Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/446d40-5782-4de0-a2c5-b68f5d8f651a/1/DvabSLUPyvl5xUUsTLIRkc7sBYc.roa
File: DvabSLUPyvl5xUUsTLIRkc7sBYc.roa (raw, json)
Hash identifier: fOV9u5jZ2UFfL/kqbdBwljw56FIiTVTZtUAZLIlspUY=
Subject key identifier: 0E:F6:9B:48:B5:0F:CA:F9:79:C5:45:2C:4C:B2:11:91:CE:EC:05:87
Certificate issuer: /CN=d737824e0ffa79f18b9fc49d6cb0dd81c9a6ca28
Certificate serial: 0185728CA31C28160CAB704DE8AA482B3512
Authority key identifier: D7:37:82:4E:0F:FA:79:F1:8B:9F:C4:9D:6C:B0:DD:81:C9:A6:CA:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1zeCTg_6efGLn8SdbLDdgcmmyig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/446d40-5782-4de0-a2c5-b68f5d8f651a/1/DvabSLUPyvl5xUUsTLIRkc7sBYc.roa
Signing time: Mon 02 Jan 2023 12:54:57 +0000
ROA not before: Mon 02 Jan 2023 12:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61150
IP address blocks: 46.18.111.0/24 maxlen: 24
2a0e:11c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:a3:1c:28:16:0c:ab:70:4d:e8:aa:48:2b:35:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d737824e0ffa79f18b9fc49d6cb0dd81c9a6ca28
Validity
Not Before: Jan 2 12:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ef69b48b50fcaf979c5452c4cb21191ceec0587
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e2:05:4f:b5:67:8d:e9:66:65:78:64:7b:30:
13:3d:0c:c1:3a:0a:3b:7d:7f:38:8b:fe:3b:b9:c4:
05:1b:9b:9b:5b:2d:d1:b9:f3:b5:c5:b0:7b:47:22:
50:38:d5:a4:02:1e:ca:69:c0:60:4e:9b:5e:d5:8f:
75:ff:c1:2c:da:fd:66:17:af:31:85:48:ae:27:06:
8e:43:a0:b0:6a:29:af:b0:ea:a3:3a:b6:19:33:4d:
76:78:98:31:0e:a2:e1:3d:e6:fe:35:4f:33:bb:e4:
1c:f1:77:e5:52:62:dd:d3:b4:e7:00:2d:10:2f:b7:
e0:d6:8f:5d:48:be:15:dc:0a:d3:9e:8b:89:02:55:
34:87:da:2e:60:b7:3f:30:64:f1:6c:32:26:af:db:
9d:f5:96:c8:70:eb:15:64:07:18:05:42:c0:e1:d3:
cd:5d:dd:9e:c3:bf:18:e1:a2:17:37:1f:60:8a:9a:
b0:43:cf:93:2a:23:9c:2a:7b:b9:b2:bf:89:ee:32:
15:4f:44:01:bd:0f:83:dd:d9:95:05:81:c3:8c:1c:
46:fb:14:ca:04:1d:eb:5a:99:0e:b1:9f:5e:43:48:
fa:b8:e0:24:8f:ab:70:04:2a:fa:a2:f2:12:44:98:
27:92:a1:0e:f8:e3:1e:61:c8:7b:1c:9e:d8:43:72:
62:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:F6:9B:48:B5:0F:CA:F9:79:C5:45:2C:4C:B2:11:91:CE:EC:05:87
X509v3 Authority Key Identifier:
keyid:D7:37:82:4E:0F:FA:79:F1:8B:9F:C4:9D:6C:B0:DD:81:C9:A6:CA:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1zeCTg_6efGLn8SdbLDdgcmmyig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/446d40-5782-4de0-a2c5-b68f5d8f651a/1/DvabSLUPyvl5xUUsTLIRkc7sBYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/446d40-5782-4de0-a2c5-b68f5d8f651a/1/1zeCTg_6efGLn8SdbLDdgcmmyig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.18.111.0/24
