Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/9QA3-mDvqvShTlwoww9w56_dAzM.roa
File: 9QA3-mDvqvShTlwoww9w56_dAzM.roa (raw, json)
Hash identifier: FLmkV3YGMfQ4zuUV77hBID9IZBnWgJWmZ5maimNJVX4=
Subject key identifier: F5:00:37:FA:60:EF:AA:F4:A1:4E:5C:28:C3:0F:70:E7:AF:DD:03:33
Certificate issuer: /CN=3556e7fb5772f979edd5e5c5aa63eb2b9c0ddc8e
Certificate serial: 1C3278FC
Authority key identifier: 35:56:E7:FB:57:72:F9:79:ED:D5:E5:C5:AA:63:EB:2B:9C:0D:DC:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/9QA3-mDvqvShTlwoww9w56_dAzM.roa
Signing time: Sat 11 Jun 2022 17:26:03 +0000
ROA not before: Sat 11 Jun 2022 17:26:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 46.31.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 473069820 (0x1c3278fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3556e7fb5772f979edd5e5c5aa63eb2b9c0ddc8e
Validity
Not Before: Jun 11 17:26:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f50037fa60efaaf4a14e5c28c30f70e7afdd0333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:79:46:70:4b:51:32:67:e5:d2:34:b4:98:7d:
13:90:36:d0:96:07:1c:c9:85:c3:c9:a8:cd:58:c0:
b5:39:bf:21:cd:a6:4d:6f:f3:c2:20:32:0d:c9:14:
07:d5:63:c4:d7:19:ac:3f:fa:95:6c:c8:7a:5f:f3:
99:16:21:6e:ea:ee:dd:85:0f:84:28:05:92:18:70:
74:d1:8f:a0:a4:77:ba:ef:f0:b7:ed:db:36:41:0f:
b9:13:c3:8f:49:2f:03:0d:44:c4:1e:25:bb:96:9f:
23:fd:ae:21:84:13:24:71:a3:d9:59:45:61:97:0d:
52:21:ce:ae:40:dd:2a:ae:a3:87:b9:e2:4b:1c:81:
59:fe:39:17:a1:ee:28:b1:ee:e3:9e:95:04:2c:54:
ce:11:b3:21:41:8c:5e:6b:c0:1c:03:a2:67:35:8f:
9f:59:9d:fe:2a:0a:32:75:a7:99:ec:08:4e:33:8d:
76:6f:05:0e:80:f0:a2:f3:b4:05:b8:45:de:e4:10:
86:0d:b1:8e:cc:ea:d4:72:f1:12:91:52:6d:63:40:
ce:5f:57:6f:a1:82:9d:85:27:5c:c1:22:78:ac:5e:
eb:52:ec:95:22:96:ff:9e:34:82:08:fb:dd:b7:6f:
12:dc:99:8c:1d:07:b3:2b:05:8a:2d:c8:4a:cc:0a:
da:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:00:37:FA:60:EF:AA:F4:A1:4E:5C:28:C3:0F:70:E7:AF:DD:03:33
X509v3 Authority Key Identifier:
keyid:35:56:E7:FB:57:72:F9:79:ED:D5:E5:C5:AA:63:EB:2B:9C:0D:DC:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/9QA3-mDvqvShTlwoww9w56_dAzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.78.0/24
Signature Algorithm: sha256WithRSAEncryption
25:bd:0e:81:7e:e9:e9:df:13:cd:22:0d:2d:c3:19:db:14:20:
04:a2:09:a2:d9:21:74:6b:4b:1f:82:fe:e4:ab:1d:81:c5:dc:
7a:79:93:c5:bd:34:6f:db:f4:1d:24:e0:d5:28:11:3e:c7:29:
71:1a:9a:6b:87:df:cf:bd:b3:37:83:81:dc:5e:76:dd:a2:42:
eb:43:99:a6:0c:71:ed:21:f8:9a:c2:a9:fb:2b:bf:99:60:e9:
70:44:a0:3f:68:94:64:53:b9:4c:66:8b:97:52:51:fe:73:4d:
19:dc:33:46:ab:22:af:a3:ba:90:33:92:0b:ce:8b:4c:04:b0:
1b:86:c5:0d:36:ea:95:34:08:f0:62:22:d6:8f:f4:09:93:76:
30:cc:f4:d7:fc:b6:fc:8f:f9:24:45:fe:72:b8:8d:6c:66:03:
da:d2:03:81:03:77:d8:b5:9b:be:63:11:e9:f5:b4:5a:49:b3:
0c:dd:f4:f4:41:b5:dc:38:e2:8d:e3:a8:c8:36:73:fe:13:a9:
24:48:b8:0c:a8:5c:2c:69:64:e2:3d:60:29:a5:05:88:a7:69:
11:fc:78:be:b1:d2:66:cd:7a:4f:56:d1:26:d3:e4:b0:d0:6b:
8b:85:d6:55:67:1c:c3:a0:ca:cb:f7:69:ac:b4:57:f5:a3:e1:
f5:53:20:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:46 2024 by rpki-client on console-ams.rpki-client.org