Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/bb140a-2a21-4f5f-bdcc-88b016bbd581/1/Q00m7kZbyRvQfK4G-z9dNzbHMRg.roa
File: Q00m7kZbyRvQfK4G-z9dNzbHMRg.roa (raw, json)
Hash identifier: zHHdufh9UBzQxAsyfPyJYmtiYSkv/NqAp4UJg70W+KA=
Subject key identifier: 43:4D:26:EE:46:5B:C9:1B:D0:7C:AE:06:FB:3F:5D:37:36:C7:31:18
Certificate issuer: /CN=a4bcc12afa4f05739f45f605e221c64c3c0d2ed6
Certificate serial: 37E175DC
Authority key identifier: A4:BC:C1:2A:FA:4F:05:73:9F:45:F6:05:E2:21:C6:4C:3C:0D:2E:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pLzBKvpPBXOfRfYF4iHGTDwNLtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/bb140a-2a21-4f5f-bdcc-88b016bbd581/1/Q00m7kZbyRvQfK4G-z9dNzbHMRg.roa
Signing time: Sat 01 Jan 2022 14:56:03 +0000
ROA not before: Sat 01 Jan 2022 14:56:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204549
IP address blocks: 46.229.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 937522652 (0x37e175dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4bcc12afa4f05739f45f605e221c64c3c0d2ed6
Validity
Not Before: Jan 1 14:56:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=434d26ee465bc91bd07cae06fb3f5d3736c73118
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:23:ef:e0:65:78:05:a8:08:97:7e:1a:7d:00:
08:ea:45:f7:cb:a1:ce:5a:2b:12:b4:c0:95:62:9f:
e6:29:6e:b0:56:2d:b6:c7:56:b9:f1:7f:ab:f2:e7:
24:44:fc:4e:7d:07:70:4d:1b:bc:83:12:86:ac:7a:
8d:c4:63:bf:e7:f8:dd:b1:90:28:52:41:f1:f0:26:
0a:2f:32:07:63:77:71:c0:8b:3d:9e:95:6d:b8:05:
7b:fa:cc:d2:c1:38:7c:e2:99:f6:28:18:36:36:de:
f7:63:e3:17:1b:5b:d2:62:2f:61:eb:dd:58:1a:7f:
a1:99:59:d4:da:a6:cd:20:11:4c:d6:c0:88:03:1c:
93:74:7f:5d:b6:4b:ec:f6:d7:65:3e:3d:30:a1:cc:
9a:59:ad:22:d1:c7:7c:36:23:8b:ce:f3:b9:5b:e0:
a3:f5:5a:9c:2f:70:eb:4a:96:c9:78:f0:bc:fb:0a:
ec:79:51:fa:ae:35:3d:e4:ce:d8:15:ff:3f:5a:3b:
f2:88:8c:21:7c:d8:43:5d:28:09:57:d2:91:61:55:
6d:73:29:b6:e1:b2:e1:25:2f:2b:0a:74:b1:8e:5c:
b1:c8:f3:60:35:e1:20:e6:e0:f8:01:c1:1c:1c:f9:
d9:e5:7c:5e:eb:18:69:f2:dc:58:13:b6:d7:63:99:
dd:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:4D:26:EE:46:5B:C9:1B:D0:7C:AE:06:FB:3F:5D:37:36:C7:31:18
X509v3 Authority Key Identifier:
keyid:A4:BC:C1:2A:FA:4F:05:73:9F:45:F6:05:E2:21:C6:4C:3C:0D:2E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pLzBKvpPBXOfRfYF4iHGTDwNLtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/bb140a-2a21-4f5f-bdcc-88b016bbd581/1/Q00m7kZbyRvQfK4G-z9dNzbHMRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/bb140a-2a21-4f5f-bdcc-88b016bbd581/1/pLzBKvpPBXOfRfYF4iHGTDwNLtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.229.56.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:f2:4a:72:b4:d7:f6:84:79:51:89:77:6f:bc:88:e6:59:b5:
