Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/EYLlWfxWZ2kRCbB0MfHCRSI5r4s.roa
File: EYLlWfxWZ2kRCbB0MfHCRSI5r4s.roa (raw, json)
Hash identifier: arotblgvroZ7Vx/ej5Ah/zXB1dJjUItFNanX5vz5Hhs=
Subject key identifier: 11:82:E5:59:FC:56:67:69:11:09:B0:74:31:F1:C2:45:22:39:AF:8B
Certificate issuer: /CN=37af48131ecd9dca3def2b2de788f15060627755
Certificate serial: 33715BE2
Authority key identifier: 37:AF:48:13:1E:CD:9D:CA:3D:EF:2B:2D:E7:88:F1:50:60:62:77:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N69IEx7Nnco97yst54jxUGBid1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/EYLlWfxWZ2kRCbB0MfHCRSI5r4s.roa
Signing time: Sat 01 Jan 2022 06:02:02 +0000
ROA not before: Sat 01 Jan 2022 06:02:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49766
IP address blocks: 46.255.152.0/21 maxlen: 21
78.24.16.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 863067106 (0x33715be2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37af48131ecd9dca3def2b2de788f15060627755
Validity
Not Before: Jan 1 06:02:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1182e559fc5667691109b07431f1c2452239af8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:df:85:55:11:71:c6:25:c9:1d:6a:c1:e3:75:
3c:a5:a8:18:b4:96:0b:25:08:91:2e:46:b8:fe:73:
14:87:91:28:83:c4:74:64:df:67:c1:fb:16:e8:3f:
dc:d6:60:84:37:e3:3e:3f:a8:ea:66:0a:cb:e8:31:
f9:23:a7:db:e4:ce:07:5d:60:a8:e9:60:e0:c6:2b:
cd:42:86:3c:5d:1d:af:4b:3f:ef:b8:c4:f1:20:60:
a5:90:f7:c9:dc:2a:7d:9c:61:ff:8a:b6:a4:b6:f6:
b0:c2:cc:3c:db:cc:31:4c:70:98:4f:59:11:0e:03:
8f:45:17:8a:89:a4:2e:35:09:c6:66:d5:28:1e:ff:
0d:03:51:df:94:5d:3c:c6:ab:df:41:62:b3:19:dc:
42:a5:c1:a3:d7:0e:7c:8f:87:16:9e:7a:51:5b:97:
2e:e0:0e:0a:45:71:df:a9:a7:e0:84:10:30:11:20:
08:cb:a9:f2:d4:4d:ef:2d:ef:dc:99:a5:c5:1b:2e:
a6:a8:a6:13:ff:cd:20:02:0c:b6:ba:bf:c1:97:df:
f2:b0:0f:8f:2a:fc:2e:5e:e5:09:da:e2:ea:3a:c1:
c6:1a:4d:54:ef:33:b0:00:59:ca:0d:a5:c0:f1:d9:
21:ba:77:30:ca:f2:fb:2b:f3:65:2e:cf:53:00:27:
8f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:82:E5:59:FC:56:67:69:11:09:B0:74:31:F1:C2:45:22:39:AF:8B
X509v3 Authority Key Identifier:
keyid:37:AF:48:13:1E:CD:9D:CA:3D:EF:2B:2D:E7:88:F1:50:60:62:77:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N69IEx7Nnco97yst54jxUGBid1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/EYLlWfxWZ2kRCbB0MfHCRSI5r4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/N69IEx7Nnco97yst54jxUGBid1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.255.152.0/21
78.24.16.0/21
Signature Algorithm: sha256WithRSAEncryption
41:1f:b4:b1:f9:ca:7b:16:de:e5:08:b2:2c:c7:07:c7:84:95:
aa:3c:22:f9:da:1b:b0:3f:cd:a6:68:7a:72:93:46:81:ed:7c:
ef:81:47:4c:53:2e:68:83:3f:99:70:c7:1f:eb:cc:26:74:2d:
a7:45:b9:65:d4:ce:42:ac:a0:aa:cd:c6:99:a7:d0:68:8f:a7:
14:21:a8:40:7d:f5:33:05:c8:ea:06:4f:69:2f:66:1f:9f:56:
5c:6a:09:22:0e:8b:76:7c:70:85:16:cc:30:48:c3:6e:64:d5:
0e:f0:34:50:c2:30:dc:2f:c7:99:ca:7f:9f:e9:8b:11:88:df:
96:32:e1:36:02:2f:b5:b7:66:6d:8d:94:7b:47:e3:32:56:6e:
2a:42:31:8c:a3:c2:25:4e:c4:6c:18:5a:58:6c:02:69:c9:b5:
b0:2c:a3:0f:64:b5:9f:d4:79:f5:22:39:6e:83:0a:e7:d2:4a:
82:a9:e6:91:81:48:64:44:fd:c5:0a:1c:78:57:6f:10:61:42:
b1:f3:d9:9c:1c:a9:fb:d9:b9:6f:47:19:e1:70:03:ee:e9:3d:
82:71:fa:25:a6:6a:b0:85:15:56:0f:31:23:5f:63:6f:43:d4:
71:f6:18:ee:15:b9:96:8b:21:86:34:8e:2c:b6:75:96:4e:5a:
f9:04:33:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:00 2024 by rpki-client on console-fra.rpki-client.org