Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/908143-f916-4718-8f97-4bd3392d55d1/1/o7vTOpdaZDiUOF5m3lhQHOlE3qA.roa
File: o7vTOpdaZDiUOF5m3lhQHOlE3qA.roa (raw, json)
Hash identifier: AwswHOiOIpWBDHXp53NSMjYRILhaBBSzAOq+0QDzv0o=
Subject key identifier: A3:BB:D3:3A:97:5A:64:38:94:38:5E:66:DE:58:50:1C:E9:44:DE:A0
Certificate issuer: /CN=46fe7b56722245116d4234be484a02a48a1dde1f
Certificate serial: 0275CCB6
Authority key identifier: 46:FE:7B:56:72:22:45:11:6D:42:34:BE:48:4A:02:A4:8A:1D:DE:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rv57VnIiRRFtQjS-SEoCpIod3h8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/908143-f916-4718-8f97-4bd3392d55d1/1/o7vTOpdaZDiUOF5m3lhQHOlE3qA.roa
Signing time: Tue 14 Jun 2022 06:17:36 +0000
ROA not before: Tue 14 Jun 2022 06:17:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205029
IP address blocks: 185.79.201.0/24 maxlen: 24
2a03:5e20::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41274550 (0x275ccb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46fe7b56722245116d4234be484a02a48a1dde1f
Validity
Not Before: Jun 14 06:17:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3bbd33a975a643894385e66de58501ce944dea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:eb:70:6a:3b:e7:9c:fc:65:8c:80:75:73:2e:
f8:b2:70:eb:20:f6:d3:3a:b9:0c:a5:84:47:f5:f9:
d1:69:09:bc:dc:5e:28:27:ff:58:23:19:c9:38:4a:
de:c5:a2:54:45:fa:1c:7b:67:6b:a6:4e:63:94:1a:
5b:b5:57:db:f3:e8:6e:f0:9e:71:05:69:38:94:01:
dd:9d:c1:2c:ac:68:c8:96:86:50:c9:49:33:da:6b:
cd:f3:cb:ea:aa:90:55:80:fb:54:38:6f:d8:9e:d0:
5b:c9:7a:b0:dd:f8:a3:cb:7a:8b:d2:63:dc:6c:d6:
5b:0b:86:b8:aa:7b:a1:3c:10:d6:99:9f:08:70:a1:
10:ba:3f:97:9c:56:58:9d:26:1e:cf:b7:2d:ab:d6:
1c:dc:82:50:76:56:84:50:2d:da:34:8d:1e:fc:61:
d1:1e:6e:ae:e5:a4:97:30:97:28:51:06:64:2f:d4:
d2:f7:9b:69:4a:65:0a:42:5e:22:f8:36:59:47:f1:
dc:68:48:bb:b9:10:52:0b:50:38:90:45:3d:19:c5:
03:a8:96:1d:78:14:22:3e:8b:a6:cd:e1:68:15:ae:
e3:06:7f:f2:26:e1:b6:08:76:44:14:98:c1:2b:dd:
94:15:2f:c3:fb:19:d7:0e:04:80:ca:d4:ed:e3:43:
f7:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:BB:D3:3A:97:5A:64:38:94:38:5E:66:DE:58:50:1C:E9:44:DE:A0
X509v3 Authority Key Identifier:
keyid:46:FE:7B:56:72:22:45:11:6D:42:34:BE:48:4A:02:A4:8A:1D:DE:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rv57VnIiRRFtQjS-SEoCpIod3h8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/908143-f916-4718-8f97-4bd3392d55d1/1/o7vTOpdaZDiUOF5m3lhQHOlE3qA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/908143-f916-4718-8f97-4bd3392d55d1/1/Rv57VnIiRRFtQjS-SEoCpIod3h8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.79.201.0/24
