Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/1c24ad-24b4-4c98-a659-592c0dcdaf79/1/RauHNwDOYVf-Fgh6zdCCVT8rfSk.roa
File: RauHNwDOYVf-Fgh6zdCCVT8rfSk.roa (raw, json)
Hash identifier: GxZnj8yhdVazt7+3awRqH6DsxssIaPFi6mRpw6hdV5o=
Subject key identifier: 45:AB:87:37:00:CE:61:57:FE:16:08:7A:CD:D0:82:55:3F:2B:7D:29
Certificate issuer: /CN=0283a8c69a2630cd8f6fa70af2a53fe019f2cc07
Certificate serial: 018259198F7EDB0211A41C7EB03184D49CD6
Authority key identifier: 02:83:A8:C6:9A:26:30:CD:8F:6F:A7:0A:F2:A5:3F:E0:19:F2:CC:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AoOoxpomMM2Pb6cK8qU_4BnyzAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/1c24ad-24b4-4c98-a659-592c0dcdaf79/1/RauHNwDOYVf-Fgh6zdCCVT8rfSk.roa
Signing time: Mon 01 Aug 2022 11:10:23 +0000
ROA not before: Mon 01 Aug 2022 11:10:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56402
IP address blocks: 185.120.168.0/24 maxlen: 24
185.120.168.0/23 maxlen: 23
185.120.169.0/24 maxlen: 24
77.77.64.0/18 maxlen: 18
77.77.76.0/23 maxlen: 23
77.77.76.0/24 maxlen: 24
77.77.77.0/24 maxlen: 24
46.225.128.0/19 maxlen: 19
46.225.128.0/20 maxlen: 20
46.225.144.0/20 maxlen: 20
77.77.96.0/19 maxlen: 19
77.77.64.0/19 maxlen: 19
46.225.233.0/24 maxlen: 24
46.224.0.0/19 maxlen: 19
46.224.0.0/24 maxlen: 24
46.224.1.0/24 maxlen: 24
46.224.2.0/24 maxlen: 24
46.224.2.0/23 maxlen: 23
46.224.3.0/24 maxlen: 24
46.224.6.0/24 maxlen: 24
46.224.7.0/24 maxlen: 24
46.224.8.0/24 maxlen: 24
46.224.10.0/24 maxlen: 24
46.224.16.0/20 maxlen: 20
46.224.0.0/15 maxlen: 15
46.224.15.0/24 maxlen: 24
46.225.224.0/19 maxlen: 19
46.224.128.0/19 maxlen: 19
2a02:16c0::/29 maxlen: 29
2a02:16c0::/30 maxlen: 30
2a02:16c4::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:59:19:8f:7e:db:02:11:a4:1c:7e:b0:31:84:d4:9c:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0283a8c69a2630cd8f6fa70af2a53fe019f2cc07
Validity
Not Before: Aug 1 11:10:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45ab873700ce6157fe16087acdd082553f2b7d29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:eb:9a:e6:d1:90:d9:6d:6e:1f:d5:d4:6d:79:
5a:76:02:3f:e4:04:71:5e:55:4c:11:be:2f:3d:f0:
e9:53:b4:cc:1e:5d:d8:9d:ce:72:31:ed:1c:91:82:
fa:f8:80:27:be:05:43:e2:4e:24:df:12:bc:14:5f:
bf:31:e0:85:be:5e:67:58:4b:81:90:e9:ea:27:f2:
e4:77:bc:e9:6e:53:d4:7f:ec:16:d3:9d:38:06:7a:
18:47:e3:0b:0b:6a:a1:44:97:3d:32:cc:ad:26:7b:
06:4b:f7:98:67:d1:6a:0f:2b:48:0d:56:a4:90:23:
03:95:88:7e:c4:ca:a8:54:3d:70:86:75:4a:9d:ca:
9d:d2:15:55:b8:e2:19:d3:32:17:c5:11:fe:f5:a4:
1a:66:1f:18:b6:f3:d7:ad:15:de:31:37:a9:02:eb:
ac:53:2c:93:5a:0b:b0:2f:fd:32:5e:bc:49:d4:6b:
8e:04:28:aa:a1:73:43:cb:5f:33:71:72:34:db:0a:
e5:82:4a:3d:53:ee:f4:03:e7:ce:26:cc:68:34:a4:
0f:e4:86:a2:0d:db:54:49:ee:2f:89:6d:d7:a8:9c:
bb:62:4b:9f:61:c3:59:05:b1:d2:35:cd:9f:b6:24:
35:1f:92:a3:4a:87:06:b4:48:56:f9:77:13:cb:03:
47:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:AB:87:37:00:CE:61:57:FE:16:08:7A:CD:D0:82:55:3F:2B:7D:29
X509v3 Authority Key Identifier:
