Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/5c0cc9-f761-4e7a-8155-ba9c371e0b66/1/TU6Dc9KeXYuo4OGtw44jARFIpY4.roa
File: TU6Dc9KeXYuo4OGtw44jARFIpY4.roa (raw, json)
Hash identifier: 5V9Qni+C21lUO8idO63k37fhGz8cPCbOcW4mBOBQftE=
Subject key identifier: 4D:4E:83:73:D2:9E:5D:8B:A8:E0:E1:AD:C3:8E:23:01:11:48:A5:8E
Certificate issuer: /CN=0a2010093f10810b1b85724ea89e294fcdccfbf2
Certificate serial: 0199B191
Authority key identifier: 0A:20:10:09:3F:10:81:0B:1B:85:72:4E:A8:9E:29:4F:CD:CC:FB:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CiAQCT8QgQsbhXJOqJ4pT83M-_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/5c0cc9-f761-4e7a-8155-ba9c371e0b66/1/TU6Dc9KeXYuo4OGtw44jARFIpY4.roa
Signing time: Fri 28 Jan 2022 14:14:51 +0000
ROA not before: Fri 28 Jan 2022 14:14:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 46.31.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26849681 (0x199b191)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a2010093f10810b1b85724ea89e294fcdccfbf2
Validity
Not Before: Jan 28 14:14:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d4e8373d29e5d8ba8e0e1adc38e23011148a58e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:36:dd:3a:64:98:4e:7b:14:e2:cc:63:7e:c9:
f2:fc:3f:6b:e6:0c:bd:c7:24:81:c5:5a:64:9e:50:
19:49:53:bb:4d:ff:bb:13:8e:36:87:22:0e:c4:34:
33:04:aa:55:f0:c0:af:4e:12:8f:59:44:49:e2:9c:
80:bb:03:b9:77:cc:fa:09:af:90:29:d2:7a:5e:d9:
05:79:52:bf:42:cb:c1:54:3f:c9:ab:51:fd:94:0a:
14:3e:bd:fa:97:9e:6b:7d:11:af:fa:0e:3b:52:2d:
c2:3b:37:9f:cc:13:fd:c5:fe:fd:ec:85:bf:4e:52:
97:0f:e2:86:37:11:c3:30:22:c3:31:b5:e4:d7:d3:
df:24:cd:6b:29:d5:ce:5c:fe:6f:3e:35:b1:9e:83:
be:af:b3:c1:f3:f2:d5:2c:9b:d7:b3:5e:d1:34:8a:
79:57:b9:56:ee:15:db:f8:7e:1f:30:31:2d:ce:7a:
ca:33:06:41:c6:05:ed:b1:ad:d3:2b:c2:c8:f2:39:
f8:04:20:12:ea:0e:8f:59:8c:da:96:5c:13:c3:00:
35:44:f3:c5:44:96:43:3a:f5:85:69:f5:7a:d4:a1:
19:12:cc:76:b5:0a:6b:6a:04:3d:d7:87:91:74:4a:
bd:d6:7e:ad:b6:7c:e9:98:00:62:f5:c3:1f:9d:fe:
9a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:4E:83:73:D2:9E:5D:8B:A8:E0:E1:AD:C3:8E:23:01:11:48:A5:8E
X509v3 Authority Key Identifier:
keyid:0A:20:10:09:3F:10:81:0B:1B:85:72:4E:A8:9E:29:4F:CD:CC:FB:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CiAQCT8QgQsbhXJOqJ4pT83M-_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/5c0cc9-f761-4e7a-8155-ba9c371e0b66/1/TU6Dc9KeXYuo4OGtw44jARFIpY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/5c0cc9-f761-4e7a-8155-ba9c371e0b66/1/CiAQCT8QgQsbhXJOqJ4pT83M-_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.64.0/24
