Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/908143-f916-4718-8f97-4bd3392d55d1/1/tGR1KvHt9J0OlqNlkwu7zYQVoqo.roa
File: tGR1KvHt9J0OlqNlkwu7zYQVoqo.roa (raw, json)
Hash identifier: lWG3JRJPNQss49p2dQ/uMKhwAwRnP4e2Q1UECJnYCKA=
Subject key identifier: B4:64:75:2A:F1:ED:F4:9D:0E:96:A3:65:93:0B:BB:CD:84:15:A2:AA
Certificate issuer: /CN=46fe7b56722245116d4234be484a02a48a1dde1f
Certificate serial: 02669D6B
Authority key identifier: 46:FE:7B:56:72:22:45:11:6D:42:34:BE:48:4A:02:A4:8A:1D:DE:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rv57VnIiRRFtQjS-SEoCpIod3h8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/908143-f916-4718-8f97-4bd3392d55d1/1/tGR1KvHt9J0OlqNlkwu7zYQVoqo.roa
Signing time: Wed 08 Jun 2022 12:08:02 +0000
ROA not before: Wed 08 Jun 2022 12:08:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15576
IP address blocks: 185.79.200.0/23 maxlen: 24
2a03:5e20::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40279403 (0x2669d6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46fe7b56722245116d4234be484a02a48a1dde1f
Validity
Not Before: Jun 8 12:08:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b464752af1edf49d0e96a365930bbbcd8415a2aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:62:96:4e:7c:44:eb:03:71:ad:68:50:16:69:
7f:e8:0d:fd:2c:54:b2:3f:96:79:35:03:a7:0c:24:
40:ce:73:aa:b7:8f:a9:1c:bd:55:f2:51:a2:1f:7e:
5f:08:a2:90:0c:c9:1d:ed:23:91:04:9e:8e:ed:f8:
d1:94:55:f6:f1:0d:43:23:72:26:c9:08:9e:93:4a:
7e:f4:ea:34:1c:ee:3a:bf:87:16:f5:60:38:3d:8d:
00:d6:47:e4:4d:58:f2:fb:f7:fe:72:c5:0a:60:72:
25:fd:39:55:f0:ce:a2:10:c9:29:85:c8:29:eb:19:
12:f5:16:5b:a6:9c:fc:7b:26:93:4e:1c:91:db:13:
4f:2d:37:5a:6a:6e:ed:c8:83:93:16:73:c0:5f:9e:
3a:4d:13:d9:ad:43:fb:34:e6:29:0c:80:98:76:07:
1f:6b:8b:af:6a:4b:0b:f2:df:3e:2b:fa:51:7c:e5:
50:e7:62:ba:b5:2b:12:a9:fe:61:40:4b:7a:b5:5d:
be:b2:3e:8a:cf:2d:fc:a8:d4:fc:c7:46:84:b2:c8:
34:e7:b4:50:08:5b:0c:49:05:c9:a3:43:b6:25:68:
33:55:f6:54:f5:29:95:97:a3:8d:f0:b9:08:6a:bc:
b7:b7:d8:0f:f0:bb:25:2a:3a:1e:19:9c:e9:9f:f8:
fb:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:64:75:2A:F1:ED:F4:9D:0E:96:A3:65:93:0B:BB:CD:84:15:A2:AA
X509v3 Authority Key Identifier:
keyid:46:FE:7B:56:72:22:45:11:6D:42:34:BE:48:4A:02:A4:8A:1D:DE:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rv57VnIiRRFtQjS-SEoCpIod3h8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/908143-f916-4718-8f97-4bd3392d55d1/1/tGR1KvHt9J0OlqNlkwu7zYQVoqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/908143-f916-4718-8f97-4bd3392d55d1/1/Rv57VnIiRRFtQjS-SEoCpIod3h8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.79.200.0/23
