Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/sFlRCK4aZwDoISzCWr-Ub96nrxM.roa
File: sFlRCK4aZwDoISzCWr-Ub96nrxM.roa (raw, json)
Hash identifier: xkNSUzqIFBP6qw0badFkG+biNBDmZ+RSpD212ljlNfw=
Subject key identifier: B0:59:51:08:AE:1A:67:00:E8:21:2C:C2:5A:BF:94:6F:DE:A7:AF:13
Certificate issuer: /CN=c1bf8f3e609072889e74dd0fb4e27f9bac47b3b0
Certificate serial: 17DDF613
Authority key identifier: C1:BF:8F:3E:60:90:72:88:9E:74:DD:0F:B4:E2:7F:9B:AC:47:B3:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wb-PPmCQcoiedN0PtOJ_m6xHs7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/sFlRCK4aZwDoISzCWr-Ub96nrxM.roa
Signing time: Sat 01 Jan 2022 04:55:17 +0000
ROA not before: Sat 01 Jan 2022 04:55:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31593
IP address blocks: 46.33.32.0/21 maxlen: 21
46.33.40.0/22 maxlen: 22
46.33.56.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400422419 (0x17ddf613)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1bf8f3e609072889e74dd0fb4e27f9bac47b3b0
Validity
Not Before: Jan 1 04:55:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0595108ae1a6700e8212cc25abf946fdea7af13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:42:57:33:2f:12:d2:7e:be:ec:34:cf:bf:1e:
4f:31:6b:45:44:46:7c:8a:ec:4f:2e:15:bd:e1:1c:
cf:02:c1:63:2a:39:7b:5d:fe:d5:17:97:e6:bb:71:
09:27:7d:2b:c3:11:34:63:8a:21:42:6a:73:00:67:
f8:0a:fa:75:05:19:0f:d1:15:2f:49:1a:1f:08:4e:
3c:61:56:5e:d2:69:56:32:51:dc:1a:6e:ae:9f:dd:
22:e3:db:8a:b8:82:49:01:dc:89:08:d0:bb:56:13:
39:63:4c:d6:e2:6d:7c:e9:7e:92:39:30:84:b8:63:
43:5f:25:27:57:a9:c0:14:c7:cf:92:f0:99:94:00:
0b:d3:06:21:40:bc:6d:e3:8e:29:79:b4:3f:8d:ab:
b3:04:be:30:d2:a1:cc:15:2e:56:46:c2:51:11:e5:
8c:18:7b:ac:d3:03:ed:37:ff:fe:23:f0:c8:40:d1:
d0:ad:15:8b:47:23:30:9e:18:ef:de:bc:59:6d:e6:
f7:b3:74:76:95:c6:8b:c9:82:31:cb:e5:9b:4f:a7:
35:18:21:db:2d:16:ec:57:b8:a3:8a:bf:4b:69:b9:
a1:cc:11:69:e2:d7:98:f1:e9:e4:a8:d8:22:09:39:
f3:86:26:89:15:f2:19:09:8e:ea:6f:b7:fc:3f:ec:
83:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:59:51:08:AE:1A:67:00:E8:21:2C:C2:5A:BF:94:6F:DE:A7:AF:13
X509v3 Authority Key Identifier:
keyid:C1:BF:8F:3E:60:90:72:88:9E:74:DD:0F:B4:E2:7F:9B:AC:47:B3:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wb-PPmCQcoiedN0PtOJ_m6xHs7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/sFlRCK4aZwDoISzCWr-Ub96nrxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/wb-PPmCQcoiedN0PtOJ_m6xHs7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.33.32.0-46.33.43.255
46.33.56.0/22
Signature Algorithm: sha256WithRSAEncryption
