Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/gh5PhCeIcgYFJW_XqSa51u9d96I.roa
File: gh5PhCeIcgYFJW_XqSa51u9d96I.roa (raw, json)
Hash identifier: ODGzFh6VO15HbBASO4fmfibBYM2YPPKAsnad2CueJcM=
Subject key identifier: 82:1E:4F:84:27:88:72:06:05:25:6F:D7:A9:26:B9:D6:EF:5D:F7:A2
Certificate issuer: /CN=6dfecfa0e6692595cfbea5266076e8e53efd9461
Certificate serial: A60AD4
Authority key identifier: 6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/gh5PhCeIcgYFJW_XqSa51u9d96I.roa
Signing time: Sun 06 Feb 2022 10:11:27 +0000
ROA not before: Sun 06 Feb 2022 10:11:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211882
IP address blocks: 46.231.240.0/23 maxlen: 24
2a0c:e303::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10881748 (0xa60ad4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dfecfa0e6692595cfbea5266076e8e53efd9461
Validity
Not Before: Feb 6 10:11:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=821e4f842788720605256fd7a926b9d6ef5df7a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8c:9c:c9:be:45:c8:2d:b0:82:0b:4c:99:e0:
90:07:ef:c3:90:47:a2:73:a2:1f:96:2e:9f:ae:b3:
2f:ab:06:f2:74:bd:39:1f:d5:42:2e:ab:b3:4c:95:
c4:67:c4:6e:2f:7b:6c:36:a1:3c:47:2e:97:28:70:
01:ae:c8:b5:55:55:81:13:76:5b:a0:51:f1:86:af:
4b:14:a6:a5:86:42:f1:69:b7:7e:99:60:e2:53:de:
7b:f9:5e:b5:be:50:8a:11:e8:a7:46:f7:a4:be:62:
a3:88:bd:0e:f6:6f:17:9a:2b:be:38:11:09:01:be:
69:a2:e8:09:4f:01:01:45:15:16:4e:cf:a9:16:73:
6d:19:b6:7b:e4:c2:0e:a1:b8:dc:c6:ed:ad:c2:cc:
41:ca:39:94:8d:33:00:7c:33:d5:c8:1f:c0:aa:da:
0b:cd:c0:ef:19:02:5d:c3:be:ce:a5:3a:d2:d8:79:
5d:28:b9:76:0d:67:00:46:80:57:e0:32:8b:09:dd:
7c:8b:4e:ff:0c:fb:a2:fb:30:65:4d:36:26:dc:1e:
1a:40:6c:b7:c3:f9:df:88:b8:6c:e1:51:e5:0c:f6:
6c:b3:9c:cc:47:55:cf:ef:d2:67:d0:c0:f0:b5:61:
b0:26:3f:1c:49:76:00:4c:ea:1d:31:aa:01:52:9c:
11:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:1E:4F:84:27:88:72:06:05:25:6F:D7:A9:26:B9:D6:EF:5D:F7:A2
X509v3 Authority Key Identifier:
keyid:6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/gh5PhCeIcgYFJW_XqSa51u9d96I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.231.240.0/23
IPv6:
2a0c:e303::/32
Signature Algorithm: sha256WithRSAEncryption
1f:e1:cd:02:04:b0:21:02:51:15:c0:eb:7e:8b:d6:a8:ba:75:
7a:2b:cd:b1:33:70:38:7e:f7:8e:50:21:ff:19:9c:9f:db:d4:
7a:21:11:06:85:9a:96:cc:8a:fd:a7:38:9e:d5:f5:a9:6f:9e:
29:17:3f:9e:d8:67:7c:42:e0:16:07:7c:fc:fc:03:59:50:ca:
d9:0c:36:88:5c:15:de:3a:28:a4:63:13:bc:42:45:d6:37:16:
a8:d4:2b:55:50:87:7a:4b:42:8f:15:db:04:58:0f:5c:a6:d6:
55:fb:11:8f:87:72:44:74:03:29:10:d5:68:2b:99:d9:13:68:
14:22:cf:13:12:f3:54:c0:ce:82:83:b4:fe:8d:fe:a9:f2:34:
92:b6:c8:93:19:ff:17:d0:63:ef:db:a7:09:03:b8:e2:30:e9:
37:d6:0d:86:b0:99:b8:04:2b:dc:a6:f1:a1:3f:80:ad:12:1a:
83:7a:9f:28:15:89:ba:cd:bb:a9:32:80:43:7e:a1:96:aa:6f:
62:59:c1:3f:4a:ef:70:9c:2f:63:e7:b2:ea:65:53:50:68:57:
4c:00:13:50:ea:f8:94:f2:10:ac:19:00:28:7c:50:85:d2:03:
7c:6c:8d:fd:4f:81:ed:07:a6:4f:14:5c:38:3f:b9:f9:2d:f5:
ff:af:d1:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:09 2024 by rpki-client on console-ams.rpki-client.org