Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/zIUUccwtPiIuUevhi-FuW2qG6O0.roa
File: zIUUccwtPiIuUevhi-FuW2qG6O0.roa (raw, json)
Hash identifier: wFeodoa6NjVx0BMhGROgNgDBxf+b/6Y/nKfoCCr870I=
Subject key identifier: CC:85:14:71:CC:2D:3E:22:2E:51:EB:E1:8B:E1:6E:5B:6A:86:E8:ED
Certificate issuer: /CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Certificate serial: 06D09E22
Authority key identifier: A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/zIUUccwtPiIuUevhi-FuW2qG6O0.roa
Signing time: Sat 01 Jan 2022 03:59:26 +0000
ROA not before: Sat 01 Jan 2022 03:59:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60128
IP address blocks: 46.236.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114335266 (0x6d09e22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Validity
Not Before: Jan 1 03:59:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc851471cc2d3e222e51ebe18be16e5b6a86e8ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:cd:50:97:c4:a9:0f:84:f9:88:2e:51:0a:d8:
7c:21:a7:24:95:40:ab:6b:9a:20:64:98:c0:0a:d8:
d1:5b:0f:ca:7a:98:cc:a1:71:49:88:0c:46:df:8c:
41:ab:62:7e:89:eb:05:53:f1:7a:52:b2:34:0c:8a:
de:31:8d:5a:78:d6:27:4a:56:a6:f6:c2:58:7c:d0:
4d:16:3c:bb:b1:1c:f3:e1:d0:37:f4:bd:c9:1e:41:
5a:40:7e:3d:c4:45:1e:26:c5:ad:ac:48:0b:f3:78:
39:c8:1f:12:b3:93:e2:ca:70:59:c2:f8:79:f4:52:
82:af:15:20:2a:06:1e:94:7d:b6:f7:99:cf:b2:b0:
06:77:a8:44:8f:99:f4:3b:c4:bc:09:4a:75:72:9a:
2a:2a:91:0a:35:b9:35:ef:fb:89:20:ae:e9:c4:8a:
9e:07:66:09:32:23:6e:2e:79:a5:df:a8:2a:b0:1f:
56:00:27:f7:4e:61:90:3f:56:d4:0f:b8:44:22:59:
ad:c4:89:65:f5:6e:a9:3d:6c:6b:60:99:b0:d2:e3:
54:14:85:6a:e0:56:ea:f2:6a:40:09:52:33:c4:f6:
ae:ec:63:1b:a6:c8:fb:e0:b2:20:b4:3b:39:2b:d7:
60:f0:d8:f0:16:fc:7c:e4:81:4a:6f:80:92:68:0b:
94:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:85:14:71:CC:2D:3E:22:2E:51:EB:E1:8B:E1:6E:5B:6A:86:E8:ED
X509v3 Authority Key Identifier:
keyid:A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/zIUUccwtPiIuUevhi-FuW2qG6O0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.236.218.0/24
Signature Algorithm: sha256WithRSAEncryption
31:87:c6:ee:24:c6:39:76:a0:1b:37:b5:43:ed:99:1c:f4:e5:
51:5d:58:56:65:db:aa:20:59:e5:37:1d:3c:79:9d:6f:38:20:
f9:ec:a2:31:aa:7d:4d:a0:2e:83:b3:2b:c6:10:97:0e:82:24:
ba:6f:27:b0:fe:1a:62:78:19:26:91:48:3c:98:47:0f:f7:63:
7b:19:f3:0e:2d:e5:6a:e2:45:d7:86:b7:b5:2e:69:ab:43:15:
62:b6:9c:c2:0b:a6:e1:f4:49:b6:fc:c4:1e:9b:5f:ba:e3:a4:
40:6b:03:54:8c:bf:95:f5:47:8c:21:c6:83:24:c7:3a:63:88:
56:de:98:47:dc:90:a4:ba:28:3d:18:0f:a4:c9:71:a9:84:01:
aa:a7:be:3c:89:b2:4d:bd:f6:d0:11:ba:2d:b5:5f:b6:7f:b5:
5f:8f:04:7b:d9:3c:bf:49:77:a1:e8:48:ec:c1:a6:b2:9e:ab:
e9:86:96:98:23:b1:d9:1d:29:2c:cf:cb:9c:47:89:2a:00:7c:
7b:13:f4:61:26:b4:31:0f:69:b6:04:af:d0:7e:63:1b:43:80:
a7:cb:da:39:aa:a3:6b:20:24:37:cf:ae:31:2d:67:58:57:c8:
92:1c:72:d8:c9:32:7f:8b:f1:40:09:84:5f:7a:72:e4:11:70:
51:8c:60:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:06 2024 by rpki-client on console-ams.rpki-client.org