Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/aLVLAcD4fCv65kWD0ZPuYDTNt8k.roa
File: aLVLAcD4fCv65kWD0ZPuYDTNt8k.roa (raw, json)
Hash identifier: nIT6bgMYG5M3slMWP4q2BRBa4nDir7717thAHi0qPJI=
Subject key identifier: 68:B5:4B:01:C0:F8:7C:2B:FA:E6:45:83:D1:93:EE:60:34:CD:B7:C9
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 08BF02
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/aLVLAcD4fCv65kWD0ZPuYDTNt8k.roa
Signing time: Thu 03 Mar 2022 05:46:37 +0000
ROA not before: Thu 03 Mar 2022 05:46:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 10753
IP address blocks: 212.46.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 573186 (0x8bf02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Mar 3 05:46:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68b54b01c0f87c2bfae64583d193ee6034cdb7c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:32:c1:38:bd:72:de:02:c2:cf:e0:e8:fb:a8:
41:46:c8:02:90:3d:1f:21:a5:fa:ef:5d:15:90:b3:
53:3e:04:7b:fb:17:90:b3:a4:2f:ae:dd:15:f4:94:
df:0a:27:42:32:c4:aa:18:d7:74:4a:f9:3f:ab:51:
21:bb:19:e3:58:62:2a:77:ab:3d:4b:1f:2d:ba:6c:
58:31:23:bb:6f:01:f4:ef:7d:31:7b:e2:bb:ea:ab:
a0:a4:aa:6c:ad:6a:c1:96:60:49:6f:dc:cd:f2:80:
24:95:a1:af:2a:55:ab:07:a6:ad:0c:a5:07:21:36:
b9:94:c1:21:19:45:ed:e7:47:4b:5a:c3:36:92:18:
c0:d9:e0:e5:9d:b7:c9:8c:98:65:44:f7:b0:24:d4:
1e:12:3e:8c:09:a0:1a:87:f6:71:51:3c:37:1c:ec:
9b:2c:38:fa:13:db:9d:eb:04:dc:11:83:6f:ae:ae:
36:d1:2a:66:14:63:41:7f:67:71:bb:f9:17:f8:09:
62:f1:f2:e7:81:b8:df:ff:11:4c:72:a0:c9:c4:2f:
38:40:e5:16:0f:c8:f3:5c:e8:cc:8a:53:b4:33:fe:
86:91:2d:b7:b0:10:d5:06:3c:aa:17:ff:dd:4b:c0:
6c:68:a0:a8:04:d1:cb:16:bd:88:fd:af:03:6d:e6:
bf:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:B5:4B:01:C0:F8:7C:2B:FA:E6:45:83:D1:93:EE:60:34:CD:B7:C9
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/aLVLAcD4fCv65kWD0ZPuYDTNt8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.46.37.0/24
Signature Algorithm: sha256WithRSAEncryption
11:ab:da:be:5e:bb:1e:08:2a:40:fa:39:f2:95:b6:f0:c4:6e:
ba:5c:8d:d3:7f:2f:e2:1a:93:c9:d9:08:d8:98:41:3f:7f:f5:
2c:c3:09:43:d3:c5:d6:30:ba:af:6e:f9:bc:f9:71:b0:7a:60:
e7:00:5d:6b:11:56:b1:bd:6d:a6:3c:4b:8e:32:44:4f:06:30:
15:ff:16:b4:25:bc:05:51:03:da:92:98:f7:74:c0:c2:ea:45:
d4:33:37:89:e6:dc:23:f8:0c:6f:d7:6f:4d:0f:93:e8:4b:1b:
1e:00:f8:8c:ec:79:ed:1c:f5:94:a6:92:a1:c7:49:4e:97:94:
04:c1:1f:d8:c1:93:85:31:3e:95:50:7b:93:54:91:84:b4:eb:
e3:0c:62:fa:0a:37:b9:11:18:e8:0c:fb:9e:80:78:da:34:d8:
86:71:cb:7f:3d:86:ec:50:d6:ec:a5:74:82:2b:00:8b:6d:cd:
b3:82:f2:66:fe:08:e5:4c:3a:95:9e:45:88:49:35:49:57:f4:
98:01:6c:2a:65:69:86:ca:62:ba:46:89:33:f4:5d:a1:5f:a4:
86:a6:8a:67:48:c3:47:82:bb:58:87:ee:d8:88:18:57:f9:f7:
46:ad:26:b2:fa:2f:98:d7:06:81:2d:d0:88:78:32:01:26:ad:
da:7e:88:83
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDCL8CMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDJi
MTQ1YThiZGYyYmNhMTUwZjI1ZWQ1NGEyNzdiOGY2NTNlZmRiM2UwHhcNMjIwMzAz
MDU0NjM3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg2OGI1NGIwMWMwZjg3
YzJiZmFlNjQ1ODNkMTkzZWU2MDM0Y2RiN2M5MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAsjLBOL1y3gLCz+Do+6hBRsgCkD0fIaX6710VkLNTPgR7+xeQ
s6Qvrt0V9JTfCidCMsSqGNd0Svk/q1EhuxnjWGIqd6s9Sx8tumxYMSO7bwH0730x
e+K76qugpKpsrWrBlmBJb9zN8oAklaGvKlWrB6atDKUHITa5lMEhGUXt50dLWsM2
khjA2eDlnbfJjJhlRPewJNQeEj6MCaAah/ZxUTw3HOybLDj6E9ud6wTcEYNvrq42
0SpmFGNBf2dxu/kX+Ali8fLngbjf/xFMcqDJxC84QOUWD8jzXOjMilO0M/6GkS23
sBDVBjyqF//dS8BsaKCoBNHLFr2I/a8Dbea/JwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFGi1SwHA+Hwr+uZFg9GT7mA0zbfJMB8GA1UdIwQYMBaAFCsUWovfK8oVDyXt
VKJ3uPZT79s+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
S3hSYWk5OHJ5aFVQSmUxVW9uZTQ5bFB2Mno0LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8yMS8wZDhjOGYtZmYyYy00ZGE4LWI0NDMtMzA0MGJlZDNjY2NkLzEv
YUxWTEFjRDRmQ3Y2NWtXRDBaUHVZRFROdDhrLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8w
ZDhjOGYtZmYyYy00ZGE4LWI0NDMtMzA0MGJlZDNjY2NkLzEvS3hSYWk5OHJ5aFVQ
SmUxVW9uZTQ5bFB2Mno0LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1C4lMA0GCSqGSIb3DQEBCwUAA4IB
AQARq9q+XrseCCpA+jnylbbwxG66XI3Tfy/iGpPJ2QjYmEE/f/UswwlD08XWMLqv
bvm8+XGwemDnAF1rEVaxvW2mPEuOMkRPBjAV/xa0JbwFUQPakpj3dMDC6kXUMzeJ
5twj+Axv129ND5PoSxseAPiM7HntHPWUppKhx0lOl5QEwR/YwZOFMT6VUHuTVJGE
tOvjDGL6Cje5ERjoDPuegHjaNNiGcct/PYbsUNbspXSCKwCLbc2zgvJm/gjlTDqV
nkWISTVJV/SYAWwqZWmGymK6Rokz9F2hX6SGpopnSMNHgrtYh+7YiBhX+fdGrSay
+i+Y1waBLdCIeDIBJq3afoiD
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:34 2023 by rpki-client on console.sobornost.net