Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/ca17f7-c593-474d-8cf0-538b47709956/1/Eompm3QmVr15tO4o35Hh7rBbI-I.roa
File: Eompm3QmVr15tO4o35Hh7rBbI-I.roa (raw, json)
Hash identifier: XFWmg7wXQAvL8S8YhW2vwt5cpt5tCeT0Iw41aLU1EDg=
Subject key identifier: 12:89:A9:9B:74:26:56:BD:79:B4:EE:28:DF:91:E1:EE:B0:5B:23:E2
Certificate issuer: /CN=7078e75635a09dcc03f625a80bfa552b22e3662c
Certificate serial: 01851020F6B609C97B2CF600EFB2983CBEAA
Authority key identifier: 70:78:E7:56:35:A0:9D:CC:03:F6:25:A8:0B:FA:55:2B:22:E3:66:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHjnVjWgncwD9iWoC_pVKyLjZiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/ca17f7-c593-474d-8cf0-538b47709956/1/Eompm3QmVr15tO4o35Hh7rBbI-I.roa
Signing time: Wed 14 Dec 2022 10:14:33 +0000
ROA not before: Wed 14 Dec 2022 10:14:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16019
IP address blocks: 46.174.16.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:10:20:f6:b6:09:c9:7b:2c:f6:00:ef:b2:98:3c:be:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7078e75635a09dcc03f625a80bfa552b22e3662c
Validity
Not Before: Dec 14 10:14:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1289a99b742656bd79b4ee28df91e1eeb05b23e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7c:08:d8:82:83:53:9e:dc:f6:99:15:cf:7c:
c4:a9:54:03:db:b2:aa:27:43:f2:9e:96:5f:c4:a0:
0b:69:d3:c8:9d:69:4e:f1:de:0d:17:37:d4:86:01:
01:9f:81:8d:58:d9:65:12:0f:3c:05:79:a1:6d:d5:
a1:02:f5:e2:ea:81:3c:7c:94:e5:8f:1d:b0:87:75:
a8:3f:c0:a6:4d:0f:2f:5b:c7:46:9c:e8:cc:c1:3e:
4d:15:55:e8:2e:0b:dd:e2:9e:8e:55:59:1a:f9:b0:
5b:6f:3c:73:f2:50:bf:48:70:72:57:89:ef:a4:6c:
0d:e2:0a:1c:5e:f1:14:63:99:bd:f0:98:e7:a7:2a:
0a:0a:a6:6f:d8:43:d4:a3:64:30:74:ff:22:67:d2:
e7:f7:22:ae:63:27:92:79:03:66:4f:a2:4c:8a:0a:
5e:c3:e2:81:52:c5:c7:c7:35:12:3d:d7:08:a0:fc:
84:4c:a2:f3:c4:a7:ed:96:71:a1:4a:62:59:21:84:
87:27:8f:3b:bf:0c:4d:a6:85:eb:e6:0c:01:9c:07:
9e:53:39:97:a4:89:7a:40:62:fe:79:99:0a:b4:59:
53:7b:27:fa:15:35:50:d5:91:03:16:f4:11:f7:f1:
03:c0:de:03:c7:1f:31:57:86:8b:d7:d0:e1:19:90:
f7:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:89:A9:9B:74:26:56:BD:79:B4:EE:28:DF:91:E1:EE:B0:5B:23:E2
X509v3 Authority Key Identifier:
keyid:70:78:E7:56:35:A0:9D:CC:03:F6:25:A8:0B:FA:55:2B:22:E3:66:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHjnVjWgncwD9iWoC_pVKyLjZiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/ca17f7-c593-474d-8cf0-538b47709956/1/Eompm3QmVr15tO4o35Hh7rBbI-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/ca17f7-c593-474d-8cf0-538b47709956/1/cHjnVjWgncwD9iWoC_pVKyLjZiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.174.16.0/21
Signature Algorithm: sha256WithRSAEncryption
20:ce:77:8e:f5:a2:d8:d2:b9:f7:04:72:1b:f8:d8:fc:9f:f9:
77:d1:d7:f1:f2:9b:be:2d:03:2b:30:ab:4e:b9:ed:d2:0e:b8:
76:37:4e:b6:2e:8a:0a:6d:98:0d:b3:af:53:85:34:e0:c0:94:
71:76:fc:7f:e2:07:c1:3d:99:43:86:1d:de:11:7d:52:81:e5:
2b:a7:ef:4a:55:25:7c:5d:90:64:84:e5:7f:66:fb:3e:d3:b2:
2e:ba:2b:eb:b2:27:0b:ea:16:60:6f:24:70:2e:ea:70:d8:85:
19:79:ad:6e:0f:36:30:d8:ab:4f:32:97:4f:9e:e5:bb:ea:31:
ac:ae:17:ea:b1:b3:4d:38:b1:58:ba:ed:7f:40:f7:d3:15:24:
9e:0a:c6:99:74:5c:c7:e4:3a:74:c2:4e:fc:a4:02:04:5c:7e:
86:ef:c4:fc:db:d5:53:18:45:fc:17:2a:ed:3a:80:09:54:c0:
42:11:3a:fb:5b:cd:0d:5d:2d:8c:de:56:68:3a:17:8a:7a:1a:
b6:09:2c:8b:b0:2a:37:fa:50:8f:bf:64:4a:7a:4a:f7:86:45:
3f:bf:2d:18:5f:59:a2:93:fe:18:38:dc:57:62:50:0b:26:88:
f0:cb:eb:df:ff:7b:51:65:8a:48:bb:c8:9a:1b:8b:9d:8c:31:
31:ee:b1:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:21 2024 by rpki-client on console-ams.rpki-client.org