Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/d1dd9a-98f4-45b8-9095-59d60bff205f/1/pN5YS8I_vtmESBnCCuocS67uPZs.roa
File: pN5YS8I_vtmESBnCCuocS67uPZs.roa (raw, json)
Hash identifier: WnmM+RG3qGwuSeThFj2yNjDr8R5ndRPmc7Ye1ojermI=
Subject key identifier: A4:DE:58:4B:C2:3F:BE:D9:84:48:19:C2:0A:EA:1C:4B:AE:EE:3D:9B
Certificate issuer: /CN=936cb336c1beb71d4fbbaae243b23352c6270061
Certificate serial: 189A21
Authority key identifier: 93:6C:B3:36:C1:BE:B7:1D:4F:BB:AA:E2:43:B2:33:52:C6:27:00:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2yzNsG-tx1Pu6riQ7IzUsYnAGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/d1dd9a-98f4-45b8-9095-59d60bff205f/1/pN5YS8I_vtmESBnCCuocS67uPZs.roa
Signing time: Sat 01 Jan 2022 01:01:56 +0000
ROA not before: Sat 01 Jan 2022 01:01:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210923
IP address blocks: 46.175.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1612321 (0x189a21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=936cb336c1beb71d4fbbaae243b23352c6270061
Validity
Not Before: Jan 1 01:01:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4de584bc23fbed9844819c20aea1c4baeee3d9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:76:19:05:04:b0:4b:6e:30:14:03:80:29:0e:
7f:31:54:79:0f:d4:ed:16:3b:52:9f:53:e2:28:6d:
69:f9:96:31:45:b2:fc:f8:7f:ce:c9:ea:d5:9b:1f:
d0:05:c3:57:de:f7:22:dd:f0:47:1e:34:67:4e:db:
4c:0f:a1:25:83:2d:89:8a:18:1a:b4:d7:3a:62:a7:
22:be:5a:14:6a:20:c0:79:9d:1a:5b:43:3b:b4:cc:
18:d8:cc:4e:c2:2e:d4:74:df:67:70:12:20:eb:da:
f6:2c:97:5b:55:c3:04:97:17:d8:10:94:d2:2d:ce:
11:d1:8d:f6:c1:fe:a7:da:9b:f5:fe:94:dc:b3:c8:
48:c1:7d:d0:95:ac:0f:ff:f1:3a:c8:32:ce:d2:9a:
99:b1:7e:50:72:d4:f2:34:07:23:b7:ae:4e:ff:0b:
31:8a:33:d0:8d:8f:50:cc:5e:fb:f6:7e:ac:22:05:
2d:80:f2:96:3d:2e:a5:02:5e:b0:92:51:f2:d6:16:
db:5c:28:a3:68:80:cd:0d:e7:0c:12:9e:71:e0:03:
57:3c:84:f6:f7:0e:37:c0:3c:f0:c0:f0:0c:bd:c3:
77:f7:4f:f1:24:cd:ae:01:75:2e:53:57:8a:41:ad:
2b:cc:bd:a9:06:5c:a1:f6:d1:26:53:bb:53:f9:17:
45:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:DE:58:4B:C2:3F:BE:D9:84:48:19:C2:0A:EA:1C:4B:AE:EE:3D:9B
X509v3 Authority Key Identifier:
keyid:93:6C:B3:36:C1:BE:B7:1D:4F:BB:AA:E2:43:B2:33:52:C6:27:00:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2yzNsG-tx1Pu6riQ7IzUsYnAGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d1dd9a-98f4-45b8-9095-59d60bff205f/1/pN5YS8I_vtmESBnCCuocS67uPZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d1dd9a-98f4-45b8-9095-59d60bff205f/1/k2yzNsG-tx1Pu6riQ7IzUsYnAGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.175.134.0/24
Signature Algorithm: sha256WithRSAEncryption
73:f0:14:c6:84:d7:72:aa:b0:77:62:1b:fb:ed:64:75:ab:f9:
22:1d:16:9d:cb:2e:04:6f:bf:ae:41:70:32:d3:7b:d7:c7:07:
66:7c:05:14:2d:a4:e4:2d:85:4f:09:31:4e:58:ed:58:ca:85:
73:66:d6:83:0c:ce:2b:70:8f:27:25:ee:87:c0:62:4f:b3:b9:
61:9d:74:92:4c:7c:e1:f3:de:d3:8c:c3:87:55:af:88:22:98:
e5:10:e3:2c:5a:83:9c:bf:6a:18:fa:8d:ea:f2:82:ab:6b:5f:
95:a4:fa:f4:01:2d:20:54:8e:7f:ac:b8:76:39:db:d4:9d:c5:
4f:b9:99:ec:17:32:5a:b9:21:49:ab:88:43:c5:e0:8b:88:53:
ef:72:c6:d6:61:1c:84:15:43:53:a8:7e:5d:d1:6a:b7:d8:d5:
85:a0:8e:10:83:31:c4:83:9c:2c:72:ac:e8:75:67:e0:6f:48:
0f:e2:53:ff:ff:70:4d:9d:39:67:b8:0f:c6:f8:13:b0:ac:2b:
22:a4:66:90:01:2e:07:19:18:81:b5:e5:98:df:96:d4:4e:eb:
5b:c6:9b:9d:1c:e1:a7:f0:5d:a4:8a:e9:db:c5:8c:15:b1:af:
99:8b:f9:21:3d:5d:7d:15:a1:77:91:e8:e8:04:a0:7f:c3:17:
95:87:d3:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:55 2024 by rpki-client on console-ams.rpki-client.org