Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/_jhYdJTsb23GnIl62XpGwHuEH9Y.roa
File: _jhYdJTsb23GnIl62XpGwHuEH9Y.roa (raw, json)
Hash identifier: qx4ZWtqa132LU2lYXN3WxCAB5xu9P6Z3jsF2mf71W8M=
Subject key identifier: FE:38:58:74:94:EC:6F:6D:C6:9C:89:7A:D9:7A:46:C0:7B:84:1F:D6
Certificate issuer: /CN=5336107179715609dca422bc07a098468c529452
Certificate serial: 09C2FD62
Authority key identifier: 53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/_jhYdJTsb23GnIl62XpGwHuEH9Y.roa
Signing time: Sat 01 Jan 2022 05:59:14 +0000
ROA not before: Sat 01 Jan 2022 05:59:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 46.102.240.0/21 maxlen: 21
77.81.240.0/21 maxlen: 21
2a06:cd40:300::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163773794 (0x9c2fd62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5336107179715609dca422bc07a098468c529452
Validity
Not Before: Jan 1 05:59:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe38587494ec6f6dc69c897ad97a46c07b841fd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2d:0d:eb:93:c9:3c:dc:ad:ef:ef:1f:e8:bb:
bf:5a:74:5b:89:8e:b4:b4:81:e3:e5:63:0a:50:d6:
5b:95:63:a9:af:b6:fd:ae:7b:9f:f2:c3:b8:c2:16:
d8:96:c5:fb:19:b7:41:25:3e:49:74:45:8a:61:30:
69:a4:f3:6f:6a:0f:e3:58:4c:b2:2f:58:c7:79:ad:
49:30:c9:a2:82:b1:ee:2b:4c:12:dd:18:4d:33:5a:
97:ed:63:92:ed:5a:92:09:1b:94:a1:18:c4:88:05:
a2:ba:6f:a9:86:e2:ca:2f:79:a2:18:d8:67:11:cf:
37:e4:e9:7a:5e:10:a3:f4:52:d2:de:34:a0:e8:b3:
d3:a3:5a:72:33:3d:fe:1f:51:3d:9a:06:3c:c8:cb:
01:14:ff:76:46:97:5b:c0:f7:f4:96:db:5e:7b:1f:
38:b6:1b:dc:af:e7:8d:7c:1a:88:40:40:97:e4:e8:
52:7b:a2:eb:66:aa:01:e5:1a:a3:63:db:1b:7c:58:
97:7e:4b:3d:9d:2b:c1:34:8d:9c:6b:6f:3c:59:ea:
8d:6e:59:80:51:af:2a:51:1d:24:81:6d:92:26:e5:
a9:3d:f5:4c:15:f9:61:22:e7:58:70:d8:32:e5:c7:
e3:0c:e2:ab:bc:9e:5c:a3:64:a5:a2:c5:7a:ea:d8:
07:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:38:58:74:94:EC:6F:6D:C6:9C:89:7A:D9:7A:46:C0:7B:84:1F:D6
X509v3 Authority Key Identifier:
keyid:53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/_jhYdJTsb23GnIl62XpGwHuEH9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.240.0/21
77.81.240.0/21
IPv6:
2a06:cd40:300::/48
Signature Algorithm: sha256WithRSAEncryption
06:6f:df:e7:60:4f:a5:23:8a:c8:93:92:23:06:67:1e:70:52:
8f:ba:db:66:2a:b4:35:e7:44:65:51:b4:ef:3f:6c:95:91:59:
c8:d1:d7:64:40:7b:de:18:04:91:07:97:c3:a6:cd:94:86:27:
14:41:27:ec:7f:64:4c:da:1c:e5:00:cf:2d:4a:6b:cf:d6:d9:
c0:48:8d:d2:00:23:35:cb:d9:b9:77:cf:50:7a:d1:8f:e3:b5:
2f:5d:7f:e0:d1:97:ac:4b:3f:e2:9d:f2:fb:2a:07:cd:b1:fc:
b2:cc:54:f1:5c:7f:20:a5:55:a0:02:38:a3:d4:ca:da:fa:0e:
28:c8:f3:c4:d3:30:de:01:48:68:20:4c:7a:d3:f5:cd:4e:7a:
a2:89:13:ee:86:10:ed:ff:35:2e:a9:92:af:95:4c:0e:17:cd:
25:32:8a:4d:c5:9a:15:93:22:3d:b9:12:11:52:66:65:0a:c8:
ab:3f:43:64:13:af:2f:e1:57:d0:03:9d:70:aa:48:02:1f:3a:
02:26:aa:6e:b5:86:7f:1c:00:15:73:f8:06:f7:cc:6b:50:86:
b4:45:e6:8a:d0:24:d9:6f:7b:f0:de:ae:f4:35:12:81:c7:03:
3d:03:84:15:6a:f6:24:dd:0d:8d:24:b3:fa:8f:cc:59:73:5e:
41:a6:42:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:29 2023 by rpki-client on console-ams.rpki-client.org