Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/bb140a-2a21-4f5f-bdcc-88b016bbd581/1/nnIBHu240Dpn41v4H5hKWWzH60k.roa
File: nnIBHu240Dpn41v4H5hKWWzH60k.roa (raw, json)
Hash identifier: FA/kvcBR2OIgnVP+uEcn/BIc/Tzcskv5Ww5oV1jrevs=
Subject key identifier: 9E:72:01:1E:ED:B8:D0:3A:67:E3:5B:F8:1F:98:4A:59:6C:C7:EB:49
Certificate issuer: /CN=a4bcc12afa4f05739f45f605e221c64c3c0d2ed6
Certificate serial: 37DF845B
Authority key identifier: A4:BC:C1:2A:FA:4F:05:73:9F:45:F6:05:E2:21:C6:4C:3C:0D:2E:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pLzBKvpPBXOfRfYF4iHGTDwNLtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/bb140a-2a21-4f5f-bdcc-88b016bbd581/1/nnIBHu240Dpn41v4H5hKWWzH60k.roa
Signing time: Sat 01 Jan 2022 14:56:02 +0000
ROA not before: Sat 01 Jan 2022 14:56:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201041
IP address blocks: 46.229.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 937395291 (0x37df845b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4bcc12afa4f05739f45f605e221c64c3c0d2ed6
Validity
Not Before: Jan 1 14:56:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e72011eedb8d03a67e35bf81f984a596cc7eb49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:15:4f:d8:cc:e2:e1:11:32:2d:87:06:c1:37:
de:fd:45:e5:5a:c5:86:61:3c:38:99:e2:da:8c:21:
93:df:5e:4c:ff:42:c8:05:c9:f8:f4:29:b4:27:10:
f5:0f:ea:8a:ba:88:ca:3a:5e:fe:a5:46:a2:a7:3e:
9a:ab:4d:4a:2c:68:09:7f:6f:5d:6a:c4:ea:24:a7:
a8:07:bc:33:60:75:60:36:20:9d:59:43:f4:53:ea:
e1:72:35:af:10:e8:ee:16:b2:1a:bc:c4:d5:03:98:
34:3e:5e:0e:02:1c:98:7c:f8:f4:14:fa:7b:b3:94:
b5:18:6a:78:d7:91:96:de:0e:67:f4:a7:fb:f4:be:
de:c7:f4:36:53:8f:e3:ae:5b:47:bf:ad:f1:02:22:
a6:4e:f5:2c:05:58:3c:76:76:63:8c:bf:47:33:a5:
16:c7:34:12:dc:f6:f8:2c:74:cc:17:fd:d2:7b:85:
18:67:18:d5:79:b9:ca:a0:e3:49:b6:ca:83:d5:d5:
b1:be:bf:73:21:3f:e9:49:1c:eb:0f:9f:60:96:88:
16:64:ae:9a:f3:70:8c:b5:13:60:b5:03:a9:b7:8a:
6d:10:a5:8d:59:1f:77:e9:b5:f6:63:2c:4a:8b:e9:
3c:92:b7:0b:51:37:3b:00:7f:30:a6:3a:5c:a0:06:
c3:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:72:01:1E:ED:B8:D0:3A:67:E3:5B:F8:1F:98:4A:59:6C:C7:EB:49
X509v3 Authority Key Identifier:
keyid:A4:BC:C1:2A:FA:4F:05:73:9F:45:F6:05:E2:21:C6:4C:3C:0D:2E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pLzBKvpPBXOfRfYF4iHGTDwNLtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/bb140a-2a21-4f5f-bdcc-88b016bbd581/1/nnIBHu240Dpn41v4H5hKWWzH60k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/bb140a-2a21-4f5f-bdcc-88b016bbd581/1/pLzBKvpPBXOfRfYF4iHGTDwNLtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.229.60.0/24
Signature Algorithm: sha256WithRSAEncryption
72:3b:8d:bf:7d:5a:f1:cd:34:33:d9:a2:69:42:33:f1:5a:1e:
2f:40:d9:c3:19:04:ca:22:ff:1b:aa:26:10:40:b7:37:0e:9e:
3a:ed:32:c8:a8:99:a8:57:e9:79:99:3b:76:04:05:27:6e:5b:
c7:a2:aa:7d:a5:ab:17:0d:f2:1b:82:02:a5:aa:d2:3d:9d:0b:
20:03:1d:1d:7f:e1:88:e2:bb:87:ab:c4:79:29:f5:73:f1:5b:
9e:e9:4c:37:c2:bf:71:d8:be:40:f1:59:7a:a7:c3:08:c2:81:
07:a4:7c:fc:77:0d:dd:3f:92:6b:69:db:11:bc:94:e2:a0:f5:
7b:4b:09:d0:a9:79:6d:df:e9:e8:6c:fe:68:c0:91:46:19:1d:
15:10:77:6b:32:1b:f6:17:5e:16:44:32:b9:2f:f2:95:7a:db:
1c:b8:81:ab:7b:b6:8f:3b:53:ff:b6:d0:87:d7:78:f6:2e:c5:
d7:1e:63:14:14:89:11:8e:ec:2c:de:72:16:8a:de:45:73:31:
ff:fa:f5:84:70:43:02:4d:73:a3:7e:3f:aa:a8:24:8e:b1:8c:
b4:5f:f4:41:0d:9f:d5:c5:56:27:6f:aa:dd:25:4b:5c:ad:80:
67:f4:3b:b0:97:28:73:6a:18:17:6d:78:ed:6e:2f:4b:42:07:
51:0a:5c:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:42 2024 by rpki-client on console-ams.rpki-client.org