Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/uMcaPWIO4bAwitqx99874rIbiHI.roa
File: uMcaPWIO4bAwitqx99874rIbiHI.roa (raw, json)
Hash identifier: +trZzZNRrdyxNTqsQJilJMlRo459exjZgNqKsguB9ys=
Subject key identifier: B8:C7:1A:3D:62:0E:E1:B0:30:8A:DA:B1:F7:DF:3B:E2:B2:1B:88:72
Certificate issuer: /CN=d4375814344df0bf6d017733acdc488f002631b2
Certificate serial: 018459847A3C8D32C387C8E0399C4DB8C3CD
Authority key identifier: D4:37:58:14:34:4D:F0:BF:6D:01:77:33:AC:DC:48:8F:00:26:31:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DdYFDRN8L9tAXczrNxIjwAmMbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/uMcaPWIO4bAwitqx99874rIbiHI.roa
Signing time: Tue 08 Nov 2022 23:12:45 +0000
ROA not before: Tue 08 Nov 2022 23:12:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136520
IP address blocks: 46.8.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:59:84:7a:3c:8d:32:c3:87:c8:e0:39:9c:4d:b8:c3:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4375814344df0bf6d017733acdc488f002631b2
Validity
Not Before: Nov 8 23:12:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8c71a3d620ee1b0308adab1f7df3be2b21b8872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:9a:7a:7f:f4:c1:00:4a:2b:18:41:95:ab:ad:
ef:b3:5f:f4:b6:24:65:97:d0:a7:47:2d:f0:36:cb:
72:03:52:1f:57:f1:0f:69:50:15:70:26:9d:04:73:
69:20:30:0e:56:de:07:7f:cc:31:96:53:1c:40:72:
52:8f:f9:d1:76:cc:4c:f9:a1:c5:18:1c:c3:76:0b:
9d:e7:01:15:ab:3c:06:61:97:c5:79:17:ef:a9:2c:
41:d1:54:2e:4e:1d:51:3e:8e:f0:dc:36:e0:9d:a7:
9b:fa:b6:0a:d6:dc:a5:7e:07:97:54:3f:47:16:af:
a1:f1:02:a8:73:1a:a6:9e:70:e5:44:08:f9:cd:6c:
56:ef:9d:cb:0f:8e:40:ba:87:1c:78:eb:15:a6:2a:
cb:fc:02:4b:02:8e:e4:64:3d:d7:51:88:c2:0d:54:
60:fa:14:08:73:07:b1:1a:b6:16:9a:09:cd:a9:0a:
04:0c:be:53:fd:23:fa:5e:61:43:3a:11:d7:34:02:
94:9f:f7:8c:a0:69:66:f0:81:f3:9d:47:2b:ef:d3:
a1:bf:9e:92:40:e2:56:03:79:41:9a:0f:34:e3:13:
7f:89:3c:5c:3b:1a:48:e5:ed:66:43:f0:f4:72:41:
16:d9:7c:be:7a:f4:45:c0:57:e8:a0:42:b1:6e:61:
b8:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:C7:1A:3D:62:0E:E1:B0:30:8A:DA:B1:F7:DF:3B:E2:B2:1B:88:72
X509v3 Authority Key Identifier:
keyid:D4:37:58:14:34:4D:F0:BF:6D:01:77:33:AC:DC:48:8F:00:26:31:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DdYFDRN8L9tAXczrNxIjwAmMbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/uMcaPWIO4bAwitqx99874rIbiHI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/1DdYFDRN8L9tAXczrNxIjwAmMbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.8.202.0/24
Signature Algorithm: sha256WithRSAEncryption
