Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/962b3f-fc26-4549-ae02-4d049a1eaf2f/1/ibqLUSpYVnS86Vjd1TYXWtzBru8.roa
File: ibqLUSpYVnS86Vjd1TYXWtzBru8.roa (raw, json)
Hash identifier: 6PwW3nN7ZbXM39KCcHC9t1wosktNQe83OVUSCyYqctM=
Subject key identifier: 89:BA:8B:51:2A:58:56:74:BC:E9:58:DD:D5:36:17:5A:DC:C1:AE:EF
Certificate issuer: /CN=d9a988916d51406f9a269f30a02d0086b57f4d5a
Certificate serial: 039EC2CE
Authority key identifier: D9:A9:88:91:6D:51:40:6F:9A:26:9F:30:A0:2D:00:86:B5:7F:4D:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2amIkW1RQG-aJp8woC0AhrV_TVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/962b3f-fc26-4549-ae02-4d049a1eaf2f/1/ibqLUSpYVnS86Vjd1TYXWtzBru8.roa
Signing time: Sat 01 Jan 2022 04:52:34 +0000
ROA not before: Sat 01 Jan 2022 04:52:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51155
IP address blocks: 46.227.38.0/23 maxlen: 23
178.19.176.0/20 maxlen: 20
46.227.36.0/23 maxlen: 23
2a02:26e8::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60736206 (0x39ec2ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9a988916d51406f9a269f30a02d0086b57f4d5a
Validity
Not Before: Jan 1 04:52:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89ba8b512a585674bce958ddd536175adcc1aeef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ee:3c:03:f7:f0:98:6d:e9:72:20:88:f9:0b:
7c:2b:a0:ed:6d:ff:d8:de:b3:03:b5:6f:c4:f5:7d:
89:44:a7:3a:80:63:45:d0:4c:66:ba:0c:a0:13:55:
6d:bb:48:d5:f3:98:2b:5f:16:ca:06:0e:ce:da:0a:
8b:f0:1c:9a:a8:d2:1c:79:7e:ea:d1:ca:87:ae:41:
40:13:f5:b9:16:c6:73:03:59:27:a1:36:da:66:a1:
ac:94:1a:ce:70:6e:a6:70:85:5a:e3:fb:68:cc:5b:
33:97:23:98:34:1d:93:a2:8c:6f:5e:26:bb:95:7d:
34:27:91:12:47:f7:a3:2c:3c:8d:b8:7f:f8:71:48:
a3:d7:52:fa:c9:27:09:08:78:95:c9:d8:ed:b7:84:
ff:8e:0e:5c:46:8f:8d:f8:71:e2:44:7c:ee:34:92:
f9:d8:73:4b:a3:31:04:37:e1:a3:ed:ba:81:a9:3d:
57:02:3e:50:ad:7a:3d:74:8c:b8:10:ad:76:2c:cb:
2e:ca:f4:c6:ea:e0:f7:fe:d6:73:83:32:02:57:a5:
d1:5b:90:8a:7a:1b:57:4d:7e:f9:91:53:10:da:1e:
c7:dc:2e:e8:da:6e:c4:63:01:6c:97:f6:e3:de:34:
a5:9e:c4:ee:87:5a:58:55:fd:d5:40:83:84:d1:f3:
8a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:BA:8B:51:2A:58:56:74:BC:E9:58:DD:D5:36:17:5A:DC:C1:AE:EF
X509v3 Authority Key Identifier:
keyid:D9:A9:88:91:6D:51:40:6F:9A:26:9F:30:A0:2D:00:86:B5:7F:4D:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2amIkW1RQG-aJp8woC0AhrV_TVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/962b3f-fc26-4549-ae02-4d049a1eaf2f/1/ibqLUSpYVnS86Vjd1TYXWtzBru8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/962b3f-fc26-4549-ae02-4d049a1eaf2f/1/2amIkW1RQG-aJp8woC0AhrV_TVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.227.36.0/22
