Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/B5SdVqhPDAfv9qKcwqQgaWIDXXY.roa
File: B5SdVqhPDAfv9qKcwqQgaWIDXXY.roa (raw, json)
Hash identifier: 9GezID1afdfmnzySEiW8numDx+ZhuERZzwVz4vxCNwo=
Subject key identifier: 07:94:9D:56:A8:4F:0C:07:EF:F6:A2:9C:C2:A4:20:69:62:03:5D:76
Certificate issuer: /CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Certificate serial: 01823ACE1F2FC4959BD90194CDC6A61CC5EE
Authority key identifier: C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/B5SdVqhPDAfv9qKcwqQgaWIDXXY.roa
Signing time: Tue 26 Jul 2022 13:59:23 +0000
ROA not before: Tue 26 Jul 2022 13:59:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203903
IP address blocks: 46.148.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3a:ce:1f:2f:c4:95:9b:d9:01:94:cd:c6:a6:1c:c5:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Validity
Not Before: Jul 26 13:59:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07949d56a84f0c07eff6a29cc2a4206962035d76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7d:1f:31:32:f2:96:7f:ca:da:67:3a:40:40:
1b:75:01:6e:a6:67:a8:19:6f:8c:ef:47:b7:20:b2:
f0:4c:b6:45:08:bf:da:49:2e:8c:9e:8b:ff:79:1b:
c8:bc:aa:30:fe:25:6c:19:16:87:2d:3f:bf:67:f3:
27:2c:bd:39:54:47:c3:44:a9:ff:0e:b8:30:ba:8c:
c7:8b:b4:51:72:f8:e6:18:3b:c4:8a:ec:32:1a:b0:
3b:2c:ab:68:d2:eb:07:f9:68:5c:fb:86:2f:e9:c5:
81:e2:94:56:38:ad:19:e1:03:52:de:7d:4e:83:31:
2e:79:e4:f9:55:b8:1e:b3:93:ab:1c:86:ac:b2:2e:
18:c7:32:ef:37:1d:56:9e:c1:b6:8b:bb:49:eb:e2:
71:3e:9b:40:e8:15:59:4a:e9:34:39:2a:e8:cf:85:
d1:65:90:00:fd:65:32:a6:2d:3f:5a:4e:a9:a4:90:
b3:78:b7:05:d6:f9:e7:6f:39:fd:5a:55:fe:fa:f0:
d6:40:3b:a4:21:7b:f1:6f:71:90:05:25:0e:c9:7e:
2f:db:09:7d:f7:28:cd:f6:e3:08:d0:7a:da:94:0c:
3f:2a:f3:96:67:6b:91:0f:9e:ef:46:2a:07:d1:bd:
8a:d6:61:56:bf:a2:0f:05:4a:da:ef:f8:5c:0d:27:
b5:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:94:9D:56:A8:4F:0C:07:EF:F6:A2:9C:C2:A4:20:69:62:03:5D:76
X509v3 Authority Key Identifier:
keyid:C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/B5SdVqhPDAfv9qKcwqQgaWIDXXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/yJwsxInr5I9JBYSshm_jYsQRfnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.148.38.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:2e:b4:71:05:f9:90:f1:e3:b3:96:58:8a:87:79:45:09:e6:
36:e4:5b:09:a8:9f:7d:bd:bf:b8:ab:f3:2a:aa:f4:1a:59:9a:
2b:8f:de:07:e5:aa:14:77:73:c1:76:14:ef:ef:36:59:25:96:
d8:c6:e0:f9:03:fa:71:5c:3f:3c:88:58:9d:be:e1:77:47:f0:
ec:b6:ef:b7:55:6e:17:58:4e:e5:00:d7:d3:3a:ee:da:77:9b:
e9:d9:be:15:5a:d1:a2:b3:7c:6b:9c:21:29:a4:e0:3d:37:3a:
5c:7d:87:f2:18:6a:75:c1:7e:4e:fa:c0:7f:51:ae:5a:25:ef:
a2:49:2a:da:93:bc:7b:e6:2b:e2:0b:c0:24:32:cf:fe:d9:76:
19:dd:b6:f3:b6:2b:70:44:d7:4c:88:a7:5c:fe:71:36:4e:74:
b6:84:5e:b6:dd:b9:5a:72:8b:66:94:4f:dd:e4:af:60:44:35:
43:ac:ee:31:b8:a2:5f:ea:a3:4e:93:1e:4c:c8:61:16:1a:fa:
40:6f:cb:01:fe:40:23:06:e2:8d:1a:7e:45:22:a9:02:3c:1f:
7d:50:09:98:cf:90:30:f3:97:16:2a:93:09:d0:76:e5:e9:7b:
41:46:80:81:11:c0:67:18:88:6a:aa:50:98:55:fa:d5:bc:cc:
29:81:eb:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:47 2024 by rpki-client on console-ams.rpki-client.org