Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/IqMQcCdkFI9jeyyvIp5WwNgM_Js.roa
File: IqMQcCdkFI9jeyyvIp5WwNgM_Js.roa (raw, json)
Hash identifier: z2dRXAy2sEALZ1GuvBrHkep9S2ElYZj6+LHBEbK7dxA=
Subject key identifier: 22:A3:10:70:27:64:14:8F:63:7B:2C:AF:22:9E:56:C0:D8:0C:FC:9B
Certificate issuer: /CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Certificate serial: 06CFFD94
Authority key identifier: A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/IqMQcCdkFI9jeyyvIp5WwNgM_Js.roa
Signing time: Sat 01 Jan 2022 03:59:25 +0000
ROA not before: Sat 01 Jan 2022 03:59:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43140
IP address blocks: 46.236.204.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114294164 (0x6cffd94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Validity
Not Before: Jan 1 03:59:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22a310702764148f637b2caf229e56c0d80cfc9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d5:87:b7:aa:18:40:7c:a7:d2:1b:72:a6:61:
05:2a:31:ee:cc:9e:a0:fb:87:eb:fd:89:94:a6:a7:
09:67:52:fe:db:e5:6e:f8:b9:6e:13:63:05:92:f1:
df:13:b2:0a:1d:ce:9b:a6:74:8d:3b:bc:91:72:6b:
18:26:95:bd:30:85:a1:71:2d:d4:81:a5:bc:e5:06:
c1:52:61:11:51:e3:d7:b4:f3:18:4c:6f:05:ca:d8:
8a:a3:cd:9e:6a:0e:32:13:af:a9:f5:3c:c1:f2:22:
9c:88:44:41:55:ce:2b:c7:c1:3a:89:10:37:85:5b:
67:bc:a1:a7:95:17:ec:c6:8e:37:20:a9:3b:fb:58:
81:06:ef:fa:dd:fc:3b:60:96:13:00:69:59:dc:d9:
d7:7a:1c:5d:55:b6:a5:d3:5a:b5:97:d3:d5:c9:4f:
4a:60:24:03:fd:2a:58:05:f5:fb:8a:4e:1c:7a:5e:
d3:3b:f1:4c:09:a3:89:2c:43:57:1b:78:10:9b:6f:
f5:4a:07:c0:17:87:f5:2d:3e:77:2f:ad:10:5c:ee:
a1:8c:73:5b:02:0a:85:80:78:5e:db:0b:3f:d5:e8:
f5:43:a7:e3:3f:6e:a3:6c:37:71:eb:9b:65:19:1e:
63:b6:3f:9a:d5:d4:2a:d4:80:6e:7b:02:b0:34:2e:
24:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:A3:10:70:27:64:14:8F:63:7B:2C:AF:22:9E:56:C0:D8:0C:FC:9B
X509v3 Authority Key Identifier:
keyid:A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/IqMQcCdkFI9jeyyvIp5WwNgM_Js.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.236.204.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:2b:81:94:64:6f:90:2f:21:7d:6c:96:7f:8b:0f:31:6f:b4:
72:56:8d:bb:3c:af:80:a6:1f:a7:a7:85:41:29:9b:e3:01:49:
6d:24:fb:1a:ec:27:77:95:18:54:79:23:91:26:14:d1:87:70:
79:78:46:df:46:05:32:f3:c1:2f:73:39:54:af:86:b2:67:b1:
bd:23:f7:ea:3d:73:a8:60:06:5f:f5:2a:1c:fe:d5:a1:a6:8f:
51:17:93:fa:65:db:6c:bd:b6:bc:37:be:99:ee:c5:f7:c9:46:
c8:20:79:bb:1a:18:cd:e8:b7:50:d8:55:f1:fc:97:36:09:b8:
06:43:07:2f:7a:74:1d:ad:0f:27:e3:c0:8a:81:1f:c3:01:c9:
58:6e:21:77:54:42:7d:ab:da:11:b6:79:64:9c:6c:6c:10:9c:
d2:36:97:f6:d0:f4:6b:7c:d1:45:e5:6c:a9:f4:ae:bf:66:e2:
aa:7d:b5:31:ff:a2:53:4e:09:a5:33:00:9f:6b:58:a3:86:1b:
ad:cb:d8:e3:3a:67:4b:56:f7:77:c1:65:95:75:ce:8c:25:03:
d8:b4:78:30:68:ce:70:04:35:75:e5:75:a7:50:75:7d:8b:8c:
31:0f:03:9a:23:f4:a5:a9:1d:4b:7a:63:08:86:60:e3:ba:1d:
ca:47:f4:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:27 2024 by rpki-client on console-fra.rpki-client.org