Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/1-1e0pse0-un1Jvqo3ksc6o67iPA.roa
File: 1-1e0pse0-un1Jvqo3ksc6o67iPA.roa (raw, json)
Hash identifier: Z4KN+HyMBxcw/7LZX/e5/F21DcqN6vZHe1n3u5n5aV8=
Subject key identifier: FB:57:B4:A6:C7:B4:FA:E9:F5:26:FA:A8:DE:4B:1C:EA:8E:BB:88:F0
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 4299E1F3
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/1-1e0pse0-un1Jvqo3ksc6o67iPA.roa
Signing time: Sat 01 Jan 2022 06:04:57 +0000
ROA not before: Sat 01 Jan 2022 06:04:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21403
IP address blocks: 46.61.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1117381107 (0x4299e1f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 1 06:04:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb57b4a6c7b4fae9f526faa8de4b1cea8ebb88f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:5c:a3:77:d1:b4:fb:a1:8a:08:ac:41:16:cc:
b6:35:33:ce:f4:e9:6a:56:ce:f6:73:97:1a:42:a6:
b6:ad:06:20:af:fc:d6:52:bf:b6:bd:65:96:e2:bb:
92:a0:f4:7e:1a:07:2b:cf:89:ac:f2:29:08:b9:11:
56:45:cf:f6:d3:ae:7e:7e:24:fb:cd:32:50:bb:ab:
73:b4:7f:f1:8d:4f:24:82:b6:a2:3c:51:2a:ad:89:
6f:13:86:5a:23:12:ef:47:fc:78:65:89:36:d4:c0:
eb:c8:b5:86:f9:68:e1:d3:64:f6:3f:af:23:4b:94:
5d:9f:a3:b1:3c:5e:74:65:6f:71:c2:0e:cd:be:22:
57:41:11:bc:b9:7a:68:6d:f3:ae:23:89:c7:4e:6b:
27:a9:28:e0:54:19:7a:b3:af:c4:5e:88:6b:e8:3f:
9e:84:20:65:bb:b9:eb:78:1d:dc:66:2b:91:c9:d6:
ff:89:26:7f:75:b6:b5:f1:52:16:f4:45:59:34:ae:
92:8a:41:72:78:03:10:dc:a4:c4:00:21:9c:9b:8a:
37:aa:2a:30:7c:17:26:32:6c:86:96:e4:c8:b3:b0:
e6:f8:38:e3:d3:67:55:ac:51:ee:80:f6:05:aa:92:
12:95:7f:f2:17:c2:42:bc:76:ee:e7:79:92:e8:bb:
cb:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:57:B4:A6:C7:B4:FA:E9:F5:26:FA:A8:DE:4B:1C:EA:8E:BB:88:F0
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/1-1e0pse0-un1Jvqo3ksc6o67iPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.61.137.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:39:62:ee:e4:b6:9f:ce:76:cf:ef:f7:2b:71:86:d1:9c:52:
b6:1a:ed:35:7b:05:2a:eb:fe:8e:41:92:d7:e6:4d:16:0c:ca:
12:be:cd:f0:d4:0c:ac:58:14:f3:68:6a:6d:68:00:6e:f9:2b:
23:56:a4:8c:e9:06:39:45:69:e6:26:12:73:ca:0a:fa:87:50:
b8:6b:b9:13:56:80:64:b3:41:38:ef:d3:bd:14:85:a8:df:76:
4d:07:27:91:63:2c:7f:b3:e0:8a:96:12:1b:3e:11:17:6c:fb:
ae:a5:ba:3f:ea:cb:d3:4e:60:c5:4a:af:2d:47:68:e7:5a:17:
ff:79:c4:b8:f3:ce:9e:ac:ca:69:bc:72:85:ef:16:21:2a:b1:
00:16:ef:db:68:91:4c:b5:6a:15:f8:5c:db:e5:16:b2:a8:4b:
08:2c:f8:ea:fc:c1:41:57:c7:11:1a:c8:33:bf:5a:19:61:ce:
f4:37:c8:fc:e0:38:df:4e:a9:8d:fc:92:0e:92:99:e4:cb:1e:
0a:4f:be:23:fe:43:02:53:c2:b4:d0:dc:d6:e0:32:ce:f4:85:
28:de:ea:48:f1:ac:02:26:1d:81:4f:6c:40:56:99:e4:38:cb:
78:df:8a:c0:5e:64:d8:d9:2c:0f:ce:1a:cf:dc:f0:c9:30:8c:
27:be:0e:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:55 2024 by rpki-client on console-fra.rpki-client.org