IPv6:
2a03:5e20::/32
Signature Algorithm: sha256WithRSAEncryption
50:36:4e:77:e4:5e:de:84:01:2b:af:14:bb:d6:84:46:a1:dc:
72:55:34:de:bb:bd:24:b5:59:e8:5f:15:05:cf:e0:43:97:8e:
e3:7b:28:7d:d6:cc:bd:d3:e9:69:1d:55:39:d2:ef:cd:ba:fd:
96:29:07:35:59:43:34:aa:cc:e1:bb:82:dc:c2:70:20:4d:69:
90:6d:64:81:09:46:72:a9:b5:35:11:40:10:82:87:67:3a:7e:
a4:19:e3:a0:82:16:08:fd:de:1c:a5:ca:d0:53:b0:5d:a6:43:
aa:bd:99:76:91:69:52:d6:f1:85:38:ba:07:69:61:80:85:ee:
d8:68:04:b8:88:4f:11:3e:d0:60:c7:72:db:6b:fa:f3:a8:4d:
bb:80:24:11:12:01:d3:ec:0b:a0:36:44:81:f8:b8:20:8f:a7:
49:b2:91:79:8c:ba:6f:7d:33:b1:c3:c7:16:7a:32:2f:16:d9:
de:43:5b:a3:f9:d2:30:6a:00:79:25:55:0a:22:77:22:e4:9b:
76:b4:69:3b:ad:67:3b:71:2d:7d:ee:7c:d8:d5:ae:50:95:35:
a8:bb:48:8f:46:76:8b:78:e6:36:be:de:9d:d2:4f:50:09:ce:
64:80:1a:c4:2c:6d:dd:2b:be:d7:d1:67:f9:50:a0:a5:7e:fd:
ab:97:1f:e0
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEAnXMtjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
NmZlN2I1NjcyMjI0NTExNmQ0MjM0YmU0ODRhMDJhNDhhMWRkZTFmMB4XDTIyMDYx
NDA2MTczNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTNiYmQzM2E5NzVh
NjQzODk0Mzg1ZTY2ZGU1ODUwMWNlOTQ0ZGVhMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL7rcGo755z8ZYyAdXMu+LJw6yD20zq5DKWER/X50WkJvNxe
KCf/WCMZyThK3sWiVEX6HHtna6ZOY5QaW7VX2/PobvCecQVpOJQB3Z3BLKxoyJaG
UMlJM9przfPL6qqQVYD7VDhv2J7QW8l6sN34o8t6i9Jj3GzWWwuGuKp7oTwQ1pmf
CHChELo/l5xWWJ0mHs+3LavWHNyCUHZWhFAt2jSNHvxh0R5uruWklzCXKFEGZC/U
0vebaUplCkJeIvg2WUfx3GhIu7kQUgtQOJBFPRnFA6iWHXgUIj6Lps3haBWu4wZ/
8ibhtgh2RBSYwSvdlBUvw/sZ1w4EgMrU7eND9+cCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSju9M6l1pkOJQ4XmbeWFAc6UTeoDAfBgNVHSMEGDAWgBRG/ntWciJFEW1C
NL5ISgKkih3eHzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1J2NTdWbklpUlJGdFFqUy1TRW9DcElvZDNoOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmQvOTA4MTQzLWY5MTYtNDcxOC04Zjk3LTRiZDMzOTJkNTVkMS8x
L283dlRPcGRhWkRpVU9GNW0zbGhRSE9sRTNxQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmQv
OTA4MTQzLWY5MTYtNDcxOC04Zjk3LTRiZDMzOTJkNTVkMS8xL1J2NTdWbklpUlJG
dFFqUy1TRW9DcElvZDNoOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEALlPyTANBAIAAjAHAwUAKgNeIDAN
BgkqhkiG9w0BAQsFAAOCAQEAUDZOd+Re3oQBK68Uu9aERqHcclU03ru9JLVZ6F8V
Bc/gQ5eO43sofdbMvdPpaR1VOdLvzbr9likHNVlDNKrM4buC3MJwIE1pkG1kgQlG
cqm1NRFAEIKHZzp+pBnjoIIWCP3eHKXK0FOwXaZDqr2ZdpFpUtbxhTi6B2lhgIXu
2GgEuIhPET7QYMdy22v686hNu4AkERIB0+wLoDZEgfi4II+nSbKReYy6b30zscPH
FnoyLxbZ3kNbo/nSMGoAeSVVCiJ3IuSbdrRpO61nO3Etfe582NWuUJU1qLtIj0Z2
i3jmNr7endJPUAnOZIAaxCxt3Su+19Fn+VCgpX79q5cf4A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:23 2024 by rpki-client on console-ams.rpki-client.org