Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/b67953-3ce3-4afe-9d7e-1ed620452509/1/a1IVOTFAuk8np_4B3HNfGEeII84.roa
File: a1IVOTFAuk8np_4B3HNfGEeII84.roa (raw, json)
Hash identifier: ecSJGkNmHSqSAull09hY4lwdOVOKsm4unvj1mQQo3vE=
Subject key identifier: 6B:52:15:39:31:40:BA:4F:27:A7:FE:01:DC:73:5F:18:47:88:23:CE
Certificate issuer: /CN=27f0b737715114ded20f68ef0347d9f752a0e0b7
Certificate serial: 304E8118
Authority key identifier: 27:F0:B7:37:71:51:14:DE:D2:0F:68:EF:03:47:D9:F7:52:A0:E0:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J_C3N3FRFN7SD2jvA0fZ91Kg4Lc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/b67953-3ce3-4afe-9d7e-1ed620452509/1/a1IVOTFAuk8np_4B3HNfGEeII84.roa
Signing time: Sat 01 Jan 2022 01:59:20 +0000
ROA not before: Sat 01 Jan 2022 01:59:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34841
IP address blocks: 46.252.48.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 810451224 (0x304e8118)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27f0b737715114ded20f68ef0347d9f752a0e0b7
Validity
Not Before: Jan 1 01:59:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b5215393140ba4f27a7fe01dc735f18478823ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4c:9d:12:b2:70:66:83:33:16:c2:f7:16:f1:
4d:97:20:a0:b6:4c:50:c8:0f:3b:5d:91:8b:32:ac:
38:cf:98:c9:d7:03:df:7c:39:7a:57:e7:18:82:6f:
1e:38:b7:8e:d4:bd:e8:38:b4:4d:db:bf:c7:8c:76:
cf:01:4b:ae:56:e3:48:64:33:8c:b5:b2:46:f4:fa:
6f:bb:cb:9e:9d:32:6e:57:96:57:9e:80:f9:dc:20:
93:4c:d3:2b:ee:ab:e8:e6:bf:ad:27:54:30:d0:4e:
cb:32:28:60:73:2a:30:49:fd:38:d7:99:ea:69:24:
7b:40:95:99:dd:d5:b8:3d:58:ec:d0:18:08:7a:6d:
db:95:83:4a:dd:05:b0:54:37:5e:68:33:68:ea:2a:
af:d0:1f:ed:c6:44:20:0a:de:33:e5:2a:79:f7:54:
fb:40:af:72:e5:0d:e0:50:83:6f:26:62:88:db:b0:
1a:59:36:b2:c3:89:4c:a7:56:86:53:f3:e0:ee:f9:
d1:36:70:02:0b:52:19:0c:82:79:91:27:81:80:82:
16:b4:40:73:1d:3f:d7:70:fc:c7:97:9e:97:6d:af:
1c:c4:c5:52:2a:68:3e:6d:08:d4:ef:c7:28:31:55:
47:12:10:ea:9e:46:88:8b:29:ec:5c:8f:6a:26:f8:
a3:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:52:15:39:31:40:BA:4F:27:A7:FE:01:DC:73:5F:18:47:88:23:CE
X509v3 Authority Key Identifier:
keyid:27:F0:B7:37:71:51:14:DE:D2:0F:68:EF:03:47:D9:F7:52:A0:E0:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J_C3N3FRFN7SD2jvA0fZ91Kg4Lc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/b67953-3ce3-4afe-9d7e-1ed620452509/1/a1IVOTFAuk8np_4B3HNfGEeII84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/b67953-3ce3-4afe-9d7e-1ed620452509/1/J_C3N3FRFN7SD2jvA0fZ91Kg4Lc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.252.48.0/20
Signature Algorithm: sha256WithRSAEncryption
49:71:06:e2:0c:8a:af:aa:85:78:9f:6d:89:6a:60:d7:dc:29:
62:57:bb:70:08:fe:0d:b0:45:3b:af:41:8c:7d:d7:e4:cc:cf:
29:93:00:1a:78:ff:88:2a:72:1e:d4:d4:0d:47:87:d2:37:cb:
b1:7d:b8:6d:96:76:5b:c2:68:03:36:e9:58:93:0d:e5:47:c0:
2b:96:7f:5d:3f:f4:9c:32:f0:bc:2a:b7:8e:02:49:95:cb:31:
12:32:d8:06:19:50:54:c5:99:e2:6e:0a:e1:26:3d:bc:0f:1e:
08:6a:b8:eb:3f:8d:50:69:16:1c:5e:50:dd:b3:eb:5e:3d:d3:
e9:c4:25:09:46:45:0e:97:2a:cd:eb:04:0c:e2:29:4a:16:d7:
c0:75:b5:96:fe:54:cd:c2:a9:ff:50:40:24:ff:0d:fb:5d:20:
64:28:6c:71:40:49:0e:4b:0a:16:7b:d6:ff:ad:7b:b9:23:1e:
9c:8c:f8:3c:1c:68:76:fc:a8:68:cb:34:10:c7:b2:a4:34:79:
62:9a:78:4e:78:8c:3c:21:46:e2:bb:f7:41:63:35:a7:a2:a7:
29:98:26:ae:86:c2:d5:d3:d2:14:9b:fb:94:02:c6:f8:0d:70:
69:65:2e:65:29:d7:5e:26:9f:6e:49:a2:64:dd:3d:3b:f9:f0:
c4:58:ee:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:24 2024 by rpki-client on console-ams.rpki-client.org