93:6c:1d:dc:01:d3:01:8d:8c:77:28:44:5b:ba:b6:25:98:c2:
95:3e:d9:d5:f9:42:df:14:d8:26:6c:f7:c5:2f:3f:39:d6:78:
74:a8:65:26:e5:90:ce:c2:43:2d:3c:18:b1:c1:84:25:54:46:
ff:7b:f9:db:24:f5:1b:38:62:a1:82:40:ef:cc:ff:9f:4e:3d:
e9:39:c5:b5:53:17:7a:48:ec:9f:af:dc:fd:f5:e6:73:16:f3:
87:6e:a3:f1:05:70:c5:2e:1b:e1:f8:07:0c:c5:f5:82:62:d9:
a1:16:f1:12:24:b4:2a:e0:03:27:23:eb:84:9d:cd:ef:ee:46:
13:c7:78:c0:1d:93:dd:19:4c:70:6d:63:1e:f2:7c:eb:b6:87:
94:9f:f4:d3:7c:99:1e:09:93:a0:5c:3e:d6:71:23:d4:2a:a2:
c8:fc:2c:2f:00:bc:69:d8:a2:5d:cd:64:bc:c6:43:cb:7e:67:
e8:ee:cd:91:d0:de:cf:cb:88:a1:62:71:a1:89:a6:05:00:81:
58:14:c2:94:a1:a5:88:5d:b0:81:4d:66:4c:d7:1e:a5:bc:9e:
39:2f:ef:8a:9c:a6:e9:42:d0:b4:03:d1:71:c1:ee:39:4c:e0:
27:64:6f:f4:c7:c0:e1:fa:ed:24:08:80:7d:c4:86:ee:f5:f8:
52:f4:5f:d8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIEF932EzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
MWJmOGYzZTYwOTA3Mjg4OWU3NGRkMGZiNGUyN2Y5YmFjNDdiM2IwMB4XDTIyMDEw
MTA0NTUxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjA1OTUxMDhhZTFh
NjcwMGU4MjEyY2MyNWFiZjk0NmZkZWE3YWYxMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPVCVzMvEtJ+vuw0z78eTzFrRURGfIrsTy4VveEczwLBYyo5
e13+1ReX5rtxCSd9K8MRNGOKIUJqcwBn+Ar6dQUZD9EVL0kaHwhOPGFWXtJpVjJR
3Bpurp/dIuPbiriCSQHciQjQu1YTOWNM1uJtfOl+kjkwhLhjQ18lJ1epwBTHz5Lw
mZQAC9MGIUC8beOOKXm0P42rswS+MNKhzBUuVkbCURHljBh7rNMD7Tf//iPwyEDR
0K0Vi0cjMJ4Y7968WW3m97N0dpXGi8mCMcvlm0+nNRgh2y0W7Fe4o4q/S2m5ocwR
aeLXmPHp5KjYIgk584YmiRXyGQmO6m+3/D/sgzMCAwEAAaOCAhcwggITMB0GA1Ud
DgQWBBSwWVEIrhpnAOghLMJav5Rv3qevEzAfBgNVHSMEGDAWgBTBv48+YJByiJ50
3Q+04n+brEezsDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3diLVBQbUNRY29pZWROMFB0T0pfbTZ4SHM3QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmEvYTFjNmMwLWU3NTQtNDc5ZS04NTFkLTBkMGRhMGQxMDQzMi8x
L3NGbFJDSzRhWndEb0lTekNXci1VYjk2bnJ4TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmEv
YTFjNmMwLWU3NTQtNDc5ZS04NTFkLTBkMGRhMGQxMDQzMi8xL3diLVBQbUNRY29p
ZWROMFB0T0pfbTZ4SHM3QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAt
BggrBgEFBQcBBwEB/wQeMBwwGgQCAAEwFDAMAwQFLiEgAwQCLiEoAwQCLiE4MA0G
CSqGSIb3DQEBCwUAA4IBAQCTbB3cAdMBjYx3KERburYlmMKVPtnV+ULfFNgmbPfF
Lz851nh0qGUm5ZDOwkMtPBixwYQlVEb/e/nbJPUbOGKhgkDvzP+fTj3pOcW1Uxd6
SOyfr9z99eZzFvOHbqPxBXDFLhvh+AcMxfWCYtmhFvESJLQq4AMnI+uEnc3v7kYT
x3jAHZPdGUxwbWMe8nzrtoeUn/TTfJkeCZOgXD7WcSPUKqLI/CwvALxp2KJdzWS8
xkPLfmfo7s2R0N7Py4ihYnGhiaYFAIFYFMKUoaWIXbCBTWZM1x6lvJ45L++KnKbp
QtC0A9Fxwe45TOAnZG/0x8Dh+u0kCIB9xIbu9fhS9F/Y
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:28 2023 by rpki-client on console.sobornost.net