Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Kk31zjkyzXwkpUUFvJYvEYwdIyM.roa
File: Kk31zjkyzXwkpUUFvJYvEYwdIyM.roa (raw, json)
Hash identifier: 5DBNB2nxtjaHssf0ONodwcGK3TYfTqT1AT8M8J4888E=
Subject key identifier: 2A:4D:F5:CE:39:32:CD:7C:24:A5:45:05:BC:96:2F:11:8C:1D:23:23
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 17FEC5EC
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Kk31zjkyzXwkpUUFvJYvEYwdIyM.roa
Signing time: Sat 01 Jan 2022 04:00:28 +0000
ROA not before: Sat 01 Jan 2022 04:00:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60457
IP address blocks: 46.10.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 402572780 (0x17fec5ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a4df5ce3932cd7c24a54505bc962f118c1d2323
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:17:a3:8d:42:2b:b1:a8:9b:b4:73:37:af:c2:
43:a2:05:53:b5:71:58:4a:a1:04:cf:f8:96:e5:34:
bc:de:4d:66:89:f5:31:b9:07:8f:ca:77:d7:9d:17:
1e:c5:cf:3f:16:09:e7:14:8d:58:3b:a7:7f:78:94:
27:db:ec:26:93:cd:e0:fe:38:c2:1c:e1:fc:d3:31:
2e:5a:17:43:38:91:34:8b:df:2f:8b:af:37:30:1e:
f2:fe:85:cc:6b:09:53:3e:b7:cc:f0:86:35:e8:41:
b7:0d:dc:f2:a8:bd:57:9d:08:d4:20:46:aa:af:46:
99:92:b0:83:4a:c7:6d:37:86:26:69:32:80:e1:f5:
5f:1f:a4:0c:0f:95:14:b8:d3:96:f9:62:d2:43:79:
50:8d:d3:52:0f:4b:5b:29:2e:73:b5:10:f3:9c:b1:
58:3f:35:fc:78:e2:79:a2:73:e9:3d:f1:5e:e7:75:
8e:4e:d5:64:e5:71:9a:97:7c:ff:91:f6:62:51:bc:
61:46:26:9e:9e:b3:4f:5c:52:bb:aa:06:36:74:2b:
32:77:b3:cc:3c:77:89:2d:ff:da:dd:a7:12:a5:71:
17:d8:13:f5:13:61:0a:b2:66:49:ed:5c:7c:78:1f:
af:a5:18:93:cc:b8:10:2f:7f:94:7a:3d:7e:13:f9:
bb:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:4D:F5:CE:39:32:CD:7C:24:A5:45:05:BC:96:2F:11:8C:1D:23:23
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Kk31zjkyzXwkpUUFvJYvEYwdIyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.10.156.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:fa:38:cf:97:6d:76:2a:74:17:1e:df:48:36:41:68:b4:2c:
2f:c0:f9:df:54:e5:1d:1d:6f:f2:f1:bf:fe:56:aa:8f:0b:2b:
ac:67:59:74:70:09:83:1e:36:b6:f2:4f:0c:5b:e1:1d:76:00:
86:ad:28:62:30:ff:9d:fc:b3:3b:a1:ce:ed:0b:f3:ea:66:ac:
75:dd:3e:a4:e3:d6:f1:eb:94:b0:01:91:2f:1b:4e:dd:a6:dd:
2e:18:fb:51:2b:39:36:d0:45:69:ed:08:89:2f:fa:ba:c5:8e:
a1:91:df:ea:70:83:21:2a:22:8f:e5:68:7f:da:c5:4c:99:59:
26:a2:2c:f4:2c:87:23:a1:03:0c:ec:7d:4c:75:01:9d:aa:e3:
7c:f2:c7:2e:33:ea:1b:78:24:3f:c7:72:74:66:b9:fa:74:15:
d4:d0:6f:b7:f0:9a:71:60:5f:e8:99:d2:8b:3c:20:5c:8b:b1:
7a:cb:16:21:4d:4c:72:d2:ef:72:cf:7f:d3:32:80:0b:79:50:
66:93:f5:ad:0a:79:3a:b6:f2:0b:8e:7d:dc:bf:9a:a0:a7:61:
e7:72:e8:f5:58:d3:4f:fd:64:6c:e2:11:52:22:ff:63:db:9d:
7a:60:7a:76:95:03:50:09:08:a1:2a:69:90:e1:b9:51:82:df:
13:a6:a8:69
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEF/7F7DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NGIyZjRmYTUxNjNhZjk2MTY4ZTg4ZmJmOWNiNGVkMWVkOGZiNGM0MB4XDTIyMDEw
MTA0MDAyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmE0ZGY1Y2UzOTMy
Y2Q3YzI0YTU0NTA1YmM5NjJmMTE4YzFkMjMyMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK4Xo41CK7Gom7RzN6/CQ6IFU7VxWEqhBM/4luU0vN5NZon1
MbkHj8p3150XHsXPPxYJ5xSNWDunf3iUJ9vsJpPN4P44whzh/NMxLloXQziRNIvf
L4uvNzAe8v6FzGsJUz63zPCGNehBtw3c8qi9V50I1CBGqq9GmZKwg0rHbTeGJmky
gOH1Xx+kDA+VFLjTlvli0kN5UI3TUg9LWykuc7UQ85yxWD81/HjieaJz6T3xXud1
jk7VZOVxmpd8/5H2YlG8YUYmnp6zT1xSu6oGNnQrMnezzDx3iS3/2t2nEqVxF9gT
9RNhCrJmSe1cfHgfr6UYk8y4EC9/lHo9fhP5u4kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQqTfXOOTLNfCSlRQW8li8RjB0jIzAfBgNVHSMEGDAWgBSEsvT6UWOvlhaO
iPv5y07R7Y+0xDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hMTDAtbEZqcjVZV2pvajctY3RPMGUyUHRNUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjAvNGFhNzg5LTg3OGItNDcyYi1iODQ3LTg3MmJhMmQ5ZjQ0Yy8x
L0trMzF6amt5elh3a3BVVUZ2Sll2RVl3ZEl5TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAv
NGFhNzg5LTg3OGItNDcyYi1iODQ3LTg3MmJhMmQ5ZjQ0Yy8xL2hMTDAtbEZqcjVZ
V2pvajctY3RPMGUyUHRNUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC4KnDANBgkqhkiG9w0BAQsFAAOC
AQEATfo4z5dtdip0Fx7fSDZBaLQsL8D531TlHR1v8vG//laqjwsrrGdZdHAJgx42
tvJPDFvhHXYAhq0oYjD/nfyzO6HO7Qvz6masdd0+pOPW8euUsAGRLxtO3abdLhj7
USs5NtBFae0IiS/6usWOoZHf6nCDISoij+Vof9rFTJlZJqIs9CyHI6EDDOx9THUB
narjfPLHLjPqG3gkP8dydGa5+nQV1NBvt/CacWBf6JnSizwgXIuxessWIU1MctLv
cs9/0zKAC3lQZpP1rQp5OrbyC4593L+aoKdh53Lo9VjTT/1kbOIRUiL/Y9udemB6
dpUDUAkIoSppkOG5UYLfE6aoaQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org