178.19.176.0/20
IPv6:
2a02:26e8::/32
Signature Algorithm: sha256WithRSAEncryption
aa:7e:c5:cb:2c:cf:a3:06:d5:7c:88:78:97:b4:75:66:e9:75:
1f:c4:94:1f:ef:87:a3:86:df:96:48:f7:c1:fd:e0:0b:75:a8:
eb:4a:5c:f4:98:a4:9e:58:33:ff:58:64:60:fe:f9:5f:c8:44:
f5:0a:c6:84:e3:16:3c:ef:a1:05:ec:cd:82:af:45:f9:1b:50:
8a:58:17:c0:71:5d:b8:1d:85:bb:f1:62:fd:a9:b9:02:31:17:
ba:33:24:24:29:f4:1b:a1:aa:3f:3e:12:4d:0f:53:25:f3:ec:
d6:bd:7d:95:b3:94:f0:b4:17:6c:65:ba:79:12:c8:46:04:fa:
aa:cd:72:c6:d2:60:e4:31:be:a4:b7:9a:4c:fd:71:bc:74:1d:
65:1c:b3:53:bf:92:7a:52:75:45:7a:5d:ed:cb:e9:3a:17:98:
d2:b7:9e:e0:27:85:6e:46:a7:70:a4:7d:3c:5b:65:9c:2e:d1:
1f:a4:1f:57:96:f8:39:80:98:c8:bf:cf:a5:ab:11:3b:0e:ad:
59:1b:ca:c6:70:e0:c5:fc:c5:35:bd:29:f6:5b:69:b8:48:aa:
d7:df:b9:41:53:f5:ea:53:9f:96:a8:ee:4b:2b:c5:f1:21:a1:
27:9a:65:4c:0d:10:4b:dc:74:6b:35:4c:37:ad:27:43:7c:8b:
26:7d:49:0a
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEA57CzjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
OWE5ODg5MTZkNTE0MDZmOWEyNjlmMzBhMDJkMDA4NmI1N2Y0ZDVhMB4XDTIyMDEw
MTA0NTIzNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODliYThiNTEyYTU4
NTY3NGJjZTk1OGRkZDUzNjE3NWFkY2MxYWVlZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKzuPAP38Jht6XIgiPkLfCug7W3/2N6zA7VvxPV9iUSnOoBj
RdBMZroMoBNVbbtI1fOYK18WygYOztoKi/AcmqjSHHl+6tHKh65BQBP1uRbGcwNZ
J6E22mahrJQaznBupnCFWuP7aMxbM5cjmDQdk6KMb14mu5V9NCeREkf3oyw8jbh/
+HFIo9dS+sknCQh4lcnY7beE/44OXEaPjfhx4kR87jSS+dhzS6MxBDfho+26gak9
VwI+UK16PXSMuBCtdizLLsr0xurg9/7Wc4MyAlel0VuQinobV01++ZFTENoex9wu
6NpuxGMBbJf24940pZ7E7odaWFX91UCDhNHzirECAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBSJuotRKlhWdLzpWN3VNhda3MGu7zAfBgNVHSMEGDAWgBTZqYiRbVFAb5om
nzCgLQCGtX9NWjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzJhbUlrVzFSUUctYUpwOHdvQzBBaHJWX1RWby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWMvOTYyYjNmLWZjMjYtNDU0OS1hZTAyLTRkMDQ5YTFlYWYyZi8x
L2licUxVU3BZVm5TODZWamQxVFlYV3R6QnJ1OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWMv
OTYyYjNmLWZjMjYtNDU0OS1hZTAyLTRkMDQ5YTFlYWYyZi8xLzJhbUlrVzFSUUct
YUpwOHdvQzBBaHJWX1RWby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAi7jJAMEBLITsDANBAIAAjAHAwUA
KgIm6DANBgkqhkiG9w0BAQsFAAOCAQEAqn7FyyzPowbVfIh4l7R1Zul1H8SUH++H
o4bflkj3wf3gC3Wo60pc9Jiknlgz/1hkYP75X8hE9QrGhOMWPO+hBezNgq9F+RtQ
ilgXwHFduB2Fu/Fi/am5AjEXujMkJCn0G6GqPz4STQ9TJfPs1r19lbOU8LQXbGW6
eRLIRgT6qs1yxtJg5DG+pLeaTP1xvHQdZRyzU7+SelJ1RXpd7cvpOheY0ree4CeF
bkancKR9PFtlnC7RH6QfV5b4OYCYyL/PpasROw6tWRvKxnDgxfzFNb0p9ltpuEiq
19+5QVP16lOflqjuSyvF8SGhJ5plTA0QS9x0azVMN60nQ3yLJn1JCg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:51 2023 by rpki-client on console-ams.rpki-client.org