Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/a1UJvfTu9pUW3L5ZsaTiZAbN3QY.roa
File: a1UJvfTu9pUW3L5ZsaTiZAbN3QY.roa (raw, json)
Hash identifier: v0qziOJ7Zq+cn/oTmbPdr6trdGGZ5LzJnXuojqv9HSs=
Subject key identifier: 6B:55:09:BD:F4:EE:F6:95:16:DC:BE:59:B1:A4:E2:64:06:CD:DD:06
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 1C44D2D5
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/a1UJvfTu9pUW3L5ZsaTiZAbN3QY.roa
Signing time: Fri 17 Jun 2022 17:03:45 +0000
ROA not before: Fri 17 Jun 2022 17:03:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 107.181.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 474272469 (0x1c44d2d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Jun 17 17:03:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b5509bdf4eef69516dcbe59b1a4e26406cddd06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4f:84:b3:7a:c0:1f:75:c2:d0:1e:98:fe:1d:
ef:f3:72:a8:09:76:df:81:4a:b8:5e:96:79:8f:2b:
ad:cb:82:15:5e:c4:67:92:9f:4b:e4:4b:c5:20:1a:
7d:6b:04:bc:64:a4:0d:7a:47:02:93:bc:f8:b4:18:
ce:7b:5f:69:d9:c9:b8:4c:24:a8:f9:18:3c:ee:cd:
ff:00:bd:2a:36:1c:c8:e1:b8:dd:59:8c:33:7d:fc:
bc:99:f0:b7:a6:6b:5e:01:f5:ce:c0:9e:29:0a:fa:
77:e8:ca:a8:6d:0e:d5:15:c7:ad:00:71:cf:e3:12:
be:33:75:81:d9:b6:8d:c7:46:92:93:5e:2b:c7:fe:
cb:65:b0:2b:21:2d:b7:06:03:bf:07:71:f9:89:a0:
23:54:dd:d3:f5:17:4a:53:ae:85:78:6c:1a:09:9f:
a7:89:c3:a1:16:cb:9b:90:50:d5:f1:3f:b3:04:c3:
c5:04:ef:3f:7b:a7:6f:81:96:ab:8c:af:86:6d:a1:
7a:91:97:9e:05:2d:28:c2:31:c4:0d:f7:9f:92:fc:
62:33:ba:83:55:95:b8:e8:4d:37:71:4d:6b:e1:6a:
95:9f:7c:ab:3b:da:5f:b4:46:ad:99:b3:ee:3f:ad:
43:0f:97:40:74:e8:af:f5:18:30:d7:2d:ac:69:64:
63:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:55:09:BD:F4:EE:F6:95:16:DC:BE:59:B1:A4:E2:64:06:CD:DD:06
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/a1UJvfTu9pUW3L5ZsaTiZAbN3QY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
107.181.141.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:b7:4d:a2:c4:ee:5a:e5:64:bf:45:41:48:23:39:25:a8:bd:
35:36:50:ac:5c:38:19:57:e5:8f:83:5c:1a:97:15:a3:fd:57:
51:e0:50:aa:ef:42:1b:03:3a:0b:aa:f9:e2:d7:59:01:cc:70:
a9:8c:4e:cb:9b:eb:a4:0c:9d:82:2f:c5:2a:c9:9d:91:7c:f5:
45:55:fb:00:77:f1:d7:30:71:49:6b:a2:16:61:da:a0:05:01:
5d:1d:f8:6a:e0:5c:a7:2d:d7:9f:ca:da:0e:67:1c:c1:38:1f:
8b:38:81:17:31:27:15:65:6a:82:0d:0b:b6:d3:7e:06:b6:fc:
be:e6:61:21:2a:90:c3:2a:e5:6e:a4:6c:d8:02:b0:8f:d0:81:
8a:04:5c:31:39:49:b4:9a:ae:2e:98:0a:b5:e5:6e:da:ba:9d:
f3:d2:f7:ca:6f:ae:e8:fe:41:02:3f:29:32:83:a4:fa:a4:eb:
8a:22:b9:a1:4a:65:90:14:58:6d:ef:d0:4b:57:51:b9:8b:8f:
84:ab:34:9b:da:de:29:0b:87:6a:39:16:7a:cd:e6:97:06:e9:
a9:dc:6e:2d:7f:ae:01:bc:05:1d:96:ef:ea:20:a4:dc:bd:d3:
2d:75:c9:c5:41:3d:31:1e:e0:0d:8f:c5:1c:32:8d:3e:54:d6:
af:93:b7:6a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEHETS1TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
NzU0YzM0N2Q2OGQxNTQ5M2RlNzFiYjk2MmYwYTU2N2UxMzRkNjAzMB4XDTIyMDYx
NzE3MDM0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmI1NTA5YmRmNGVl
ZjY5NTE2ZGNiZTU5YjFhNGUyNjQwNmNkZGQwNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKpPhLN6wB91wtAemP4d7/NyqAl234FKuF6WeY8rrcuCFV7E
Z5KfS+RLxSAafWsEvGSkDXpHApO8+LQYzntfadnJuEwkqPkYPO7N/wC9KjYcyOG4
3VmMM338vJnwt6ZrXgH1zsCeKQr6d+jKqG0O1RXHrQBxz+MSvjN1gdm2jcdGkpNe
K8f+y2WwKyEttwYDvwdx+YmgI1Td0/UXSlOuhXhsGgmfp4nDoRbLm5BQ1fE/swTD
xQTvP3unb4GWq4yvhm2hepGXngUtKMIxxA33n5L8YjO6g1WVuOhNN3FNa+FqlZ98
qzvaX7RGrZmz7j+tQw+XQHTor/UYMNctrGlkYycCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRrVQm99O72lRbcvlmxpOJkBs3dBjAfBgNVHSMEGDAWgBTnVMNH1o0VST3n
G7li8KVn4TTWAzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzUxVERSOWFORlVrOTV4dTVZdkNsWi1FMDFnTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjAvNDZkYjNhLWE1NzMtNGYyOC1iNDNiLTM3YjYyZDIyMzkyNC8x
L2ExVUp2ZlR1OXBVVzNMNVpzYVRpWkFiTjNRWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAv
NDZkYjNhLWE1NzMtNGYyOC1iNDNiLTM3YjYyZDIyMzkyNC8xLzUxVERSOWFORlVr
OTV4dTVZdkNsWi1FMDFnTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGu1jTANBgkqhkiG9w0BAQsFAAOC
AQEAXrdNosTuWuVkv0VBSCM5Jai9NTZQrFw4GVflj4NcGpcVo/1XUeBQqu9CGwM6
C6r54tdZAcxwqYxOy5vrpAydgi/FKsmdkXz1RVX7AHfx1zBxSWuiFmHaoAUBXR34
auBcpy3Xn8raDmccwTgfiziBFzEnFWVqgg0LttN+Brb8vuZhISqQwyrlbqRs2AKw
j9CBigRcMTlJtJquLpgKteVu2rqd89L3ym+u6P5BAj8pMoOk+qTriiK5oUplkBRY
be/QS1dRuYuPhKs0m9reKQuHajkWes3mlwbpqdxuLX+uAbwFHZbv6iCk3L3TLXXJ
xUE9MR7gDY/FHDKNPlTWr5O3ag==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org