Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/gK3JKfYe9cXapQXXaGI1F_Ah1Bc.roa
File: gK3JKfYe9cXapQXXaGI1F_Ah1Bc.roa (raw, json)
Hash identifier: eKJQnOyCBrBFczkigerN2pDTQ122kgdfOtNA5dJ/uJw=
Subject key identifier: 80:AD:C9:29:F6:1E:F5:C5:DA:A5:05:D7:68:62:35:17:F0:21:D4:17
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0306255B
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/gK3JKfYe9cXapQXXaGI1F_Ah1Bc.roa
Signing time: Mon 21 Mar 2022 16:21:53 +0000
ROA not before: Mon 21 Mar 2022 16:21:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213035
IP address blocks: 85.158.146.0/24 maxlen: 24
46.23.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50734427 (0x306255b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Mar 21 16:21:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80adc929f61ef5c5daa505d768623517f021d417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d9:85:82:4a:88:2a:0f:38:6c:40:09:59:db:
0b:af:92:f8:df:c1:dd:7d:8b:02:c7:a3:72:cf:2a:
8b:83:1f:47:6a:24:d6:9e:83:04:ae:64:e5:90:dd:
93:28:fb:af:84:15:96:4f:bb:10:96:d1:23:a7:fe:
30:28:65:77:d8:38:b5:c1:d4:e8:b2:a8:82:d6:8f:
fc:7e:8c:a2:ad:33:11:15:e7:0e:e3:a9:53:d8:7b:
50:08:e5:7e:17:f0:4c:45:36:ac:24:7a:dc:e0:62:
e8:5c:73:88:dc:d0:32:42:b3:80:0e:b2:9e:f3:f3:
53:4b:e5:4c:a6:d0:13:58:47:9b:e5:95:29:ab:bd:
85:f6:99:5f:9e:c5:67:4d:03:21:fe:2d:f1:ca:5d:
30:5e:21:4e:e9:30:54:b1:8d:75:9e:8b:d9:5f:e9:
93:6f:1f:30:56:1b:2d:61:5f:56:04:2e:7d:fe:59:
e7:85:37:07:38:a1:32:65:4e:67:dc:4a:a2:ed:fc:
f0:11:ee:3a:19:60:84:94:2f:b1:3c:4b:e6:06:a4:
e5:62:46:e8:09:30:c9:3d:e7:52:79:d4:ac:00:7e:
a0:57:69:7d:8d:28:0f:a7:ed:0e:76:8d:8b:00:99:
b1:7d:2f:f6:43:bf:cc:1e:76:8f:d2:02:b5:f7:56:
91:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:AD:C9:29:F6:1E:F5:C5:DA:A5:05:D7:68:62:35:17:F0:21:D4:17
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/gK3JKfYe9cXapQXXaGI1F_Ah1Bc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.109.0/24
85.158.146.0/24
Signature Algorithm: sha256WithRSAEncryption
92:61:d4:e7:d3:e9:e6:cf:bb:be:5a:fe:88:8a:ac:0c:e0:65:
e0:7a:aa:ac:9b:a9:01:9c:6e:0e:d9:e2:c3:ad:c4:03:aa:eb:
9b:99:18:70:67:ce:ae:a1:74:ba:ce:71:74:e6:1a:10:df:91:
47:1c:4e:c0:17:14:0f:3f:f6:f4:f5:97:6f:0c:f2:7f:1d:09:
d8:3c:16:71:eb:53:43:a2:76:a7:44:67:ff:d2:85:84:51:d4:
5a:9c:71:e8:41:50:35:bd:2e:45:61:be:8f:e0:fb:e1:95:66:
ab:9f:68:eb:1d:56:4f:3c:87:de:8c:3e:cb:50:1e:e5:32:6e:
de:d9:de:08:8e:77:9b:a6:12:43:98:db:a9:88:59:bb:44:79:
a3:63:d0:80:4c:b9:3f:b9:e0:5a:b2:19:54:b3:11:ce:22:9b:
07:fd:1c:03:58:77:dd:2a:ba:bc:32:52:ce:7a:67:9c:ae:bc:
2a:ca:9d:55:3c:2f:b7:45:99:dc:89:bc:78:4d:74:c9:a1:d9:
ed:61:d2:1f:99:11:15:57:96:b0:3d:25:17:ba:8e:80:17:9f:
ef:c2:21:e0:80:10:e2:6f:39:56:44:0a:74:05:01:6e:36:f4:
65:b7:0e:1d:00:e2:03:31:2a:6c:00:d5:20:06:1c:ae:a3:52:
5e:42:e5:7e
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAwYlWzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZDA2YTQyYmIyNDQ2ZTUxZjE5MmVhMzc1YmRmN2VlYzVhNTFjNzdmMB4XDTIyMDMy
MTE2MjE1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODBhZGM5MjlmNjFl
ZjVjNWRhYTUwNWQ3Njg2MjM1MTdmMDIxZDQxNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALLZhYJKiCoPOGxACVnbC6+S+N/B3X2LAsejcs8qi4MfR2ok
1p6DBK5k5ZDdkyj7r4QVlk+7EJbRI6f+MChld9g4tcHU6LKogtaP/H6Moq0zERXn
DuOpU9h7UAjlfhfwTEU2rCR63OBi6FxziNzQMkKzgA6ynvPzU0vlTKbQE1hHm+WV
Kau9hfaZX57FZ00DIf4t8cpdMF4hTukwVLGNdZ6L2V/pk28fMFYbLWFfVgQuff5Z
54U3BzihMmVOZ9xKou388BHuOhlghJQvsTxL5gak5WJG6AkwyT3nUnnUrAB+oFdp
fY0oD6ftDnaNiwCZsX0v9kO/zB52j9ICtfdWkVMCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSArckp9h71xdqlBddoYjUX8CHUFzAfBgNVHSMEGDAWgBR9BqQrskRuUfGS
6jdb337sWlHHfzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZRYWtLN0pFYmxIeGt1bzNXOTktN0ZwUngzOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWMvNzgwMDJhLTRmYzAtNGRiZi04NTg1LTJjZjgwNmIyZDBmMi8x
L2dLM0pLZlllOWNYYXBRWFhhR0kxRl9BaDFCYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWMv
NzgwMDJhLTRmYzAtNGRiZi04NTg1LTJjZjgwNmIyZDBmMi8xL2ZRYWtLN0pFYmxI
eGt1bzNXOTktN0ZwUngzOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAC4XbQMEAFWekjANBgkqhkiG9w0B
AQsFAAOCAQEAkmHU59Pp5s+7vlr+iIqsDOBl4HqqrJupAZxuDtniw63EA6rrm5kY
cGfOrqF0us5xdOYaEN+RRxxOwBcUDz/29PWXbwzyfx0J2DwWcetTQ6J2p0Rn/9KF
hFHUWpxx6EFQNb0uRWG+j+D74ZVmq59o6x1WTzyH3ow+y1Ae5TJu3tneCI53m6YS
Q5jbqYhZu0R5o2PQgEy5P7ngWrIZVLMRziKbB/0cA1h33Sq6vDJSznpnnK68Ksqd
VTwvt0WZ3Im8eE10yaHZ7WHSH5kRFVeWsD0lF7qOgBef78Ih4IAQ4m85VkQKdAUB
bjb0ZbcOHQDiAzEqbADVIAYcrqNSXkLlfg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:01 2023 by rpki-client on console-fra.rpki-client.org