Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/202900-3d72-405b-9ef6-6cd4c980a523/1/TRwUpYpbV94kn1yeJGtvz0ua4qY.roa
File: TRwUpYpbV94kn1yeJGtvz0ua4qY.roa (raw, json)
Hash identifier: FmBqks0XtIOr8AhK3ClsKIFOSfVnjMOInN0h+9KF/UQ=
Subject key identifier: 4D:1C:14:A5:8A:5B:57:DE:24:9F:5C:9E:24:6B:6F:CF:4B:9A:E2:A6
Certificate issuer: /CN=31a3da6d0fafd27d01b74703bb39d8c115e86412
Certificate serial: 12BC4BBC
Authority key identifier: 31:A3:DA:6D:0F:AF:D2:7D:01:B7:47:03:BB:39:D8:C1:15:E8:64:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MaPabQ-v0n0Bt0cDuznYwRXoZBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/202900-3d72-405b-9ef6-6cd4c980a523/1/TRwUpYpbV94kn1yeJGtvz0ua4qY.roa
Signing time: Sat 01 Jan 2022 15:00:43 +0000
ROA not before: Sat 01 Jan 2022 15:00:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207758
IP address blocks: 46.16.204.0/24 maxlen: 24
46.16.200.0/22 maxlen: 22
185.148.76.0/22 maxlen: 24
2a07:5c80::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 314330044 (0x12bc4bbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31a3da6d0fafd27d01b74703bb39d8c115e86412
Validity
Not Before: Jan 1 15:00:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d1c14a58a5b57de249f5c9e246b6fcf4b9ae2a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c9:60:84:9e:e3:9d:af:f7:14:79:dd:e9:46:
5f:fc:4b:d7:80:a7:62:b1:6a:08:28:0f:64:66:f0:
cd:1b:76:b2:b4:46:1d:d6:38:ad:0f:db:a4:0c:c1:
d2:06:5c:f3:c1:95:58:0c:83:f1:5d:62:99:b6:d6:
94:80:d1:d0:f7:f8:25:71:78:85:c7:52:88:a7:d8:
2f:2c:0f:23:90:60:b8:9f:22:7c:6c:1b:ca:cd:ff:
43:f3:87:ab:58:57:53:4a:4e:54:4e:4f:90:60:87:
bf:4e:88:79:6b:1e:95:ce:66:cc:6d:e0:23:52:53:
8d:0b:28:4d:f1:1b:f3:92:c3:8d:b9:84:92:2d:c6:
f8:e7:36:f6:41:e4:17:d9:b8:77:95:53:ac:f1:d9:
73:6f:46:3a:d2:17:1c:d4:92:4e:51:6a:c6:26:07:
6f:8f:ac:a3:3a:ec:60:d7:e4:73:e2:4c:c3:98:14:
9e:ab:dd:1c:82:e9:b2:c6:26:69:e7:fb:25:09:7b:
3d:ec:02:05:7f:c1:be:37:8a:e9:93:11:c4:1a:79:
d7:79:5b:56:d2:ea:1b:e9:a8:fd:5f:5c:78:78:3a:
e9:73:f3:51:46:22:22:42:13:47:93:2b:1d:af:46:
49:44:fc:8f:bc:7f:a7:03:dc:1e:0b:db:e3:0e:e3:
be:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:1C:14:A5:8A:5B:57:DE:24:9F:5C:9E:24:6B:6F:CF:4B:9A:E2:A6
X509v3 Authority Key Identifier:
keyid:31:A3:DA:6D:0F:AF:D2:7D:01:B7:47:03:BB:39:D8:C1:15:E8:64:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MaPabQ-v0n0Bt0cDuznYwRXoZBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/202900-3d72-405b-9ef6-6cd4c980a523/1/TRwUpYpbV94kn1yeJGtvz0ua4qY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/202900-3d72-405b-9ef6-6cd4c980a523/1/MaPabQ-v0n0Bt0cDuznYwRXoZBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.16.200.0-46.16.204.255
185.148.76.0/22
IPv6:
2a07:5c80::/29
Signature Algorithm: sha256WithRSAEncryption
4f:6a:a7:43:9d:0b:86:b7:cf:2a:20:12:0f:66:ff:98:65:a5:
f0:df:4d:fd:bc:dd:8b:a7:f8:ab:7e:bc:0d:3c:ce:e8:c8:cd:
79:7d:07:53:4b:25:94:f9:87:f9:18:bc:ab:f7:ff:ec:84:a0:
7a:de:68:1b:f3:01:a6:aa:95:1d:e1:7a:4e:66:1c:87:31:94:
b1:d4:6a:e6:7a:3d:c3:f2:24:c8:00:06:4a:e3:3e:61:3c:ec:
3c:3e:72:d7:41:ed:a2:9e:4a:fd:53:7b:5b:76:2f:e9:63:cd:
58:33:90:c7:79:d7:5d:24:47:f7:62:0d:3c:5f:77:f1:0d:56:
5e:15:07:e7:30:0a:0c:56:f4:88:da:7a:48:81:25:b4:d7:ac:
5b:42:e3:10:06:10:59:c7:c4:1e:57:36:6b:d3:c9:87:7a:03:
83:ca:c0:3f:fa:11:34:40:61:55:88:8b:8d:33:7d:b6:bf:c0:
88:19:0c:a9:4d:36:14:00:ff:02:db:0d:ba:a9:6a:c9:bb:ff:
fe:c9:33:07:2b:7f:bc:94:62:51:e9:e5:44:ef:22:01:d8:48:
59:7f:c5:3d:74:10:59:8d:e1:79:8e:d0:82:00:67:a7:dd:e3:
99:ab:04:e1:e0:91:ad:2c:17:66:04:65:ce:a8:e8:9d:4e:0a:
8c:1d:94:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:59 2024 by rpki-client on console-ams.rpki-client.org