Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/48f2ec-d3a7-4354-93ff-0f5c959aca0b/1/RUDw2snakdK1CXNenxcDClrcKSY.roa
File: RUDw2snakdK1CXNenxcDClrcKSY.roa (raw, json)
Hash identifier: JpQSjU8zYU89PHDP++TwYTYKCU+RKzxoEpVFr1HfCnE=
Subject key identifier: 45:40:F0:DA:C9:DA:91:D2:B5:09:73:5E:9F:17:03:0A:5A:DC:29:26
Certificate issuer: /CN=7c3cca3419c8ab15b3ad4ed74438e53f4fb610df
Certificate serial: 01889A80CC9F47AB215D61D043F146AF8195
Authority key identifier: 7C:3C:CA:34:19:C8:AB:15:B3:AD:4E:D7:44:38:E5:3F:4F:B6:10:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fDzKNBnIqxWzrU7XRDjlP0-2EN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/48f2ec-d3a7-4354-93ff-0f5c959aca0b/1/RUDw2snakdK1CXNenxcDClrcKSY.roa
Signing time: Thu 08 Jun 2023 10:15:12 +0000
ROA not before: Thu 08 Jun 2023 10:15:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199864
IP address blocks: 185.46.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9a:80:cc:9f:47:ab:21:5d:61:d0:43:f1:46:af:81:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3cca3419c8ab15b3ad4ed74438e53f4fb610df
Validity
Not Before: Jun 8 10:15:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4540f0dac9da91d2b509735e9f17030a5adc2926
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ec:c0:1f:52:10:50:71:a6:73:22:a8:ca:b3:
45:61:c8:4f:af:15:05:e7:ca:76:b2:3a:50:9e:12:
64:bd:bf:99:39:ae:94:25:07:b7:b0:e5:4f:71:1f:
db:be:7e:88:80:03:81:3a:0d:89:08:32:7a:e4:df:
55:13:00:d6:88:a7:74:a9:b4:e5:06:60:08:e6:13:
4f:d5:17:db:1a:5a:2a:66:d0:9d:51:be:d7:d3:e8:
1f:04:85:cb:c1:ca:54:40:b9:b3:6b:a7:bd:43:ad:
d2:f5:13:13:fd:c8:dd:fb:f3:bc:69:45:4e:6f:f7:
64:21:ee:47:5d:90:3b:fe:63:d9:d5:a6:8b:fa:92:
0c:4e:14:d8:32:71:70:db:96:ea:8c:ce:40:f1:f0:
31:10:fa:32:d1:fd:44:a9:3a:65:bf:04:18:86:57:
b0:9a:39:23:ad:e5:8f:d7:4f:02:ca:84:78:3a:26:
4e:c4:bb:52:f8:c5:b0:2f:1b:38:a4:4e:10:c6:70:
34:1a:ab:80:78:bd:16:a3:e5:11:d0:d9:28:ea:33:
11:6c:4b:eb:b4:b6:48:af:9d:a7:de:a2:9a:ff:3a:
df:fd:9b:da:bb:9c:cf:24:80:09:1e:d1:43:b5:8a:
a2:41:b0:b7:18:a6:d0:93:4d:a9:fc:27:3e:2a:9c:
c2:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:40:F0:DA:C9:DA:91:D2:B5:09:73:5E:9F:17:03:0A:5A:DC:29:26
X509v3 Authority Key Identifier:
keyid:7C:3C:CA:34:19:C8:AB:15:B3:AD:4E:D7:44:38:E5:3F:4F:B6:10:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fDzKNBnIqxWzrU7XRDjlP0-2EN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/48f2ec-d3a7-4354-93ff-0f5c959aca0b/1/RUDw2snakdK1CXNenxcDClrcKSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/48f2ec-d3a7-4354-93ff-0f5c959aca0b/1/fDzKNBnIqxWzrU7XRDjlP0-2EN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.27.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:9b:f0:dc:0a:2d:a8:84:7b:74:e5:57:6d:14:a8:81:bf:4b:
