Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/QXOOVovG2c8zn2T5XM1P--jMFfo.roa
File: QXOOVovG2c8zn2T5XM1P--jMFfo.roa (raw, json)
Hash identifier: S/wHFqYpvdKAdb5JxW7hJCrnoD4lDgxAOdW/dId6DN8=
Subject key identifier: 41:73:8E:56:8B:C6:D9:CF:33:9F:64:F9:5C:CD:4F:FB:E8:CC:15:FA
Certificate issuer: /CN=e37ee1eced19f8a0a3a635bfaa264293e3437795
Certificate serial: 34CD31F7
Authority key identifier: E3:7E:E1:EC:ED:19:F8:A0:A3:A6:35:BF:AA:26:42:93:E3:43:77:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/437h7O0Z-KCjpjW_qiZCk-NDd5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/QXOOVovG2c8zn2T5XM1P--jMFfo.roa
Signing time: Mon 14 Feb 2022 09:15:55 +0000
ROA not before: Mon 14 Feb 2022 09:15:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211790
IP address blocks: 46.32.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 885862903 (0x34cd31f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e37ee1eced19f8a0a3a635bfaa264293e3437795
Validity
Not Before: Feb 14 09:15:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41738e568bc6d9cf339f64f95ccd4ffbe8cc15fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:14:27:69:dc:f0:d5:7c:00:d5:bc:1d:3e:5c:
ba:f3:fc:f7:1c:7f:ff:c8:5f:c8:51:29:98:b3:cf:
c6:90:38:5c:e7:1a:27:ba:6b:bc:8b:33:84:03:05:
5f:0c:00:f2:48:c4:e0:d6:15:94:48:1b:6b:e0:fa:
cc:f6:78:25:82:eb:e2:0c:6a:e1:ca:d8:aa:3f:28:
21:a8:b0:d0:bb:78:d8:83:09:b8:56:17:e1:33:16:
b4:b0:65:08:c2:8a:dd:83:47:ba:72:69:64:53:10:
93:cf:60:2a:6f:7e:a2:0e:92:1e:44:69:a2:2a:59:
3a:6a:23:3a:7c:e1:cd:e9:fd:df:86:5c:8a:d7:35:
2a:39:98:3b:2d:aa:be:8a:3e:e6:d2:54:5a:a6:82:
d7:48:6d:56:04:78:7d:c7:ab:c9:28:9b:58:cd:a7:
62:cb:69:c7:60:ed:78:31:d3:fc:ec:a9:9b:0e:e4:
e0:3c:b4:a3:23:97:71:08:3f:15:b1:8a:8f:c6:15:
0d:9f:e8:19:cc:ab:62:91:2a:36:de:e8:63:5c:14:
54:e2:86:c9:c6:3b:1f:a2:3b:4b:4b:f4:a4:c5:2d:
4f:21:e1:6c:ab:43:37:14:f0:05:1e:59:28:8b:7d:
a6:03:6f:38:d3:8f:16:6c:9b:9f:68:2d:f7:84:ca:
e3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:73:8E:56:8B:C6:D9:CF:33:9F:64:F9:5C:CD:4F:FB:E8:CC:15:FA
X509v3 Authority Key Identifier:
keyid:E3:7E:E1:EC:ED:19:F8:A0:A3:A6:35:BF:AA:26:42:93:E3:43:77:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/437h7O0Z-KCjpjW_qiZCk-NDd5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/QXOOVovG2c8zn2T5XM1P--jMFfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/437h7O0Z-KCjpjW_qiZCk-NDd5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.32.168.0/24
Signature Algorithm: sha256WithRSAEncryption
