Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/cIB9R5wsYF6NTYTUMdvB0J9C7WU.roa
File: cIB9R5wsYF6NTYTUMdvB0J9C7WU.roa (raw, json)
Hash identifier: O09gkGiJXVxVZfkFWOw8ByHVfW/YzeAov250n2p3J5w=
Subject key identifier: 70:80:7D:47:9C:2C:60:5E:8D:4D:84:D4:31:DB:C1:D0:9F:42:ED:65
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 19965281
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/cIB9R5wsYF6NTYTUMdvB0J9C7WU.roa
Signing time: Sat 04 Jun 2022 10:02:20 +0000
ROA not before: Sat 04 Jun 2022 10:02:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198202
IP address blocks: 46.249.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 429281921 (0x19965281)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jun 4 10:02:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70807d479c2c605e8d4d84d431dbc1d09f42ed65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e3:2d:6d:32:57:3e:cc:56:54:73:e6:b2:9b:
41:fc:01:ad:01:3e:65:f5:c5:6c:a0:d6:e4:0f:5d:
34:eb:cf:04:5f:9b:3f:df:dd:d4:04:17:3d:0a:1f:
47:9e:4a:53:cc:79:2b:00:fc:b6:36:a1:09:7d:14:
1b:5d:89:1e:2c:67:4f:28:0f:b1:cd:96:88:e9:a8:
4e:61:0b:0d:fd:35:a7:29:af:e7:de:e8:90:b5:9c:
e0:46:12:ac:e3:58:c0:65:df:52:36:78:8e:ef:cb:
4f:b7:6c:cf:50:82:64:e4:19:1c:ec:d1:fb:23:f0:
fa:a1:39:44:5e:67:50:bb:b4:ca:60:85:ff:e2:87:
c6:95:7e:ab:a2:f1:f7:49:f0:fd:87:28:8e:58:f8:
2d:6c:86:d5:39:4f:41:a0:88:b9:10:c1:27:ba:2c:
4f:8a:25:87:84:24:c9:fd:c7:44:67:f8:72:bc:f2:
e2:3a:79:93:de:0f:2e:ae:16:9b:a8:85:4c:db:04:
16:e3:7d:34:1d:5a:76:ab:1b:b1:b3:24:14:92:87:
7b:a5:6d:70:e6:2e:59:1b:24:61:43:31:a9:09:95:
50:e3:a8:a6:f4:d5:7b:78:35:a7:b1:71:81:bb:2a:
c2:bc:2f:dd:63:e7:25:2f:18:12:57:5a:c7:7c:04:
91:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:80:7D:47:9C:2C:60:5E:8D:4D:84:D4:31:DB:C1:D0:9F:42:ED:65
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/cIB9R5wsYF6NTYTUMdvB0J9C7WU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.249.94.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:1b:60:66:c2:df:76:76:de:19:fa:78:78:ca:c1:12:c6:11:
cc:f6:14:de:8c:be:93:df:dc:c8:f4:15:4d:e0:b5:3c:75:bc:
48:77:c3:2f:98:3b:ff:48:59:95:d6:84:20:7e:f9:2f:82:99:
d0:22:bc:e6:71:93:64:ba:87:dd:d4:8a:72:8a:a4:c7:cb:b6:
3a:b3:73:d4:45:14:b0:ae:fc:7c:ea:c3:e0:25:29:a0:23:66:
d1:f5:e2:4a:8c:6d:79:25:2c:71:42:f0:50:57:20:c1:e5:a0:
9d:f0:1e:c7:c2:f7:aa:4b:be:e2:e7:df:d1:21:0b:8f:33:7b:
87:f5:56:24:e6:3f:30:5f:13:a9:cf:fd:7e:33:be:01:20:b0:
3f:a9:70:c7:0c:44:f4:57:02:39:63:dd:bf:5b:ac:ec:a7:45:
0e:11:00:fa:b0:40:4f:b2:63:00:84:00:b1:ca:15:cf:fc:9f:
ca:38:6f:2e:5c:a4:de:ce:95:3c:9b:da:af:29:6d:05:bb:17:
49:61:a1:ee:eb:64:19:e8:d8:17:f4:f1:61:e1:60:e0:94:57:
ec:a5:c6:24:13:3b:52:90:3d:86:f9:e7:cf:4d:65:f9:77:28:
e6:f8:64:c9:92:c4:f6:49:96:a9:46:ea:3e:d3:8f:50:fb:73:
af:81:4e:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org