Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/21wkTQrDAWTe1Bh5KmbP8Z9KVNw.roa
File: 21wkTQrDAWTe1Bh5KmbP8Z9KVNw.roa (raw, json)
Hash identifier: zOSl92Hg81evTpe4y+RoPyq4V4kv46VSfUdFqY1og/g=
Subject key identifier: DB:5C:24:4D:0A:C3:01:64:DE:D4:18:79:2A:66:CF:F1:9F:4A:54:DC
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 418BB1C8
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/21wkTQrDAWTe1Bh5KmbP8Z9KVNw.roa
Signing time: Sat 01 Jan 2022 10:05:59 +0000
ROA not before: Sat 01 Jan 2022 10:05:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40975
IP address blocks: 46.102.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1099674056 (0x418bb1c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 1 10:05:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db5c244d0ac30164ded418792a66cff19f4a54dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:eb:42:5d:ce:90:aa:4f:f1:a4:b5:74:b1:00:
a6:5d:f6:d1:3d:59:2d:af:74:4a:e0:be:24:6b:9d:
41:29:67:70:28:7a:ff:66:13:6f:41:69:42:ea:ff:
2a:58:38:5a:d5:b0:26:8a:81:fb:3b:9a:12:4b:fb:
2f:bf:e1:22:fb:c2:eb:d6:ad:97:5a:49:94:4f:cb:
7f:bf:1e:f8:63:21:8c:8c:42:28:ef:96:97:6d:d3:
19:99:7a:7d:8e:93:a5:93:0d:64:bf:f0:37:31:2d:
b2:53:24:f6:68:cb:73:78:97:8b:6c:78:16:02:6d:
a4:e9:fc:d5:14:7d:ba:9b:46:4d:79:86:87:39:9b:
e6:51:61:1d:44:47:96:b1:bc:98:5f:a9:7e:97:a7:
e5:e8:cb:a8:c6:32:4a:c2:d1:ed:c4:02:67:fd:26:
38:86:5a:9c:2e:83:48:4f:f7:ce:45:68:c2:66:a0:
33:15:3b:16:ec:8b:3a:71:44:44:25:2c:26:24:ef:
1b:b1:d7:91:1c:76:48:73:03:99:2b:90:9c:23:d2:
46:bb:f2:f3:c6:1e:8e:ce:13:a0:01:98:ef:a0:ee:
3d:71:1b:37:b4:a9:98:44:da:62:b5:3a:8a:ce:54:
5d:d9:e1:73:34:e7:70:77:2a:2d:c6:aa:63:76:ac:
19:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:5C:24:4D:0A:C3:01:64:DE:D4:18:79:2A:66:CF:F1:9F:4A:54:DC
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/21wkTQrDAWTe1Bh5KmbP8Z9KVNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.235.0/24
Signature Algorithm: sha256WithRSAEncryption
94:7c:f2:a1:96:15:03:e6:6c:9f:b9:76:70:dc:bb:a5:4c:f9:
21:1d:f8:51:70:92:6f:56:38:15:81:43:09:cb:ff:18:da:55:
24:92:3c:e0:d2:e5:71:2b:bc:6e:09:d1:d7:d3:7d:e5:eb:3b:
58:f4:0f:4a:b0:74:2f:c6:11:f4:26:73:0f:a5:58:6c:04:05:
02:38:89:11:a7:4e:de:b1:b5:f2:db:e2:da:0f:86:ae:9e:f1:
8b:30:77:52:24:b2:5c:78:90:7c:d1:4f:61:4c:64:25:e4:0f:
2f:43:6c:65:56:72:a9:a5:fd:b4:53:b0:c1:29:89:37:7e:a4:
f1:2b:3c:91:ff:56:a0:25:93:ba:cb:11:3e:25:da:4d:a1:ca:
5d:71:fa:6b:20:c8:a7:a4:b4:42:f1:cc:8e:77:75:23:bc:b1:
17:81:94:b0:c8:1d:af:fc:e7:b7:16:83:e3:27:c1:33:10:f5:
56:36:3b:56:a9:cc:1c:8c:83:dd:92:9c:da:3a:ca:ad:a1:4f:
c9:cc:94:46:12:cb:cc:18:d7:ed:4f:fd:12:1d:ca:ee:66:4f:
86:88:4f:bb:20:1a:6d:da:35:9f:b1:d5:12:d1:25:31:70:3b:
e4:92:40:d7:8e:e8:88:97:c7:36:02:5e:f6:69:6f:b5:e2:c8:
d8:55:10:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org