Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/UG61QkhP3GfxajOLw5WVxBbOOTY.roa
File: UG61QkhP3GfxajOLw5WVxBbOOTY.roa (raw, json)
Hash identifier: nmfAG4gXd0RQ21bdludMFCjj8Okw7JZREMOiwOo5KVU=
Subject key identifier: 50:6E:B5:42:48:4F:DC:67:F1:6A:33:8B:C3:95:95:C4:16:CE:39:36
Certificate issuer: /CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Certificate serial: 01852DB74FDF8C03EE99B9C2B0F32E0A480F
Authority key identifier: C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/UG61QkhP3GfxajOLw5WVxBbOOTY.roa
Signing time: Tue 20 Dec 2022 04:07:46 +0000
ROA not before: Tue 20 Dec 2022 04:07:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207724
IP address blocks: 46.148.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2d:b7:4f:df:8c:03:ee:99:b9:c2:b0:f3:2e:0a:48:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Validity
Not Before: Dec 20 04:07:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=506eb542484fdc67f16a338bc39595c416ce3936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a2:7f:62:06:61:4b:e7:7f:25:91:82:03:8c:
95:4a:d4:c2:fa:9d:2f:e8:b0:f8:fd:68:d1:5c:7f:
5f:3c:08:a3:c2:17:7e:fa:db:86:56:80:90:c6:da:
c3:63:85:8c:7c:53:53:11:12:d5:66:fb:e3:d9:85:
c1:e2:e9:96:d9:c2:6e:eb:57:9a:fb:22:82:7e:a3:
6d:c6:06:d6:8d:7f:26:e7:a7:f7:86:cc:a0:f8:f4:
1c:2e:e7:2c:6b:9f:49:74:18:2c:72:80:b0:13:93:
69:af:74:54:81:7a:1e:0f:dd:41:4b:cf:26:11:07:
24:6b:f1:8e:fe:bd:ed:85:39:51:ce:48:cd:3e:e8:
ac:74:3d:72:80:51:c7:16:e1:53:8d:30:04:60:d1:
a4:6b:6e:a0:da:c2:4b:51:44:cf:dd:54:9a:90:cc:
cf:3d:53:b7:41:ad:c2:81:36:b0:91:f7:c3:70:88:
43:a1:75:d7:85:79:9d:8d:8f:8f:1d:3a:9b:bb:15:
00:0b:ea:2d:b7:78:66:2f:61:65:26:92:d2:c8:97:
11:54:5a:59:28:e0:cd:e1:fe:4a:5f:fd:4b:ea:5f:
20:af:24:f4:29:5a:14:86:81:f2:4c:46:c0:ee:84:
11:db:4a:48:33:c7:d0:6d:fd:1a:d4:8b:58:b2:a1:
ab:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:6E:B5:42:48:4F:DC:67:F1:6A:33:8B:C3:95:95:C4:16:CE:39:36
X509v3 Authority Key Identifier:
keyid:C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/UG61QkhP3GfxajOLw5WVxBbOOTY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/yJwsxInr5I9JBYSshm_jYsQRfnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.148.43.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:68:a7:a4:c4:3e:8c:57:34:53:37:25:91:eb:cc:31:13:be:
be:b4:ad:8d:eb:6a:dd:7f:b5:6e:50:39:e3:5f:9a:c2:ba:c3:
a9:8d:83:1f:fa:b7:73:88:c6:21:be:63:39:72:0f:38:a2:fe:
aa:94:c8:07:7a:9f:26:cb:87:22:96:d2:94:30:ee:51:06:56:
d4:5d:69:7a:a6:71:26:7f:be:c8:f9:4c:a2:79:3e:fe:77:75:
8c:ea:66:f3:68:9c:53:d2:01:6f:f6:91:cc:fb:0a:5a:93:22:
d2:5e:a8:aa:46:ba:a4:5b:b4:fa:82:17:60:6f:31:86:f6:0e:
c0:9f:5a:26:e4:08:42:51:9f:f8:c6:04:d9:c4:57:45:d4:08:
4e:b7:2d:53:34:01:09:bf:85:bb:fa:22:6a:2b:51:ff:92:27:
b4:50:4b:19:f0:c8:e6:d8:de:c0:90:61:32:62:ea:b2:71:0d:
68:a8:85:49:29:fe:6f:ae:d7:23:bc:84:6f:9f:a5:d3:63:c9:
17:ee:38:f4:88:20:57:dc:e2:f8:cf:a8:e4:51:61:cf:22:d2:
1c:1d:7a:bf:a9:7e:10:1b:94:05:9f:9a:a1:1d:b2:0a:b9:00:
10:0b:47:89:3c:54:9a:df:50:af:eb:8b:bd:c8:d0:83:87:f2:
44:40:1f:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:21 2024 by rpki-client on console-fra.rpki-client.org