20:80:12:cf:f1:6b:52:18:b0:f6:c1:43:68:40:04:1a:f3:7a:
e5:5c:bd:08:82:16:5f:0f:2d:36:77:57:6d:77:30:a3:bd:3f:
64:fa:4d:c3:3c:88:f1:ec:8c:69:ab:23:b8:02:ef:01:5e:17:
ee:2f:7f:75:63:cc:a7:b8:ec:39:c8:21:5f:58:48:ca:95:da:
48:f1:65:19:26:40:26:e6:93:dc:bb:ea:b5:b4:e4:22:d5:8b:
2b:4a:b7:97:c5:ef:c3:87:df:13:10:a7:3a:6c:f2:71:3f:e4:
a9:fe:3f:7a:6c:0a:d0:56:20:0b:26:94:1b:a6:3b:9f:34:a1:
9c:36:6f:90:48:84:76:e0:5e:8e:19:5c:da:ea:c8:40:91:18:
cd:d3:e5:79:07:8e:45:da:36:34:97:14:c5:f0:83:39:78:2f:
97:9c:b3:0d:3c:c7:4a:0f:1f:51:9d:92:70:99:47:be:25:6a:
48:af:82:a5:39:f3:d2:06:1c:2c:44:83:39:ed:c1:58:34:8f:
1c:fb:9b:6c:12:2b:e0:7a:cf:22:d4:f7:2f:cc:13:47:a7:8d:
fd:28:08:9e:46:0f:ae:a0:e0:97:e5:2a:96:e8:4f:b4:00:a2:
ec:ce:49:30:ba:99:10:6f:12:c3:b8:67:f2:46:6c:11:c9:6c:
e2:a0:7b:47
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIENM0x9zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MzdlZTFlY2VkMTlmOGEwYTNhNjM1YmZhYTI2NDI5M2UzNDM3Nzk1MB4XDTIyMDIx
NDA5MTU1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDE3MzhlNTY4YmM2
ZDljZjMzOWY2NGY5NWNjZDRmZmJlOGNjMTVmYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALQUJ2nc8NV8ANW8HT5cuvP89xx//8hfyFEpmLPPxpA4XOca
J7prvIszhAMFXwwA8kjE4NYVlEgba+D6zPZ4JYLr4gxq4crYqj8oIaiw0Lt42IMJ
uFYX4TMWtLBlCMKK3YNHunJpZFMQk89gKm9+og6SHkRpoipZOmojOnzhzen934Zc
itc1KjmYOy2qvoo+5tJUWqaC10htVgR4fcerySibWM2nYstpx2DteDHT/Oypmw7k
4Dy0oyOXcQg/FbGKj8YVDZ/oGcyrYpEqNt7oY1wUVOKGycY7H6I7S0v0pMUtTyHh
bKtDNxTwBR5ZKIt9pgNvONOPFmybn2gt94TK49cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRBc45Wi8bZzzOfZPlczU/76MwV+jAfBgNVHSMEGDAWgBTjfuHs7Rn4oKOm
Nb+qJkKT40N3lTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzQzN2g3TzBaLUtDanBqV19xaVpDay1ORGQ1VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjgvNmQ1ZDc1LTRkMWUtNDY5Ny1iMWQzLTM2ZTM0NGFiYzlkMy8x
L1FYT09Wb3ZHMmM4em4yVDVYTTFQLS1qTUZmby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjgv
NmQ1ZDc1LTRkMWUtNDY5Ny1iMWQzLTM2ZTM0NGFiYzlkMy8xLzQzN2g3TzBaLUtD
anBqV19xaVpDay1ORGQ1VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC4gqDANBgkqhkiG9w0BAQsFAAOC
AQEAIIASz/FrUhiw9sFDaEAEGvN65Vy9CIIWXw8tNndXbXcwo70/ZPpNwzyI8eyM
aasjuALvAV4X7i9/dWPMp7jsOcghX1hIypXaSPFlGSZAJuaT3LvqtbTkItWLK0q3
l8Xvw4ffExCnOmzycT/kqf4/emwK0FYgCyaUG6Y7nzShnDZvkEiEduBejhlc2urI
QJEYzdPleQeORdo2NJcUxfCDOXgvl5yzDTzHSg8fUZ2ScJlHviVqSK+CpTnz0gYc
LESDOe3BWDSPHPubbBIr4HrPItT3L8wTR6eN/SgInkYPrqDgl+UqluhPtACi7M5J
MLqZEG8Sw7hn8kZsEcls4qB7Rw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:39 2023 by rpki-client on console-ams.rpki-client.org