Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/A8BY-uOoU6ssb9ueQYBqfn8dmkU.roa
File: A8BY-uOoU6ssb9ueQYBqfn8dmkU.roa (raw, json)
Hash identifier: +VxKzmnBqLF1srqw7alMMJVfLBd9TxP2JQLMc2LUeeY=
Subject key identifier: 03:C0:58:FA:E3:A8:53:AB:2C:6F:DB:9E:41:80:6A:7E:7F:1D:9A:45
Certificate issuer: /CN=e37ee1eced19f8a0a3a635bfaa264293e3437795
Certificate serial: 3488AE96
Authority key identifier: E3:7E:E1:EC:ED:19:F8:A0:A3:A6:35:BF:AA:26:42:93:E3:43:77:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/437h7O0Z-KCjpjW_qiZCk-NDd5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/A8BY-uOoU6ssb9ueQYBqfn8dmkU.roa
Signing time: Mon 17 Jan 2022 09:46:41 +0000
ROA not before: Mon 17 Jan 2022 09:46:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196925
IP address blocks: 46.32.169.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 881372822 (0x3488ae96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e37ee1eced19f8a0a3a635bfaa264293e3437795
Validity
Not Before: Jan 17 09:46:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03c058fae3a853ab2c6fdb9e41806a7e7f1d9a45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f9:53:0f:56:f1:33:7d:71:94:e3:e6:81:7c:
ee:31:26:5f:45:50:99:f6:f2:97:fc:09:e0:ed:63:
c1:6a:70:47:8e:1b:a2:29:35:c3:bc:62:da:1c:18:
84:12:8c:a2:2b:e0:62:a3:d0:b0:e6:bc:17:0c:f4:
c6:7c:d3:7f:55:b6:cf:37:a0:0d:fc:35:60:d8:cb:
c5:ab:4c:a9:ef:e2:43:b9:3f:14:c0:f3:01:77:6f:
69:72:8b:06:a0:f5:e5:f5:c1:a6:43:d9:92:51:bd:
69:d8:4b:93:1d:48:3f:20:ed:80:43:9a:a2:fa:b1:
83:e4:28:42:35:5f:db:98:d5:f3:06:9a:57:6e:f4:
45:c7:18:97:56:c6:36:ce:a3:3d:40:b0:33:a6:a7:
b7:24:18:63:76:bc:3a:3f:e3:67:84:89:14:b8:60:
10:a8:96:79:21:88:ff:59:ba:e6:70:f5:cc:0b:bc:
0c:5d:f4:21:ad:dc:6c:10:b7:e6:94:2a:5a:21:f3:
91:af:7d:c7:e2:06:79:2f:76:b3:e4:de:5e:59:ec:
ce:d3:b6:74:6b:25:ef:a9:cc:db:39:0e:a0:d5:87:
c3:b7:c8:50:f7:81:0e:01:1d:66:86:27:a1:70:9a:
b3:fe:8d:d9:b9:9c:a1:d6:d9:fc:e1:da:70:9f:1c:
bb:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:C0:58:FA:E3:A8:53:AB:2C:6F:DB:9E:41:80:6A:7E:7F:1D:9A:45
X509v3 Authority Key Identifier:
keyid:E3:7E:E1:EC:ED:19:F8:A0:A3:A6:35:BF:AA:26:42:93:E3:43:77:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/437h7O0Z-KCjpjW_qiZCk-NDd5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/A8BY-uOoU6ssb9ueQYBqfn8dmkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/437h7O0Z-KCjpjW_qiZCk-NDd5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.32.169.0/24
Signature Algorithm: sha256WithRSAEncryption