Signature Algorithm: sha256WithRSAEncryption
42:a1:13:34:2e:2f:aa:ec:97:75:25:72:f1:ae:29:ac:5c:b1:
5b:e1:bd:7f:da:f2:f6:46:ee:6a:61:c3:ea:5b:b6:2a:36:0c:
d8:8b:f2:69:00:a3:40:72:f5:91:66:a0:8c:28:06:f3:21:60:
c6:01:43:36:af:63:03:28:15:f5:74:46:61:4a:fe:12:c6:a9:
3a:1c:18:20:9a:a6:00:11:8a:6f:ea:d5:6d:65:fb:45:f5:96:
a7:d8:2d:dd:bf:8d:2a:e2:00:0a:19:cc:04:c9:b9:c1:0f:fc:
9b:41:77:b0:2d:bb:63:e8:8f:ab:1d:b2:f5:28:1b:55:17:c7:
b0:d6:68:e0:d6:18:2b:de:72:e0:5c:d6:5f:e1:5b:20:66:c4:
c6:5b:3e:79:25:18:d6:23:c2:99:aa:6d:21:96:48:53:42:19:
ab:b2:9b:c7:0f:e2:64:1d:07:c7:a4:7d:ab:c2:5a:26:2c:13:
69:c4:76:a7:13:2e:60:21:5f:b4:ee:6c:ec:36:3f:36:5c:b3:
90:29:df:03:2e:c6:74:f4:68:78:0c:26:8f:d6:f0:47:ce:6c:
0f:9c:a6:c8:80:36:dd:59:fb:b2:f6:8e:9a:44:56:15:d4:48:
34:5a:f1:78:50:67:7c:61:58:84:fa:99:3d:41:1e:85:e7:05:
8c:05:a6:79
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAZmxkTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
YTIwMTAwOTNmMTA4MTBiMWI4NTcyNGVhODllMjk0ZmNkY2NmYmYyMB4XDTIyMDEy
ODE0MTQ1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGQ0ZTgzNzNkMjll
NWQ4YmE4ZTBlMWFkYzM4ZTIzMDExMTQ4YTU4ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKU23TpkmE57FOLMY37J8vw/a+YMvcckgcVaZJ5QGUlTu03/
uxOONociDsQ0MwSqVfDAr04Sj1lESeKcgLsDuXfM+gmvkCnSel7ZBXlSv0LLwVQ/
yatR/ZQKFD69+peea30Rr/oOO1Itwjs3n8wT/cX+/eyFv05Slw/ihjcRwzAiwzG1
5NfT3yTNaynVzlz+bz41sZ6Dvq+zwfPy1Syb17Ne0TSKeVe5Vu4V2/h+HzAxLc56
yjMGQcYF7bGt0yvCyPI5+AQgEuoOj1mM2pZcE8MANUTzxUSWQzr1hWn1etShGRLM
drUKa2oEPdeHkXRKvdZ+rbZ86ZgAYvXDH53+mgMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRNToNz0p5di6jg4a3DjiMBEUiljjAfBgNVHSMEGDAWgBQKIBAJPxCBCxuF
ck6onilPzcz78jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0NpQVFDVDhRZ1FzYmhYSk9xSjRwVDgzTS1fSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjEvNWMwY2M5LWY3NjEtNGU3YS04MTU1LWJhOWMzNzFlMGI2Ni8x
L1RVNkRjOUtlWFl1bzRPR3R3NDRqQVJGSXBZNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjEv
NWMwY2M5LWY3NjEtNGU3YS04MTU1LWJhOWMzNzFlMGI2Ni8xL0NpQVFDVDhRZ1Fz
YmhYSk9xSjRwVDgzTS1fSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC4fQDANBgkqhkiG9w0BAQsFAAOC
AQEAQqETNC4vquyXdSVy8a4prFyxW+G9f9ry9kbuamHD6lu2KjYM2IvyaQCjQHL1
kWagjCgG8yFgxgFDNq9jAygV9XRGYUr+EsapOhwYIJqmABGKb+rVbWX7RfWWp9gt
3b+NKuIAChnMBMm5wQ/8m0F3sC27Y+iPqx2y9SgbVRfHsNZo4NYYK95y4FzWX+Fb
IGbExls+eSUY1iPCmaptIZZIU0IZq7Kbxw/iZB0Hx6R9q8JaJiwTacR2pxMuYCFf
tO5s7DY/NlyzkCnfAy7GdPRoeAwmj9bwR85sD5ymyIA23Vn7svaOmkRWFdRINFrx
eFBnfGFYhPqZPUEehecFjAWmeQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:11 2023 by rpki-client on console-ams.rpki-client.org