Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/1--F_hlTRw4HpSkF__7tho3PxWfs.roa
File: 1--F_hlTRw4HpSkF__7tho3PxWfs.roa (raw, json)
Hash identifier: gyKKNppXD61COqlrNN82/tYlkGpo+8NhiBXV6tRaP+o=
Subject key identifier: FB:E1:7F:86:54:D1:C3:81:E9:4A:41:7F:FF:BB:61:A3:73:F1:59:FB
Certificate issuer: /CN=f7aa039b886b226578bdb6a42781bf59044bb138
Certificate serial: 377FFB4E
Authority key identifier: F7:AA:03:9B:88:6B:22:65:78:BD:B6:A4:27:81:BF:59:04:4B:B1:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/96oDm4hrImV4vbakJ4G_WQRLsTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/1--F_hlTRw4HpSkF__7tho3PxWfs.roa
Signing time: Sat 01 Jan 2022 10:04:38 +0000
ROA not before: Sat 01 Jan 2022 10:04:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48225
IP address blocks: 46.252.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 931134286 (0x377ffb4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7aa039b886b226578bdb6a42781bf59044bb138
Validity
Not Before: Jan 1 10:04:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fbe17f8654d1c381e94a417fffbb61a373f159fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:13:ca:c6:53:48:82:fd:d3:b1:02:c2:ab:01:
0f:c6:97:20:b8:d4:72:e0:bc:6c:6f:db:32:64:76:
5d:1b:b5:f4:6d:c3:27:6f:ee:1e:18:29:e4:73:99:
50:fc:65:4c:74:4c:53:4b:41:48:56:3e:d1:66:dc:
55:d8:b4:cf:97:21:bb:13:6a:e4:00:9c:7c:e0:d4:
a2:78:ca:fa:b4:30:93:bb:77:9e:21:5e:a3:d3:e9:
de:7d:c5:1d:61:d7:56:ae:cf:31:6e:a2:98:f2:e2:
3c:9c:21:e7:03:c6:9b:e9:2c:9b:d3:c6:37:67:05:
40:74:13:63:c0:01:ab:40:f6:ba:3d:96:d9:11:47:
38:8a:ba:71:b8:28:e3:33:71:0d:d1:30:13:2b:a2:
18:01:7e:52:82:9c:92:ef:5f:ee:12:29:c5:f1:cf:
83:7d:44:fd:bb:8e:c5:12:92:69:ea:b2:65:ab:56:
57:5b:d2:5e:9e:91:36:78:3f:2e:82:ab:35:65:cb:
c0:99:09:1f:67:d2:a4:86:ef:1a:a8:f0:4c:eb:bd:
e9:05:bc:45:8f:e4:52:be:4f:c3:ca:c8:ce:95:bb:
00:05:5e:9e:8a:27:0f:00:1f:2f:a0:12:5a:f8:56:
fc:58:59:4f:f3:22:63:af:0e:65:6b:6c:c3:b6:8d:
9a:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:E1:7F:86:54:D1:C3:81:E9:4A:41:7F:FF:BB:61:A3:73:F1:59:FB
X509v3 Authority Key Identifier:
keyid:F7:AA:03:9B:88:6B:22:65:78:BD:B6:A4:27:81:BF:59:04:4B:B1:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/96oDm4hrImV4vbakJ4G_WQRLsTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/1--F_hlTRw4HpSkF__7tho3PxWfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/96oDm4hrImV4vbakJ4G_WQRLsTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.252.251.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:c6:fb:8a:3d:bd:88:f3:53:bd:40:7e:91:3b:0c:98:a3:ee:
26:3b:73:09:aa:93:d1:d4:a4:d3:08:63:61:25:7a:b1:62:87:
e9:8e:a6:98:a6:32:ad:b5:e5:68:3e:02:3c:7d:cc:b7:53:66:
bf:c5:55:e6:9f:0b:7f:8c:cc:9f:04:75:71:72:37:fe:d0:cd:
db:47:ab:a3:b5:b2:2a:76:a5:3f:95:a5:17:b0:d9:0f:5b:49:
88:8e:89:b7:ee:f0:11:42:c0:84:db:21:c1:ec:cc:9f:ec:3c:
a2:0c:7a:83:7b:2b:eb:02:3c:4a:0a:3c:53:ba:68:e0:df:07:
79:d3:6a:3a:75:73:72:53:c2:de:23:4b:b1:d8:71:75:86:8f:
e2:08:b3:3e:19:70:19:dc:79:c9:1b:e2:80:f4:d2:1c:eb:f5:
a4:d4:22:e4:a2:72:6d:4a:90:fe:75:0e:74:95:a6:8c:4d:4f:
65:fc:76:9e:1f:a2:43:08:ee:d4:0d:b7:50:4e:45:f5:53:ca:
91:27:f2:cc:40:ea:41:60:96:49:18:9b:30:6f:e4:b0:cc:b8:
03:31:6e:41:db:30:61:07:74:46:1b:26:cf:e5:8b:93:50:d9:
a6:26:fa:e8:51:5b:e4:d3:42:67:43:25:c2:07:fc:25:0d:a8:
2b:5f:0d:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:23 2024 by rpki-client on console-fra.rpki-client.org