keyid:02:83:A8:C6:9A:26:30:CD:8F:6F:A7:0A:F2:A5:3F:E0:19:F2:CC:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AoOoxpomMM2Pb6cK8qU_4BnyzAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/1c24ad-24b4-4c98-a659-592c0dcdaf79/1/RauHNwDOYVf-Fgh6zdCCVT8rfSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/1c24ad-24b4-4c98-a659-592c0dcdaf79/1/AoOoxpomMM2Pb6cK8qU_4BnyzAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.224.0.0/15
77.77.64.0/18
185.120.168.0/23
IPv6:
2a02:16c0::/29
Signature Algorithm: sha256WithRSAEncryption
1b:8e:cf:eb:29:f6:6c:23:ea:f0:5e:00:98:e6:58:b2:ec:14:
36:b2:dc:51:86:8b:a3:d5:bf:be:56:4b:d8:95:0c:c4:07:27:
88:4f:44:3e:16:0f:ca:54:e1:fc:a2:8b:78:bf:80:1b:75:57:
88:e1:ff:a9:ec:70:04:09:a8:15:ea:87:fe:8e:7a:58:49:32:
7f:5c:12:d0:bb:b8:a1:19:59:c0:c2:16:3d:54:22:00:3f:e7:
9e:cb:21:7b:97:42:3e:43:b4:ec:39:cc:9b:8a:c0:e5:45:40:
7c:1b:90:c5:0d:b8:31:ca:c9:97:8c:39:b0:80:ba:e8:2f:98:
82:55:cf:e8:69:af:53:83:ac:7c:de:4f:08:db:89:1a:e0:24:
08:97:50:80:82:1c:1e:c7:f8:5a:4b:a4:17:79:1a:8c:43:05:
fc:c4:d9:a6:9e:13:aa:ae:0c:ad:81:44:97:97:c0:d5:3b:f4:
9a:ae:b3:5a:7f:f5:89:df:f2:dd:8f:ee:a8:89:34:e0:92:94:
ee:18:83:a7:b1:2a:00:67:c8:35:09:68:27:4a:52:f0:d7:e9:
7b:b2:7c:36:7b:87:58:99:ce:77:f1:85:67:69:25:5e:7e:d4:
cb:0d:99:61:93:1f:05:5c:0f:74:41:20:1e:0a:45:01:f8:ba:
f0:88:b0:91
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgISAYJZGY9+2wIRpBx+sDGE1JzWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyODNhOGM2OWEyNjMwY2Q4ZjZmYTcwYWYyYTUzZmUwMTlm
MmNjMDcwHhcNMjIwODAxMTExMDIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NWFiODczNzAwY2U2MTU3ZmUxNjA4N2FjZGQwODI1NTNmMmI3ZDI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAseua5tGQ2W1uH9XUbXladgI/5ARx
XlVMEb4vPfDpU7TMHl3Ync5yMe0ckYL6+IAnvgVD4k4k3xK8FF+/MeCFvl5nWEuB
kOnqJ/Lkd7zpblPUf+wW0504BnoYR+MLC2qhRJc9MsytJnsGS/eYZ9FqDytIDVak
kCMDlYh+xMqoVD1whnVKncqd0hVVuOIZ0zIXxRH+9aQaZh8YtvPXrRXeMTepAuus
UyyTWguwL/0yXrxJ1GuOBCiqoXNDy18zcXI02wrlgko9U+70A+fOJsxoNKQP5Iai
DdtUSe4viW3XqJy7YkufYcNZBbHSNc2ftiQ1H5KjSocGtEhW+XcTywNHuwIDAQAB
o4ICIzCCAh8wHQYDVR0OBBYEFEWrhzcAzmFX/hYIes3QglU/K30pMB8GA1UdIwQY
MBaAFAKDqMaaJjDNj2+nCvKlP+AZ8swHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQW9Pb3hwb21NTTJQYjZjSzhxVV80Qm55ekFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi8xYzI0YWQtMjRiNC00Yzk4LWE2NTkt
NTkyYzBkY2RhZjc5LzEvUmF1SE53RE9ZVmYtRmdoNnpkQ0NWVDhyZlNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi8xYzI0YWQtMjRiNC00Yzk4LWE2NTktNTkyYzBkY2RhZjc5
LzEvQW9Pb3hwb21NTTJQYjZjSzhxVV80Qm55ekFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAXBAIAATARAwMBLuADBAZN
TUADBAG5eKgwDQQCAAIwBwMFAyoCFsAwDQYJKoZIhvcNAQELBQADggEBABuOz+sp
9mwj6vBeAJjmWLLsFDay3FGGi6PVv75WS9iVDMQHJ4hPRD4WD8pU4fyii3i/gBt1
V4jh/6nscAQJqBXqh/6OelhJMn9cEtC7uKEZWcDCFj1UIgA/557LIXuXQj5DtOw5
zJuKwOVFQHwbkMUNuDHKyZeMObCAuugvmIJVz+hpr1ODrHzeTwjbiRrgJAiXUICC
HB7H+FpLpBd5GoxDBfzE2aaeE6quDK2BRJeXwNU79Jqus1p/9Ynf8t2P7qiJNOCS
lO4Yg6exKgBnyDUJaCdKUvDX6XuyfDZ7h1iZznfxhWdpJV5+1MsNmWGTHwVcD3RB
IB4KRQH4uvCIsJE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:01 2024 by rpki-client on console-fra.rpki-client.org