IPv6:
2a03:5e20::/32
Signature Algorithm: sha256WithRSAEncryption
9b:f5:a4:25:06:a4:04:52:b7:cb:99:71:13:82:c9:78:69:0b:
a8:44:44:92:e0:65:46:5e:51:40:48:2c:0c:5f:3a:d9:8e:bd:
4f:be:ce:f8:75:a2:f5:84:4d:97:14:34:d8:e4:69:77:61:ea:
f9:d7:8c:ea:dc:78:81:79:e0:9b:86:65:37:c8:a0:26:f0:f5:
9d:7d:fa:7c:16:e3:34:1d:8e:51:59:78:e9:75:de:fa:08:18:
bb:0c:9b:8a:9f:84:2b:fe:dd:c0:7e:89:d4:c0:e2:c0:86:ab:
af:56:c7:a2:33:8f:70:4a:82:f4:7e:2f:9c:65:4e:89:5c:60:
6e:85:9a:0a:55:f8:ba:ab:de:b3:99:4d:bb:82:9b:77:3d:51:
72:ea:b4:82:4e:b0:ce:8e:f1:9c:b4:02:cc:67:60:ba:b6:23:
b8:ac:0f:de:cc:cd:dd:e1:ff:77:2b:e4:da:68:5a:51:f3:4c:
0a:45:6c:9b:f7:cc:d3:70:56:2a:30:d1:4f:99:85:43:db:e2:
69:bd:31:6a:19:74:f7:3f:45:d9:30:aa:f0:5e:0a:92:df:7f:
69:aa:8b:b7:c8:23:62:e9:96:94:db:c7:2f:da:6d:86:6f:a6:
d6:8a:72:1b:35:2f:2e:26:54:42:43:d3:87:4f:ec:d2:b4:b9:
f6:cb:4a:78
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEAmadazANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
NmZlN2I1NjcyMjI0NTExNmQ0MjM0YmU0ODRhMDJhNDhhMWRkZTFmMB4XDTIyMDYw
ODEyMDgwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjQ2NDc1MmFmMWVk
ZjQ5ZDBlOTZhMzY1OTMwYmJiY2Q4NDE1YTJhYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALBilk58ROsDca1oUBZpf+gN/SxUsj+WeTUDpwwkQM5zqreP
qRy9VfJRoh9+XwiikAzJHe0jkQSeju340ZRV9vENQyNyJskInpNKfvTqNBzuOr+H
FvVgOD2NANZH5E1Y8vv3/nLFCmByJf05VfDOohDJKYXIKesZEvUWW6ac/Hsmk04c
kdsTTy03Wmpu7ciDkxZzwF+eOk0T2a1D+zTmKQyAmHYHH2uLr2pLC/LfPiv6UXzl
UOdiurUrEqn+YUBLerVdvrI+is8t/KjU/MdGhLLINOe0UAhbDEkFyaNDtiVoM1X2
VPUplZejjfC5CGq8t7fYD/C7JSo6Hhmc6Z/4+1MCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBS0ZHUq8e30nQ6Wo2WTC7vNhBWiqjAfBgNVHSMEGDAWgBRG/ntWciJFEW1C
NL5ISgKkih3eHzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1J2NTdWbklpUlJGdFFqUy1TRW9DcElvZDNoOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmQvOTA4MTQzLWY5MTYtNDcxOC04Zjk3LTRiZDMzOTJkNTVkMS8x
L3RHUjFLdkh0OUowT2xxTmxrd3U3ellRVm9xby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmQv
OTA4MTQzLWY5MTYtNDcxOC04Zjk3LTRiZDMzOTJkNTVkMS8xL1J2NTdWbklpUlJG
dFFqUy1TRW9DcElvZDNoOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAblPyDANBAIAAjAHAwUAKgNeIDAN
BgkqhkiG9w0BAQsFAAOCAQEAm/WkJQakBFK3y5lxE4LJeGkLqEREkuBlRl5RQEgs
DF862Y69T77O+HWi9YRNlxQ02ORpd2Hq+deM6tx4gXngm4ZlN8igJvD1nX36fBbj
NB2OUVl46XXe+ggYuwybip+EK/7dwH6J1MDiwIarr1bHojOPcEqC9H4vnGVOiVxg
boWaClX4uqves5lNu4Kbdz1Rcuq0gk6wzo7xnLQCzGdgurYjuKwP3szN3eH/dyvk
2mhaUfNMCkVsm/fM03BWKjDRT5mFQ9viab0xahl09z9F2TCq8F4Kkt9/aaqLt8gj
YumWlNvHL9pthm+m1opyGzUvLiZUQkPTh0/s0rS59stKeA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:33:49 2025 by rpki-client