:c2:69:4d:64:ca:ee:62:7b:c7:41:8f:0d:bc:
e5:15:b2:89:db:2e:38:be:a1:a1:44:ef:c2:84:e6:
8b:9d:c1:2e:08:fc:f1:87:ed:6f:8d:76:62:8e:5e:
90:8b:71:2c:96:55:07:9f:66:a1:f5:66:7d:96:a3:
67:32:95:7a:62:36:05:0b:8e:ff:85:d4:a1:62:e7:
7e:67:83:8c:28:b5:86:45:d7:77:a7:17:e8:fd:2c:
f8:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:AD:E7:AC:EE:10:E1:AC:49:63:A4:A2:1B:83:0C:D3:A3:1B:59:8A
X509v3 Authority Key Identifier:
keyid:D4:37:58:14:34:4D:F0:BF:6D:01:77:33:AC:DC:48:8F:00:26:31:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DdYFDRN8L9tAXczrNxIjwAmMbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/JK3nrO4Q4axJY6SiG4MM06MbWYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/1DdYFDRN8L9tAXczrNxIjwAmMbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.8.199.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:80:76:7c:9d:f8:26:3b:b0:0f:a7:a5:83:7f:5e:1b:e5:86:
59:a5:b1:0c:59:a0:09:e1:81:db:da:37:9b:29:77:f8:c8:7b:
c9:21:f0:bd:7d:e8:53:97:48:f0:cf:a3:55:9f:d6:64:1b:c6:
a4:02:1c:1b:c3:37:b2:99:fb:23:21:75:d7:5f:03:e9:83:76:
b6:7a:9c:9c:64:56:c0:6c:84:3d:4e:f7:94:df:a6:17:0c:34:
32:96:73:48:11:18:79:83:b4:4e:70:3c:b4:04:6e:f0:85:22:
ab:8d:77:c6:a0:20:82:e8:f9:85:30:6d:ed:d8:08:10:c5:31:
43:0c:3f:f4:26:92:8e:17:ba:62:8e:50:cb:46:7c:ec:37:57:
c1:a9:98:2d:a3:c1:6d:97:e2:33:2d:53:06:2c:b7:d4:86:9a:
78:5b:76:a6:4d:a6:0e:8f:bf:86:b7:40:e9:45:a5:eb:c0:0c:
8b:d2:ae:4f:73:f5:c1:de:6e:51:1c:41:80:0b:69:01:91:f0:
89:97:15:4c:41:90:30:2b:00:8f:27:bd:12:e1:3d:27:5f:bf:
d2:ed:5f:0a:53:12:43:f6:c7:7f:d1:40:23:5b:cc:a5:11:91:
78:d5:e2:90:da:45:4a:ba:ec:02:d3:c2:fd:98:2d:d3:55:b3:
a5:83:ac:50
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYp00fjAZfBsJlsF3DiSPelXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0Mzc1ODE0MzQ0ZGYwYmY2ZDAxNzczM2FjZGM0ODhmMDAy
NjMxYjIwHhcNMjMwOTA4MTI0MzUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNGFkZTdhY2VlMTBlMWFjNDk2M2E0YTIxYjgzMGNkM2EzMWI1OThhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnPN03iZC0Zdb4GEz8D9AgXUWAbNv
YeI0ANYmXl7SqDwkSQd8ny5c7io+e5Q8E+P8Aj8EK63u0Nj/RKHMs8TilEUAyaat
7mx0iLYxR1KQD+vQdLWgnLn/XLgRknCOQhAraxqCRA5ijopCFrANWcph6fppFCZY
3KuHTLB23+EMRc2Igg+0PdMbNFVVMH3DNytavbWlTsTm4BJuoE0zgwTD9gi1LOhq
4cJpTWTK7mJ7x0GPDbzlFbKJ2y44vqGhRO/ChOaLncEuCPzxh+1vjXZijl6Qi3Es
llUHn2ah9WZ9lqNnMpV6YjYFC47/hdShYud+Z4OMKLWGRdd3pxfo/Sz4PwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCSt56zuEOGsSWOkohuDDNOjG1mKMB8GA1UdIwQY
MBaAFNQ3WBQ0TfC/bQF3M6zcSI8AJjGyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMURkWUZEUk44TDl0QVhjenJOeElqd0FtTWJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9iMjRiMmQtMzUyMy00MjJlLTliY2Yt
MzY3MWQ2N2ViOWY4LzEvSkszbnJPNFE0YXhKWTZTaUc0TU0wNk1iV1lvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC9iMjRiMmQtMzUyMy00MjJlLTliY2YtMzY3MWQ2N2ViOWY4
LzEvMURkWUZEUk44TDl0QVhjenJOeElqd0FtTWJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALgjHMA0G
CSqGSIb3DQEBCwUAA4IBAQA+gHZ8nfgmO7APp6WDf14b5YZZpbEMWaAJ4YHb2jeb
KXf4yHvJIfC9fehTl0jwz6NVn9ZkG8akAhwbwzeymfsjIXXXXwPpg3a2epycZFbA
bIQ9TveU36YXDDQylnNIERh5g7ROcDy0BG7whSKrjXfGoCCC6PmFMG3t2AgQxTFD
DD/0JpKOF7pijlDLRnzsN1fBqZgto8Ftl+IzLVMGLLfUhpp4W3amTaYOj7+Gt0Dp
RaXrwAyL0q5Pc/XB3m5RHEGAC2kBkfCJlxVMQZAwKwCPJ70S4T0nX7/S7V8KUxJD
9sd/0UAjW8ylEZF41eKQ2kVKuuwC08L9mC3TVbOlg6xQ
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:32:04 2025 by rpki-client