6e:dc:49:22:a4:47:3c:88:bb:8c:01:6a:cf:da:79:33:42:47:
a9:d1:d8:9f:bc:99:92:ef:7c:7a:e7:2b:fe:7e:c8:51:ae:d0:
2b:6a:fa:7e:62:bd:11:00:c9:92:dd:82:38:1a:50:a3:80:0a:
34:95:69:fc:80:7a:d9:d3:28:7a:c6:79:8b:a8:cf:57:a3:43:
38:48:f4:8a:9b:57:de:df:dc:7d:5d:af:69:30:ec:44:de:f4:
69:90:5f:65:ce:dc:22:93:31:1d:0d:e5:35:cf:c7:ef:6e:68:
3f:cd:93:03:61:f5:5b:a4:ea:82:fe:81:9c:ab:86:fc:bd:c3:
1d:4e:7b:8a:83:a0:20:cc:84:1c:18:c5:a4:91:ea:6e:98:f9:
a7:79:5a:ef:43:37:76:d6:af:7b:ae:08:bc:f3:34:da:87:25:
84:33:0e:12:98:f6:4d:e1:4e:56:80:b1:1a:a0:4b:b9:99:33:
6e:cc:0f:52:6b:76:76:19:6c:08:1e:ea:db:26:f6:b1:ed:ba:
db:9f:32:c4:6d:1d:a1:00:45:05:19:f3:ff:b1:c3:67:14:65:
0b:1f:fd:78:c1:31:f2:72:b5:d7:1a:83:b4:d4:db:29:a2:60:
20:c0:ae:ac
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYiagMyfR6shXWHQQ/FGr4GVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjM2NjYTM0MTljOGFiMTViM2FkNGVkNzQ0MzhlNTNmNGZi
NjEwZGYwHhcNMjMwNjA4MTAxNTEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NTQwZjBkYWM5ZGE5MWQyYjUwOTczNWU5ZjE3MDMwYTVhZGMyOTI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiOzAH1IQUHGmcyKoyrNFYchPrxUF
58p2sjpQnhJkvb+ZOa6UJQe3sOVPcR/bvn6IgAOBOg2JCDJ65N9VEwDWiKd0qbTl
BmAI5hNP1RfbGloqZtCdUb7X0+gfBIXLwcpUQLmza6e9Q63S9RMT/cjd+/O8aUVO
b/dkIe5HXZA7/mPZ1aaL+pIMThTYMnFw25bqjM5A8fAxEPoy0f1EqTplvwQYhlew
mjkjreWP108CyoR4OiZOxLtS+MWwLxs4pE4QxnA0GquAeL0Wo+UR0Nko6jMRbEvr
tLZIr52n3qKa/zrf/Zvau5zPJIAJHtFDtYqiQbC3GKbQk02p/Cc+KpzCMwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEVA8NrJ2pHStQlzXp8XAwpa3CkmMB8GA1UdIwQY
MBaAFHw8yjQZyKsVs61O10Q45T9PthDfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZkR6S05CbklxeFd6clU3WFJEamxQMC0yRU44LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS80OGYyZWMtZDNhNy00MzU0LTkzZmYt
MGY1Yzk1OWFjYTBiLzEvUlVEdzJzbmFrZEsxQ1hOZW54Y0RDbHJjS1NZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS80OGYyZWMtZDNhNy00MzU0LTkzZmYtMGY1Yzk1OWFjYTBi
LzEvZkR6S05CbklxeFd6clU3WFJEamxQMC0yRU44LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuS4bMA0G
CSqGSIb3DQEBCwUAA4IBAQCjm/DcCi2ohHt05VdtFKiBv0tu3EkipEc8iLuMAWrP
2nkzQkep0difvJmS73x65yv+fshRrtAravp+Yr0RAMmS3YI4GlCjgAo0lWn8gHrZ
0yh6xnmLqM9Xo0M4SPSKm1fe39x9Xa9pMOxE3vRpkF9lztwikzEdDeU1z8fvbmg/
zZMDYfVbpOqC/oGcq4b8vcMdTnuKg6AgzIQcGMWkkepumPmneVrvQzd21q97rgi8
8zTahyWEMw4SmPZN4U5WgLEaoEu5mTNuzA9Sa3Z2GWwIHurbJvax7brbnzLEbR2h
AEUFGfP/scNnFGULH/14wTHycrXXGoO01NspomAgwK6s
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:33 2025 by rpki-client