69:94:04:bf:bd:cc:51:fe:57:e6:17:3b:89:f6:05:59:7d:de:
83:6b:57:bb:68:76:df:eb:2e:d3:8f:bf:c6:1e:0c:a4:a6:6f:
23:4f:11:9a:84:3d:55:53:b8:f7:c7:7c:74:e2:e4:fc:77:56:
50:65:19:d5:14:04:4d:4e:c7:d2:9a:74:d8:c4:89:0d:c0:36:
56:8e:67:e5:a4:c2:ae:05:cc:87:58:f6:29:aa:4e:1b:73:ba:
e3:06:e1:eb:88:ad:03:de:05:2a:95:69:c4:88:dd:58:f5:70:
38:7c:9a:c8:bb:9b:c8:8e:14:da:9d:0f:e2:56:a7:26:5c:55:
fb:ca:e5:5a:0e:e7:c9:84:1a:57:8c:24:9d:4f:f0:4d:54:8d:
ef:fb:fa:7a:19:cb:32:d0:b2:d2:a1:2b:94:a7:5e:70:69:44:
bf:d3:a2:15:01:69:4c:c8:52:cf:e2:e2:70:e8:42:e7:6c:6b:
ee:83:e8:45:5f:b6:e5:8a:54:39:c8:c7:ca:f5:9e:73:41:52:
3b:4e:86:ea:a9:bf:6c:91:57:2f:96:19:c4:6a:3a:00:99:05:
38:4e:9d:d9:b3:d9:d2:95:db:c7:7a:0c:94:70:f8:be:39:ca:
6d:6c:d9:89
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEN+F13DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NGJjYzEyYWZhNGYwNTczOWY0NWY2MDVlMjIxYzY0YzNjMGQyZWQ2MB4XDTIyMDEw
MTE0NTYwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDM0ZDI2ZWU0NjVi
YzkxYmQwN2NhZTA2ZmIzZjVkMzczNmM3MzExODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANMj7+BleAWoCJd+Gn0ACOpF98uhzlorErTAlWKf5ilusFYt
tsdWufF/q/LnJET8Tn0HcE0bvIMShqx6jcRjv+f43bGQKFJB8fAmCi8yB2N3ccCL
PZ6VbbgFe/rM0sE4fOKZ9igYNjbe92PjFxtb0mIvYevdWBp/oZlZ1NqmzSARTNbA
iAMck3R/XbZL7PbXZT49MKHMmlmtItHHfDYji87zuVvgo/VanC9w60qWyXjwvPsK
7HlR+q41PeTO2BX/P1o78oiMIXzYQ10oCVfSkWFVbXMptuGy4SUvKwp0sY5cscjz
YDXhIObg+AHBHBz52eV8XusYafLcWBO212OZ3ZMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRDTSbuRlvJG9B8rgb7P103NscxGDAfBgNVHSMEGDAWgBSkvMEq+k8Fc59F
9gXiIcZMPA0u1jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BMekJLdnBQQlhPZlJmWUY0aUhHVER3Tkx0WS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmQvYmIxNDBhLTJhMjEtNGY1Zi1iZGNjLTg4YjAxNmJiZDU4MS8x
L1EwMG03a1pieVJ2UWZLNEctejlkTnpiSE1SZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmQv
YmIxNDBhLTJhMjEtNGY1Zi1iZGNjLTg4YjAxNmJiZDU4MS8xL3BMekJLdnBQQlhP
ZlJmWUY0aUhHVER3Tkx0WS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC7lODANBgkqhkiG9w0BAQsFAAOC
AQEArPJKcrTX9oR5UYl3b7yI5lm1aZQEv73MUf5X5hc7ifYFWX3eg2tXu2h23+su
04+/xh4MpKZvI08RmoQ9VVO498d8dOLk/HdWUGUZ1RQETU7H0pp02MSJDcA2Vo5n
5aTCrgXMh1j2KapOG3O64wbh64itA94FKpVpxIjdWPVwOHyayLubyI4U2p0P4lan
JlxV+8rlWg7nyYQaV4wknU/wTVSN7/v6ehnLMtCy0qErlKdecGlEv9OiFQFpTMhS
z+LicOhC52xr7oPoRV+25YpUOcjHyvWec0FSO06G6qm/bJFXL5YZxGo6AJkFOE6d
2bPZ0pXbx3oMlHD4vjnKbWzZiQ==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:49 2023 by rpki-client on console.sobornost.net