Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/DMh5rmpZCamzIvlPytVPcMvcAas.roa
File: DMh5rmpZCamzIvlPytVPcMvcAas.roa (raw, json)
Hash identifier: 9CXzCQRVCwgTEP7ZQ/nKJbeUDq7AtpPpup7UXNplCnA=
Subject key identifier: 0C:C8:79:AE:6A:59:09:A9:B3:22:F9:4F:CA:D5:4F:70:CB:DC:01:AB
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 03BB4177
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/DMh5rmpZCamzIvlPytVPcMvcAas.roa
Signing time: Mon 23 May 2022 07:27:29 +0000
ROA not before: Mon 23 May 2022 07:27:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211895
IP address blocks: 46.23.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62603639 (0x3bb4177)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: May 23 07:27:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0cc879ae6a5909a9b322f94fcad54f70cbdc01ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:56:63:8f:e4:d5:b3:38:70:52:50:7f:d0:6c:
1f:18:df:62:06:3c:5c:47:f9:22:90:3b:df:14:27:
9f:e1:db:ea:e3:9a:16:d9:5b:f2:14:c5:7b:ba:5a:
1a:6d:4d:76:d9:c7:6d:c1:3e:98:6c:4c:74:ea:dc:
4a:fd:02:fd:a0:06:c3:88:0c:eb:26:cd:6a:19:80:
69:79:be:94:bb:a4:7c:fd:c2:07:54:c2:87:9d:b7:
9b:37:b8:64:bd:71:7f:83:63:a3:41:a7:12:a3:f7:
fa:26:e3:9c:b0:fd:4e:9a:49:74:2f:28:05:bc:aa:
07:3b:7f:a3:92:a4:b1:e0:45:a3:00:32:29:a0:8b:
a1:1b:e3:59:4f:1f:c3:82:75:9c:3c:e6:65:fe:f8:
8a:03:05:e8:71:ea:64:11:f0:1e:ab:2e:89:5a:5f:
df:58:cd:f4:d5:4e:a5:f4:1f:3c:f3:8d:65:fa:2c:
a2:92:d8:5e:36:90:e6:af:35:34:7c:91:6f:8d:fd:
72:6b:09:4b:68:76:24:5c:44:ed:22:4e:09:43:e1:
36:32:2c:07:4d:46:b9:86:8e:2c:20:1f:04:da:61:
4d:00:ee:3c:e5:68:de:a9:0f:cc:99:c4:b2:80:b2:
a0:b1:36:e8:0e:45:da:db:ac:3c:cc:3a:f4:51:36:
de:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:C8:79:AE:6A:59:09:A9:B3:22:F9:4F:CA:D5:4F:70:CB:DC:01:AB
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/DMh5rmpZCamzIvlPytVPcMvcAas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.109.0/24
Signature Algorithm: sha256WithRSAEncryption
83:83:3e:d1:55:04:7b:7a:de:7c:3f:dd:ee:3b:56:c9:2f:b7:
e9:76:18:76:8c:db:2c:7b:3d:08:1f:e4:82:51:8a:52:e5:b4:
ae:db:d4:3e:32:b0:81:19:9b:47:60:60:02:29:39:59:14:e3:
d6:15:3f:58:24:57:8b:40:86:ce:bb:f3:ee:3b:7d:9f:74:d4:
1a:af:67:72:e8:fa:93:e2:e0:dc:80:ec:24:d0:28:6b:f3:b6:
b3:2c:9a:88:18:2c:cf:e1:49:9a:f4:69:2b:d7:ea:d2:d5:f7:
87:3c:8f:9d:7d:4f:8d:48:ba:de:47:b8:84:d4:f8:a3:98:ad:
d2:12:65:3d:eb:79:b7:32:bf:3a:a4:b9:f3:88:f4:b2:1f:bb:
71:90:5d:81:cb:80:f2:0c:40:f0:66:14:88:5c:1e:3d:0e:6a:
81:57:f6:45:08:75:d7:08:0d:44:b4:80:76:68:4a:fe:11:45:
28:66:7d:e2:49:cb:6e:86:4a:99:a4:0f:62:c1:b6:2c:d6:34:
7d:61:09:6e:57:f6:f2:6a:3e:de:f0:ba:e0:76:26:8c:a4:87:
75:be:c6:82:c8:50:ec:9c:77:b6:bb:ae:e8:3f:0d:38:1d:41:
96:01:84:34:fc:09:79:ca:ad:b5:98:a2:a0:93:c2:f6:4c:12:
69:bf:c4:1b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA7tBdzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZDA2YTQyYmIyNDQ2ZTUxZjE5MmVhMzc1YmRmN2VlYzVhNTFjNzdmMB4XDTIyMDUy
MzA3MjcyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGNjODc5YWU2YTU5
MDlhOWIzMjJmOTRmY2FkNTRmNzBjYmRjMDFhYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN9WY4/k1bM4cFJQf9BsHxjfYgY8XEf5IpA73xQnn+Hb6uOa
Ftlb8hTFe7paGm1NdtnHbcE+mGxMdOrcSv0C/aAGw4gM6ybNahmAaXm+lLukfP3C
B1TCh523mze4ZL1xf4Njo0GnEqP3+ibjnLD9TppJdC8oBbyqBzt/o5KkseBFowAy
KaCLoRvjWU8fw4J1nDzmZf74igMF6HHqZBHwHqsuiVpf31jN9NVOpfQfPPONZfos
opLYXjaQ5q81NHyRb439cmsJS2h2JFxE7SJOCUPhNjIsB01GuYaOLCAfBNphTQDu
POVo3qkPzJnEsoCyoLE26A5F2tusPMw69FE23tkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQMyHmualkJqbMi+U/K1U9wy9wBqzAfBgNVHSMEGDAWgBR9BqQrskRuUfGS
6jdb337sWlHHfzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZRYWtLN0pFYmxIeGt1bzNXOTktN0ZwUngzOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWMvNzgwMDJhLTRmYzAtNGRiZi04NTg1LTJjZjgwNmIyZDBmMi8x
L0RNaDVybXBaQ2Ftekl2bFB5dFZQY012Y0Fhcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWMv
NzgwMDJhLTRmYzAtNGRiZi04NTg1LTJjZjgwNmIyZDBmMi8xL2ZRYWtLN0pFYmxI
eGt1bzNXOTktN0ZwUngzOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC4XbTANBgkqhkiG9w0BAQsFAAOC
AQEAg4M+0VUEe3refD/d7jtWyS+36XYYdozbLHs9CB/kglGKUuW0rtvUPjKwgRmb
R2BgAik5WRTj1hU/WCRXi0CGzrvz7jt9n3TUGq9ncuj6k+Lg3IDsJNAoa/O2syya
iBgsz+FJmvRpK9fq0tX3hzyPnX1PjUi63ke4hNT4o5it0hJlPet5tzK/OqS584j0
sh+7cZBdgcuA8gxA8GYUiFwePQ5qgVf2RQh11wgNRLSAdmhK/hFFKGZ94knLboZK
maQPYsG2LNY0fWEJblf28mo+3vC64HYmjKSHdb7GgshQ7Jx3truu6D8NOB1BlgGE
NPwJecqttZiioJPC9kwSab/EGw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:00 2023 by rpki-client on console-fra.rpki-client.org