Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/eO-xyvjM0DBcdFgWC9iqj_2hBJk.roa
File: eO-xyvjM0DBcdFgWC9iqj_2hBJk.roa (raw, json)
Hash identifier: n+E809hWrTHuGkEbyerYgeqxY+limZEbXuU7bKRvn7g=
Subject key identifier: 78:EF:B1:CA:F8:CC:D0:30:5C:74:58:16:0B:D8:AA:8F:FD:A1:04:99
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0184D2FE00E03D76B79C7E0F308473B53B12
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/eO-xyvjM0DBcdFgWC9iqj_2hBJk.roa
Signing time: Fri 02 Dec 2022 13:19:32 +0000
ROA not before: Fri 02 Dec 2022 13:19:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 46.23.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d2:fe:00:e0:3d:76:b7:9c:7e:0f:30:84:73:b5:3b:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Dec 2 13:19:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78efb1caf8ccd0305c7458160bd8aa8ffda10499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a2:91:f9:fa:ba:72:9d:6f:85:fd:17:43:6c:
12:3a:12:57:f4:12:9c:e3:f0:fc:65:a2:0d:68:6f:
17:6a:4a:67:e9:4f:9b:8d:f6:a9:c0:fb:00:56:b6:
ba:0b:c5:61:3f:f0:e1:48:8f:c0:99:6a:e3:5d:80:
de:8c:40:33:0f:15:d1:f3:10:ac:5b:ce:a4:db:91:
40:89:57:3f:62:f4:e2:67:fd:a4:16:f5:65:ee:b4:
09:4a:bd:13:df:9d:bd:81:c2:c5:5d:3c:83:eb:60:
c8:b2:f4:76:c9:d4:83:18:43:43:eb:cd:e2:61:63:
00:4e:4d:2e:e3:38:0f:74:12:87:81:63:48:03:37:
b8:81:78:e6:14:4c:f8:ab:71:42:21:73:96:b4:2f:
01:12:82:ad:e7:b9:4d:15:8b:62:eb:1d:e4:91:06:
d6:03:9e:11:3a:75:e3:47:0c:1a:a6:a1:ab:06:1e:
e6:37:fc:a5:36:fd:ad:66:46:93:ad:5a:92:08:e3:
f7:ba:1f:37:92:94:f6:8a:fd:92:99:a0:74:77:5a:
bb:3a:34:d7:c3:19:8d:a5:3a:49:dc:14:4e:28:cf:
9a:26:a8:c3:e6:07:85:a0:87:25:dc:c4:87:75:eb:
14:75:79:04:7a:77:67:ec:a3:61:a0:8b:3f:7d:ae:
5f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:EF:B1:CA:F8:CC:D0:30:5C:74:58:16:0B:D8:AA:8F:FD:A1:04:99
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/eO-xyvjM0DBcdFgWC9iqj_2hBJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.108.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:78:f1:5d:8b:0b:75:e0:8a:c7:d6:17:1f:42:ce:ea:00:78:
ab:79:df:b2:76:f1:a7:32:f8:16:48:3b:ed:58:ce:9a:40:0f:
2d:94:43:05:52:30:ee:44:75:ba:98:b0:71:87:45:eb:73:a9:
66:17:76:13:45:57:9e:cc:fd:08:08:01:bd:8e:15:6d:dd:c7:
0f:5e:63:2a:29:fd:60:22:1b:9c:40:89:b7:2d:36:2b:c0:64:
16:c3:96:51:31:b2:10:bb:d0:8d:c0:e5:51:84:a1:21:d8:49:
82:8b:c1:94:b8:50:a5:59:8f:53:61:b6:b8:35:b9:5a:63:7e:
3a:05:b7:60:94:7a:0f:71:1c:90:3d:c5:37:a3:36:a6:ea:00:
be:d0:c9:b8:40:5f:4a:1d:8e:d3:34:9d:72:41:56:b1:c0:ba:
52:ac:d6:8d:4e:f1:38:d2:37:59:be:43:b1:f0:8b:34:88:f0:
f0:2a:c6:9a:aa:2f:ca:39:85:76:c2:a4:64:23:18:2c:75:a9:
e3:12:c0:fc:c5:ea:a4:6e:44:92:18:7b:57:11:c4:8a:75:e1:
12:d9:70:e1:eb:13:ad:03:5d:a0:74:2e:3f:b1:2a:b5:ec:09:
85:50:ff:3e:c0:5e:61:e6:66:6e:9e:8f:6f:e5:8e:74:50:50:
27:71:cb:c3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYTS/gDgPXa3nH4PMIRztTsSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkMDZhNDJiYjI0NDZlNTFmMTkyZWEzNzViZGY3ZWVjNWE1
MWM3N2YwHhcNMjIxMjAyMTMxOTMyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OGVmYjFjYWY4Y2NkMDMwNWM3NDU4MTYwYmQ4YWE4ZmZkYTEwNDk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqaKR+fq6cp1vhf0XQ2wSOhJX9BKc
4/D8ZaINaG8Xakpn6U+bjfapwPsAVra6C8VhP/DhSI/AmWrjXYDejEAzDxXR8xCs
W86k25FAiVc/YvTiZ/2kFvVl7rQJSr0T3529gcLFXTyD62DIsvR2ydSDGEND683i
YWMATk0u4zgPdBKHgWNIAze4gXjmFEz4q3FCIXOWtC8BEoKt57lNFYti6x3kkQbW
A54ROnXjRwwapqGrBh7mN/ylNv2tZkaTrVqSCOP3uh83kpT2iv2SmaB0d1q7OjTX
wxmNpTpJ3BROKM+aJqjD5geFoIcl3MSHdesUdXkEendn7KNhoIs/fa5fWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHjvscr4zNAwXHRYFgvYqo/9oQSZMB8GA1UdIwQY
MBaAFH0GpCuyRG5R8ZLqN1vffuxaUcd/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUt
MmNmODA2YjJkMGYyLzEvZU8teHl2ak0wREJjZEZnV0M5aXFqXzJoQkprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUtMmNmODA2YjJkMGYy
LzEvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALhdsMA0G
CSqGSIb3DQEBCwUAA4IBAQCbePFdiwt14IrH1hcfQs7qAHired+ydvGnMvgWSDvt
WM6aQA8tlEMFUjDuRHW6mLBxh0Xrc6lmF3YTRVeezP0ICAG9jhVt3ccPXmMqKf1g
IhucQIm3LTYrwGQWw5ZRMbIQu9CNwOVRhKEh2EmCi8GUuFClWY9TYba4NblaY346
BbdglHoPcRyQPcU3ozam6gC+0Mm4QF9KHY7TNJ1yQVaxwLpSrNaNTvE40jdZvkOx
8Is0iPDwKsaaqi/KOYV2wqRkIxgsdanjEsD8xeqkbkSSGHtXEcSKdeES2XDh6xOt
A12gdC4/sSq17AmFUP8+wF5h5mZuno9v5Y50UFAnccvD
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:37:03 2025 by rpki-client