Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/pbY0LChi5q8-cmgnLh7xvqhoZew.roa
File: pbY0LChi5q8-cmgnLh7xvqhoZew.roa (raw, json)
Hash identifier: RyxIBsNfUGDZSWICQyGcY7In+0wH6r+rjl57xqLSBUA=
Subject key identifier: A5:B6:34:2C:28:62:E6:AF:3E:72:68:27:2E:1E:F1:BE:A8:68:65:EC
Certificate issuer: /CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Certificate serial: 01852DB839A57B550F59116D42A609BE0323
Authority key identifier: C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/pbY0LChi5q8-cmgnLh7xvqhoZew.roa
Signing time: Tue 20 Dec 2022 04:08:46 +0000
ROA not before: Tue 20 Dec 2022 04:08:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39650
IP address blocks: 46.148.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2d:b8:39:a5:7b:55:0f:59:11:6d:42:a6:09:be:03:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Validity
Not Before: Dec 20 04:08:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a5b6342c2862e6af3e7268272e1ef1bea86865ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d0:6e:c3:65:72:ff:a6:ee:00:6e:fc:70:4a:
eb:75:4b:8d:5e:24:4a:c2:4b:07:b9:52:4c:97:a5:
fa:b1:c2:4a:46:d4:72:c2:99:41:63:16:3f:33:22:
ae:b3:61:99:e1:bc:a5:f4:4e:21:21:67:94:e2:c2:
ce:4f:c7:21:32:4e:5a:67:ac:2e:9d:cb:9f:3d:1d:
d4:84:57:1c:b1:18:2b:68:2d:7b:b3:9a:81:88:47:
36:37:08:be:20:28:7b:a8:7a:e8:ae:a6:49:65:73:
71:86:0b:54:18:34:20:6f:63:c1:55:97:3d:21:97:
7b:3e:2d:17:20:99:c3:04:c2:35:4c:bf:47:02:8a:
a1:75:3d:57:bb:18:b8:22:10:aa:d4:a3:3f:23:ad:
3c:4e:57:8b:e4:e3:8a:a5:f7:fc:ac:b9:be:53:50:
56:48:1b:72:96:0c:91:1c:95:65:6d:82:a2:31:99:
5e:bb:04:a4:96:04:33:19:17:75:69:55:31:54:6b:
de:a9:be:3c:7a:a0:0c:48:37:8c:74:5a:48:c1:f0:
d8:4e:31:e6:8c:7a:6b:de:5a:9e:01:35:2e:22:3a:
28:73:b6:da:97:70:ff:fc:b5:b3:a5:14:47:94:d1:
e8:2e:98:b0:b1:e7:85:a3:d4:e6:34:de:0a:3f:31:
dc:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:B6:34:2C:28:62:E6:AF:3E:72:68:27:2E:1E:F1:BE:A8:68:65:EC
X509v3 Authority Key Identifier:
keyid:C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/pbY0LChi5q8-cmgnLh7xvqhoZew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/yJwsxInr5I9JBYSshm_jYsQRfnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.148.41.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:f2:8f:28:7f:de:74:cc:c5:79:43:8a:37:8f:7e:3b:0b:48:
39:0a:c6:cf:ff:09:fd:2b:4f:0d:eb:4a:b4:38:d1:95:84:f9:
91:67:2e:50:58:95:a5:2c:70:64:1a:77:c0:9e:51:fd:89:f4:
94:97:e3:97:e3:70:d4:f0:77:a0:e5:d7:83:c3:79:c8:4f:95:
24:ac:b6:71:90:7b:fa:82:97:af:b5:d7:92:65:0f:d2:ed:36:
d5:ee:07:af:bd:4a:c3:48:0f:35:0a:bb:68:c9:65:8c:92:8e:
d7:b8:ac:de:3d:56:93:93:f0:06:30:3b:e3:0c:cb:d8:e3:80:
8e:11:88:bf:d0:da:fb:92:1e:5c:9e:d9:76:68:56:0f:ee:74:
91:66:74:06:91:db:e8:65:9a:16:99:59:b6:e9:d6:f0:31:88:
b8:f2:b4:30:f8:2d:0f:2b:62:cf:19:dd:a1:b4:8f:f7:ba:11:
f0:ff:1b:c4:8d:4b:01:17:0d:e4:d7:81:d8:87:f6:f6:41:4f:
55:06:03:c0:f2:95:d2:53:f7:16:54:8e:d6:fe:43:f6:68:95:
68:72:0c:98:90:74:c0:91:ac:1e:cb:2a:5c:a7:1c:90:f6:e4:
8d:3b:1a:a3:2c:ab:92:ed:d1:44:99:e9:75:75:92:a0:58:a3:
1e:f5:a2:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:21 2024 by rpki-client on console-fra.rpki-client.org