Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/998296-9464-4fb2-98e6-ca8af4f5356c/1/_eFp3lCdKp7nirzepx15N7aDIao.roa
File: _eFp3lCdKp7nirzepx15N7aDIao.roa (raw, json)
Hash identifier: kgl+JmDiJlGTIa5xJS1uvMCG4/gApRBds3zeTSr7fg4=
Subject key identifier: FD:E1:69:DE:50:9D:2A:9E:E7:8A:BC:DE:A7:1D:79:37:B6:83:21:AA
Certificate issuer: /CN=83c6ca86519b56d4d1873af6e257de7e97f3c8ac
Certificate serial: 0183C684B24DCBB7C5E3463A47AC6961C4FB
Authority key identifier: 83:C6:CA:86:51:9B:56:D4:D1:87:3A:F6:E2:57:DE:7E:97:F3:C8:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8bKhlGbVtTRhzr24lfefpfzyKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/998296-9464-4fb2-98e6-ca8af4f5356c/1/_eFp3lCdKp7nirzepx15N7aDIao.roa
Signing time: Tue 11 Oct 2022 10:08:48 +0000
ROA not before: Tue 11 Oct 2022 10:08:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15699
IP address blocks: 46.226.40.0/21 maxlen: 21
2a0b:9d80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c6:84:b2:4d:cb:b7:c5:e3:46:3a:47:ac:69:61:c4:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83c6ca86519b56d4d1873af6e257de7e97f3c8ac
Validity
Not Before: Oct 11 10:08:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fde169de509d2a9ee78abcdea71d7937b68321aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f5:69:b1:af:39:61:d3:99:c8:71:97:96:d2:
72:bb:61:1c:12:9c:9b:40:07:77:d2:ac:80:fb:b1:
85:0d:73:54:1a:63:6e:77:db:1f:66:6a:3a:37:4d:
6d:66:66:77:83:3a:69:99:f6:3b:78:2c:ef:47:6f:
11:c1:3c:8c:4d:f5:6d:bf:be:24:ac:0d:60:0a:23:
d1:f8:f4:c3:17:5b:59:64:a3:cf:4b:71:b6:31:ee:
eb:de:1a:b2:0f:54:be:fa:28:dc:38:18:92:c5:85:
6f:35:5d:f0:6b:dc:28:d3:f8:43:96:5b:1e:96:45:
44:7b:12:89:48:29:f2:51:fd:64:01:36:ca:aa:95:
2b:94:6c:e0:b7:d4:96:cc:f6:ea:bf:32:bc:33:e1:
97:5c:d5:fa:0e:13:41:21:c6:1b:f0:55:dc:49:d8:
fa:30:cb:77:d2:59:a9:42:fe:d2:34:6e:c8:e6:36:
46:3d:97:f5:c7:48:b5:a6:6c:48:09:ee:9b:e4:70:
2e:a3:fc:5a:b7:0f:5e:9a:c0:1d:27:9a:1c:16:a2:
76:e8:1e:e4:e7:87:e8:02:b3:36:20:31:29:0d:cc:
24:54:82:1b:6a:cf:f1:1a:50:ce:3b:9d:d4:c0:4d:
a6:43:a8:ab:7c:18:f9:68:64:2d:47:3f:c1:6f:7f:
f0:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:E1:69:DE:50:9D:2A:9E:E7:8A:BC:DE:A7:1D:79:37:B6:83:21:AA
X509v3 Authority Key Identifier:
keyid:83:C6:CA:86:51:9B:56:D4:D1:87:3A:F6:E2:57:DE:7E:97:F3:C8:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8bKhlGbVtTRhzr24lfefpfzyKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/998296-9464-4fb2-98e6-ca8af4f5356c/1/_eFp3lCdKp7nirzepx15N7aDIao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/998296-9464-4fb2-98e6-ca8af4f5356c/1/g8bKhlGbVtTRhzr24lfefpfzyKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.40.0/21
IPv6:
2a0b:9d80::/32
Signature Algorithm: sha256WithRSAEncryption
36:e7:1c:dd:01:c5:de:7a:e7:f9:22:a6:41:a7:8c:d5:95:80:
f7:89:da:e1:66:e0:3e:b8:3c:69:52:70:29:ff:9c:09:31:6f:
df:63:31:9c:a4:78:71:b9:d1:3b:4c:ba:2e:c1:53:cf:37:ff:
1b:a2:21:9e:21:a7:37:83:f7:b8:ea:06:2e:e8:2a:42:02:c5:
42:0e:b2:89:4a:b7:37:27:f5:25:c1:71:03:70:d5:7f:c8:5b:
fc:c6:b4:e0:a9:95:1d:5a:20:5b:26:40:27:91:6c:82:d6:f8:
84:4f:bf:16:4c:e6:df:3f:50:4f:28:ed:21:01:ae:7d:c5:ae:
ef:06:3b:e3:ed:8c:dc:a9:26:9c:83:22:8e:9f:74:f2:44:32:
b2:05:91:34:de:7d:ef:a5:fe:e8:93:b1:98:4a:45:36:0f:d7:
ea:71:9e:3d:62:34:24:64:c4:29:7a:93:c3:b4:bd:39:1a:af:
43:f3:bf:7d:d4:81:e5:f5:45:c2:18:56:a0:1c:4c:a0:5d:de:
46:08:70:bf:b9:af:1a:e0:d1:14:19:e9:c7:34:89:ac:44:61:
fb:b2:95:90:61:43:66:d4:b0:0d:20:52:4d:8e:84:06:ff:c8:
35:da:22:32:b9:53:b9:0d:d9:b4:ad:5a:26:62:b3:bc:c6:d0:
cd:67:fb:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:14 2024 by rpki-client on console-fra.rpki-client.org