Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/a7J34HvXAy3VDiWbL-qlWKlm8_U.roa
File: a7J34HvXAy3VDiWbL-qlWKlm8_U.roa (raw, json)
Hash identifier: DYpB5LsaMVnGM2pjucq83Pnfr686hOzl4dRsq71Zukc=
Subject key identifier: 6B:B2:77:E0:7B:D7:03:2D:D5:0E:25:9B:2F:EA:A5:58:A9:66:F3:F5
Certificate issuer: /CN=3556e7fb5772f979edd5e5c5aa63eb2b9c0ddc8e
Certificate serial: 1AB6186A
Authority key identifier: 35:56:E7:FB:57:72:F9:79:ED:D5:E5:C5:AA:63:EB:2B:9C:0D:DC:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/a7J34HvXAy3VDiWbL-qlWKlm8_U.roa
Signing time: Sat 01 Jan 2022 06:03:42 +0000
ROA not before: Sat 01 Jan 2022 06:03:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 46.31.79.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 448141418 (0x1ab6186a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3556e7fb5772f979edd5e5c5aa63eb2b9c0ddc8e
Validity
Not Before: Jan 1 06:03:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6bb277e07bd7032dd50e259b2feaa558a966f3f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ca:14:fb:95:ff:13:d7:3b:72:8b:4f:f3:da:
40:db:7a:96:5d:49:8c:7d:db:ec:20:da:e9:b7:74:
e3:9b:6a:66:1b:e6:fa:9a:4f:07:78:56:5b:7c:2f:
71:06:f3:bb:1f:49:59:84:79:ad:a9:d7:85:e8:e8:
b8:cc:36:c7:99:d6:bd:41:73:d2:35:21:87:3e:ac:
7d:56:e4:14:d7:62:6a:87:58:c7:ca:35:23:2c:5c:
ca:01:72:0d:69:c1:7d:be:aa:5d:e3:3e:42:cc:32:
ff:14:50:57:c9:1f:37:a3:8c:38:78:6a:6c:78:8f:
9b:fb:54:a8:1d:8c:65:81:ba:d8:83:a7:db:3a:30:
5b:46:ff:3f:d7:67:56:e8:25:88:26:26:ec:28:cc:
57:ac:80:7b:4e:7d:2b:35:dd:28:29:f8:a2:72:88:
69:9f:38:fa:6d:12:f6:ff:cd:4d:4c:ec:30:eb:2a:
1a:c6:e3:f6:dc:22:c6:94:5b:d6:0d:d2:ff:9c:a3:
25:88:bf:c6:97:17:e3:87:67:f4:38:bf:25:1d:2a:
ff:c9:4d:b0:29:b7:e8:02:52:b4:c3:aa:a9:6b:c1:
4b:97:cc:b4:ec:8e:00:ba:f1:58:17:0f:f9:f7:2b:
84:fa:e5:00:d2:00:6c:14:26:95:d0:35:d4:16:41:
88:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:B2:77:E0:7B:D7:03:2D:D5:0E:25:9B:2F:EA:A5:58:A9:66:F3:F5
X509v3 Authority Key Identifier:
keyid:35:56:E7:FB:57:72:F9:79:ED:D5:E5:C5:AA:63:EB:2B:9C:0D:DC:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/a7J34HvXAy3VDiWbL-qlWKlm8_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.79.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:f1:67:47:ab:54:25:65:24:c8:b6:0e:ae:9d:02:ab:eb:fa:
27:d5:78:30:1a:5a:ca:8f:a9:91:8b:0e:b6:fa:ea:5a:60:71:
67:b3:7c:aa:b8:76:51:ba:b7:b6:27:f3:44:b2:e4:6d:85:a5:
c6:4d:1b:02:31:9d:a2:a6:51:22:3a:2c:de:e8:d3:d3:71:9a:
a4:09:55:65:9c:80:61:40:af:eb:59:a1:15:43:e7:51:75:fe:
d5:26:34:fc:81:1f:38:0d:a5:26:c3:28:d5:25:76:d9:95:76:
99:a7:36:a6:40:79:4d:1e:b2:e7:2f:0e:ab:12:05:89:74:39:
aa:c6:56:b1:2e:a4:c5:b4:5c:27:3b:7a:7d:c6:79:88:61:93:
00:cc:9d:ce:0f:f4:d5:82:02:cf:35:d2:e7:fa:7d:d1:ad:0e:
53:ba:e8:45:be:a5:8e:ed:3a:93:ad:f2:37:c0:40:cd:fd:b2:
bf:6d:ad:29:0d:91:75:4a:e2:01:1d:5f:84:6b:3a:ea:7f:da:
1c:1a:cf:30:8d:14:50:e4:d4:e3:1a:a2:fe:90:79:62:d3:bd:
66:c3:1f:a1:76:c9:43:76:5e:74:73:3c:a4:59:b5:27:94:21:
ab:ca:e4:d7:2d:b5:45:2b:78:d0:76:19:09:7d:0b:bf:01:9c:
6b:36:2a:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:05 2024 by rpki-client on console-fra.rpki-client.org