03:34:35:e8:7a:2b:94:89:0d:e2:46:f8:4a:4f:06:78:68:15:
91:86:bb:9a:35:9b:d6:b3:46:3c:04:69:12:0e:c8:47:08:f1:
c3:a7:f9:a6:9f:bb:ca:94:9f:66:69:dc:cb:28:dd:5c:04:30:
79:3f:36:fc:6f:ef:36:de:05:4f:1e:e2:9d:a0:48:a0:c5:c3:
52:29:cd:60:83:2c:80:e9:b7:09:26:5a:05:96:b0:e8:b0:4d:
a8:65:b3:06:f1:a8:a9:f7:65:33:f6:f0:df:fb:d2:32:da:e3:
e1:91:76:1a:81:55:b5:ae:24:3f:1a:37:d6:09:b6:0f:ca:91:
9e:33:57:aa:11:7d:8b:bc:48:ec:c4:b1:cd:ec:57:38:05:a4:
1a:b1:3a:ff:b6:00:c9:e0:18:d7:ce:21:01:1f:af:7d:a0:2e:
a7:de:27:0b:87:cb:0d:7c:5e:b7:a9:90:47:87:3b:ec:d9:16:
92:94:a4:d1:74:e1:47:c5:a8:63:2f:79:37:06:3f:05:98:4c:
6c:fb:e8:d1:db:c1:35:ac:16:bf:e5:72:58:3a:9b:00:df:f0:
e5:fd:44:aa:64:25:90:cb:62:c1:e7:bb:fd:1c:0e:46:04:22:
91:40:a5:59:65:d3:00:c1:32:4b:bc:a0:03:b2:60:09:0d:f9:
1e:0f:f8:5c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIENIiuljANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MzdlZTFlY2VkMTlmOGEwYTNhNjM1YmZhYTI2NDI5M2UzNDM3Nzk1MB4XDTIyMDEx
NzA5NDY0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDNjMDU4ZmFlM2E4
NTNhYjJjNmZkYjllNDE4MDZhN2U3ZjFkOWE0NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKz5Uw9W8TN9cZTj5oF87jEmX0VQmfbyl/wJ4O1jwWpwR44b
oik1w7xi2hwYhBKMoivgYqPQsOa8Fwz0xnzTf1W2zzegDfw1YNjLxatMqe/iQ7k/
FMDzAXdvaXKLBqD15fXBpkPZklG9adhLkx1IPyDtgEOaovqxg+QoQjVf25jV8waa
V270RccYl1bGNs6jPUCwM6antyQYY3a8Oj/jZ4SJFLhgEKiWeSGI/1m65nD1zAu8
DF30Ia3cbBC35pQqWiHzka99x+IGeS92s+TeXlnsztO2dGsl76nM2zkOoNWHw7fI
UPeBDgEdZoYnoXCas/6N2bmcodbZ/OHacJ8cuyMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQDwFj646hTqyxv255BgGp+fx2aRTAfBgNVHSMEGDAWgBTjfuHs7Rn4oKOm
Nb+qJkKT40N3lTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzQzN2g3TzBaLUtDanBqV19xaVpDay1ORGQ1VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjgvNmQ1ZDc1LTRkMWUtNDY5Ny1iMWQzLTM2ZTM0NGFiYzlkMy8x
L0E4QlktdU9vVTZzc2I5dWVRWUJxZm44ZG1rVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjgv
NmQ1ZDc1LTRkMWUtNDY5Ny1iMWQzLTM2ZTM0NGFiYzlkMy8xLzQzN2g3TzBaLUtD
anBqV19xaVpDay1ORGQ1VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC4gqTANBgkqhkiG9w0BAQsFAAOC
AQEAAzQ16HorlIkN4kb4Sk8GeGgVkYa7mjWb1rNGPARpEg7IRwjxw6f5pp+7ypSf
ZmncyyjdXAQweT82/G/vNt4FTx7inaBIoMXDUinNYIMsgOm3CSZaBZaw6LBNqGWz
BvGoqfdlM/bw3/vSMtrj4ZF2GoFVta4kPxo31gm2D8qRnjNXqhF9i7xI7MSxzexX
OAWkGrE6/7YAyeAY184hAR+vfaAup94nC4fLDXxet6mQR4c77NkWkpSk0XThR8Wo
Yy95NwY/BZhMbPvo0dvBNawWv+VyWDqbAN/w5f1EqmQlkMtiwee7/RwORgQikUCl
WWXTAMEyS7ygA7JgCQ35Hg/4XA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:44 2025 by rpki-client