Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/cDs1K4KXSjApVI8x9qRGYf61z9E.roa
File: cDs1K4KXSjApVI8x9qRGYf61z9E.roa (raw, json)
Hash identifier: M1xuKhHoD+yfoKfnUZOHaHPmjUZ2JFjtyrfeIonwGQE=
Subject key identifier: 70:3B:35:2B:82:97:4A:30:29:54:8F:31:F6:A4:46:61:FE:B5:CF:D1
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 027428F8
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/cDs1K4KXSjApVI8x9qRGYf61z9E.roa
Signing time: Fri 28 Jan 2022 20:45:39 +0000
ROA not before: Fri 28 Jan 2022 20:45:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 394648
IP address blocks: 46.23.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41167096 (0x27428f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Jan 28 20:45:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=703b352b82974a3029548f31f6a44661feb5cfd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c9:10:a0:44:b8:12:36:c9:1f:bb:45:4e:35:
03:71:df:62:f8:6e:13:e6:21:a9:0b:5b:02:c1:82:
eb:8b:f6:2a:20:11:04:87:e3:7c:3b:22:8a:0d:fb:
4c:9d:0c:3a:a8:d4:df:e3:a7:b9:7a:ce:d3:07:a6:
eb:0f:ed:eb:0b:56:ca:1b:5c:bf:79:26:0c:5a:52:
d9:9a:dd:e3:12:53:1d:3d:5c:ad:b3:da:90:35:04:
ac:da:fb:03:6d:42:b9:bd:a3:fb:35:0a:b3:51:7d:
d8:85:30:86:96:27:df:99:af:f8:ff:67:23:ba:71:
32:f0:3f:13:db:fc:f5:ae:e1:44:7b:c3:88:76:e0:
c5:6c:56:51:e6:06:43:6f:32:36:93:c2:b6:4a:c6:
6b:e4:84:cc:9b:36:ce:ed:8b:ae:05:24:fd:fa:5d:
a4:71:62:22:c0:cf:3d:4f:c1:1a:95:91:19:61:d1:
af:47:50:18:c9:c4:65:d1:77:39:6f:e1:e0:4e:55:
56:1e:cc:ff:c7:8b:14:4d:45:8f:c0:b0:ae:e3:93:
57:3e:60:3b:09:9b:15:8c:cb:c4:1f:a4:e9:bd:24:
6f:68:ae:a7:db:4f:98:b4:ba:1e:5a:44:df:2c:70:
56:11:7f:7b:e5:5e:51:84:a7:46:04:05:68:5b:91:
cd:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:3B:35:2B:82:97:4A:30:29:54:8F:31:F6:A4:46:61:FE:B5:CF:D1
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/cDs1K4KXSjApVI8x9qRGYf61z9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.108.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:82:fb:50:79:e9:46:79:83:78:48:10:6a:d8:e2:07:81:2e:
5d:ac:ac:e8:39:f7:4e:78:d7:5c:45:d9:54:9e:85:cc:d0:c8:
3a:f3:ac:4a:c7:49:fa:68:59:b4:ad:c1:be:0b:43:65:61:48:
6a:99:67:67:d1:5c:bb:f0:f4:34:00:c2:a7:b4:40:65:80:eb:
05:d5:9b:b1:40:89:75:b9:68:c2:36:85:53:24:27:d2:f9:ce:
18:5d:3a:92:34:d3:cb:59:d4:f2:ee:6b:1b:a3:af:46:44:62:
46:6c:12:25:69:d0:8a:6c:3e:43:8f:4b:2a:c9:28:77:7c:86:
95:43:a6:c0:71:13:a8:f2:f9:bb:b8:39:3f:f0:bb:29:5e:ab:
be:f0:cc:73:09:3e:9f:fa:23:c3:bb:97:d3:a7:3d:6c:77:aa:
88:be:5e:2b:62:e9:d7:dc:8d:93:c8:88:c1:4a:e9:b4:b5:f1:
17:67:d6:84:41:16:5d:18:ed:74:92:85:5c:c7:87:89:76:e0:
32:71:b6:bb:9f:3a:6b:10:91:72:c0:46:30:23:59:a9:79:0e:
85:df:86:f3:fe:0d:ea:0b:c8:0e:69:54:ba:5d:cd:01:d2:41:
6a:de:d1:7d:39:f7:55:98:14:3a:e7:ea:de:9e:d1:a9:a5:a1:
20:fc:d5:3f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAnQo+DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZDA2YTQyYmIyNDQ2ZTUxZjE5MmVhMzc1YmRmN2VlYzVhNTFjNzdmMB4XDTIyMDEy
ODIwNDUzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzAzYjM1MmI4Mjk3
NGEzMDI5NTQ4ZjMxZjZhNDQ2NjFmZWI1Y2ZkMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK3JEKBEuBI2yR+7RU41A3HfYvhuE+YhqQtbAsGC64v2KiAR
BIfjfDsiig37TJ0MOqjU3+OnuXrO0wem6w/t6wtWyhtcv3kmDFpS2Zrd4xJTHT1c
rbPakDUErNr7A21Cub2j+zUKs1F92IUwhpYn35mv+P9nI7pxMvA/E9v89a7hRHvD
iHbgxWxWUeYGQ28yNpPCtkrGa+SEzJs2zu2LrgUk/fpdpHFiIsDPPU/BGpWRGWHR
r0dQGMnEZdF3OW/h4E5VVh7M/8eLFE1Fj8CwruOTVz5gOwmbFYzLxB+k6b0kb2iu
p9tPmLS6HlpE3yxwVhF/e+VeUYSnRgQFaFuRza8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRwOzUrgpdKMClUjzH2pEZh/rXP0TAfBgNVHSMEGDAWgBR9BqQrskRuUfGS
6jdb337sWlHHfzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZRYWtLN0pFYmxIeGt1bzNXOTktN0ZwUngzOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWMvNzgwMDJhLTRmYzAtNGRiZi04NTg1LTJjZjgwNmIyZDBmMi8x
L2NEczFLNEtYU2pBcFZJOHg5cVJHWWY2MXo5RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWMv
NzgwMDJhLTRmYzAtNGRiZi04NTg1LTJjZjgwNmIyZDBmMi8xL2ZRYWtLN0pFYmxI
eGt1bzNXOTktN0ZwUngzOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC4XbDANBgkqhkiG9w0BAQsFAAOC
AQEAOoL7UHnpRnmDeEgQatjiB4EuXays6Dn3TnjXXEXZVJ6FzNDIOvOsSsdJ+mhZ
tK3BvgtDZWFIaplnZ9Fcu/D0NADCp7RAZYDrBdWbsUCJdblowjaFUyQn0vnOGF06
kjTTy1nU8u5rG6OvRkRiRmwSJWnQimw+Q49LKskod3yGlUOmwHETqPL5u7g5P/C7
KV6rvvDMcwk+n/ojw7uX06c9bHeqiL5eK2Lp19yNk8iIwUrptLXxF2fWhEEWXRjt
dJKFXMeHiXbgMnG2u586axCRcsBGMCNZqXkOhd+G8/4N6gvIDmlUul3NAdJBat7R
fTn3VZgUOufq3p7RqaWhIPzVPw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:01 2023 by rpki-client on console-fra.rpki-client.org