IPv6:
2a0e:11c0::/32
Signature Algorithm: sha256WithRSAEncryption
69:74:e3:c3:2f:a2:dd:36:26:c1:8e:b6:a4:f0:1c:83:c9:52:
2e:05:4a:d3:15:b5:45:91:14:84:f0:e3:e9:7c:18:a3:74:2f:
ff:b1:0c:12:37:51:91:9e:23:4f:f4:46:fd:7d:b7:41:7c:a0:
0d:a0:9c:4a:40:b8:14:3c:4c:66:36:4c:59:ff:ac:47:bf:f8:
6f:3a:3f:c0:17:83:44:7d:86:27:10:b0:26:73:a6:16:1b:03:
76:35:11:b0:8f:27:b0:80:98:b4:32:37:12:25:30:d1:25:d2:
f5:86:22:ea:1a:f9:9f:59:63:d6:ee:a6:9f:89:fb:6f:9a:a4:
16:84:a6:46:41:e3:e1:b7:f9:11:ac:aa:54:5d:98:0c:f2:c8:
5f:5b:d0:49:9d:b0:82:6a:fa:57:3c:75:13:53:db:ca:75:67:
5b:ca:4b:77:c1:7f:ee:40:1c:5f:e0:be:6b:c1:9e:83:64:21:
27:55:ab:c7:75:49:98:7d:07:ad:25:19:22:8e:b4:a4:21:55:
7e:9a:bc:9c:b5:1f:9e:cc:20:ec:d6:bd:d1:7c:46:07:a4:0e:
fb:8b:e6:ab:94:2c:6b:c8:00:d3:7a:d8:78:90:c0:ad:59:bd:
79:72:1e:b5:cf:c6:4d:e5:43:cf:f4:a0:11:44:e1:44:83:91:
a4:a9:6d:fa
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVyjKMcKBYMq3BN6KpIKzUSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3Mzc4MjRlMGZmYTc5ZjE4YjlmYzQ5ZDZjYjBkZDgxYzlh
NmNhMjgwHhcNMjMwMTAyMTI1NDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZWY2OWI0OGI1MGZjYWY5NzljNTQ1MmM0Y2IyMTE5MWNlZWMwNTg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0eIFT7VnjelmZXhkezATPQzBOgo7
fX84i/47ucQFG5ubWy3RufO1xbB7RyJQONWkAh7KacBgTpte1Y91/8Es2v1mF68x
hUiuJwaOQ6CwaimvsOqjOrYZM012eJgxDqLhPeb+NU8zu+Qc8XflUmLd07TnAC0Q
L7fg1o9dSL4V3ArTnouJAlU0h9ouYLc/MGTxbDImr9ud9ZbIcOsVZAcYBULA4dPN
Xd2ew78Y4aIXNx9gipqwQ8+TKiOcKnu5sr+J7jIVT0QBvQ+D3dmVBYHDjBxG+xTK
BB3rWpkOsZ9eQ0j6uOAkj6twBCr6ovISRJgnkqEO+OMeYch7HJ7YQ3JiywIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFA72m0i1D8r5ecVFLEyyEZHO7AWHMB8GA1UdIwQY
MBaAFNc3gk4P+nnxi5/EnWyw3YHJpsooMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMXplQ1RnXzZlZkdMbjhTZGJMRGRnY21teWlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC80NDZkNDAtNTc4Mi00ZGUwLWEyYzUt
YjY4ZjVkOGY2NTFhLzEvRHZhYlNMVVB5dmw1eFVVc1RMSVJrYzdzQlljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC80NDZkNDAtNTc4Mi00ZGUwLWEyYzUtYjY4ZjVkOGY2NTFh
LzEvMXplQ1RnXzZlZkdMbjhTZGJMRGRnY21teWlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALhJvMA0E
AgACMAcDBQAqDhHAMA0GCSqGSIb3DQEBCwUAA4IBAQBpdOPDL6LdNibBjrak8ByD
yVIuBUrTFbVFkRSE8OPpfBijdC//sQwSN1GRniNP9Eb9fbdBfKANoJxKQLgUPExm
NkxZ/6xHv/hvOj/AF4NEfYYnELAmc6YWGwN2NRGwjyewgJi0MjcSJTDRJdL1hiLq
GvmfWWPW7qafiftvmqQWhKZGQePht/kRrKpUXZgM8shfW9BJnbCCavpXPHUTU9vK
dWdbykt3wX/uQBxf4L5rwZ6DZCEnVavHdUmYfQetJRkijrSkIVV+mryctR+ezCDs
1r3RfEYHpA77i+arlCxryADTeth4kMCtWb15ch61z8ZN5UPP9KARROFEg5GkqW36
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:00 2025 by rpki-client