85:6f:f1:e2:4b:89:e9:d2:da:30:ab:a6:d3:86:84:db:af:5c:
50:13:0a:67:dc:81:ca:21:47:15:4a:bf:5c:0f:22:8b:71:6b:
a4:5b:8b:04:fe:d4:5a:0e:6b:99:ab:ec:47:9d:27:57:e5:7b:
97:20:44:bf:c7:20:cf:84:f4:53:9a:b0:0a:36:f8:2a:36:2e:
c7:be:c1:d9:4e:28:79:d3:ef:62:6b:0d:f9:41:4b:12:d4:32:
12:19:d1:4d:f7:e0:be:3a:95:07:90:03:ad:1d:01:61:9b:40:
6f:d4:93:df:9d:f6:7d:19:30:56:15:cb:db:a3:06:e7:9b:cc:
16:ba:31:00:2b:25:41:2b:22:c9:5c:62:6e:1f:ed:38:08:1d:
ab:df:ab:bc:a3:fe:0a:d3:6a:dd:bf:b3:f6:87:a1:50:92:d9:
59:5c:41:06:d2:2a:2a:0b:57:80:8c:7d:b1:e3:a4:18:8f:91:
04:52:a2:5a:0b:fb:f7:8e:a9:bd:2e:b8:49:ef:7b:2f:5e:91:
20:f0:ef:0c:15:be:d3:68:78:3a:d8:90:0f:3c:cf:ab:34:d6:
da:fc:81:3a:be:0c:61:96:cc:43:66:15:64:dc:a7:9c:9f:ac:
02:fe:59:d4:5b:f7:88:6e:7b:f8:4f:d5:87:4f:3f:57:10:37:
f6:18:92:76
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRZhHo8jTLDh8jgOZxNuMPNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0Mzc1ODE0MzQ0ZGYwYmY2ZDAxNzczM2FjZGM0ODhmMDAy
NjMxYjIwHhcNMjIxMTA4MjMxMjQ1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOGM3MWEzZDYyMGVlMWIwMzA4YWRhYjFmN2RmM2JlMmIyMWI4ODcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnJp6f/TBAEorGEGVq63vs1/0tiRl
l9CnRy3wNstyA1IfV/EPaVAVcCadBHNpIDAOVt4Hf8wxllMcQHJSj/nRdsxM+aHF
GBzDdgud5wEVqzwGYZfFeRfvqSxB0VQuTh1RPo7w3Dbgnaeb+rYK1tylfgeXVD9H
Fq+h8QKocxqmnnDlRAj5zWxW753LD45AuocceOsVpirL/AJLAo7kZD3XUYjCDVRg
+hQIcwexGrYWmgnNqQoEDL5T/SP6XmFDOhHXNAKUn/eMoGlm8IHznUcr79Ohv56S
QOJWA3lBmg804xN/iTxcOxpI5e1mQ/D0ckEW2Xy+evRFwFfooEKxbmG4/wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLjHGj1iDuGwMIrasfffO+KyG4hyMB8GA1UdIwQY
MBaAFNQ3WBQ0TfC/bQF3M6zcSI8AJjGyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMURkWUZEUk44TDl0QVhjenJOeElqd0FtTWJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9iMjRiMmQtMzUyMy00MjJlLTliY2Yt
MzY3MWQ2N2ViOWY4LzEvdU1jYVBXSU80YkF3aXRxeDk5ODc0ckliaUhJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC9iMjRiMmQtMzUyMy00MjJlLTliY2YtMzY3MWQ2N2ViOWY4
LzEvMURkWUZEUk44TDl0QVhjenJOeElqd0FtTWJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALgjKMA0G
CSqGSIb3DQEBCwUAA4IBAQCFb/HiS4np0towq6bThoTbr1xQEwpn3IHKIUcVSr9c
DyKLcWukW4sE/tRaDmuZq+xHnSdX5XuXIES/xyDPhPRTmrAKNvgqNi7HvsHZTih5
0+9iaw35QUsS1DISGdFN9+C+OpUHkAOtHQFhm0Bv1JPfnfZ9GTBWFcvbowbnm8wW
ujEAKyVBKyLJXGJuH+04CB2r36u8o/4K02rdv7P2h6FQktlZXEEG0ioqC1eAjH2x
46QYj5EEUqJaC/v3jqm9LrhJ73svXpEg8O8MFb7TaHg62JAPPM+rNNba/IE6vgxh
lsxDZhVk3Kecn6wC/lnUW/eIbnv4T9WHTz9XEDf2GJJ2
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:38 2023 by rpki-client on console-fra.rpki-client.org