Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/Dp7mpicgKO0HW2vddX8X9e3lASc.roa
File: Dp7mpicgKO0HW2vddX8X9e3lASc.roa (raw, json)
Hash identifier: AYXRxw2hpqFxNGyrBUd/O/6enT4CwOgrUSxep1bcYkY=
Subject key identifier: 0E:9E:E6:A6:27:20:28:ED:07:5B:6B:DD:75:7F:17:F5:ED:E5:01:27
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 429B4E83
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/Dp7mpicgKO0HW2vddX8X9e3lASc.roa
Signing time: Sat 01 Jan 2022 06:04:57 +0000
ROA not before: Sat 01 Jan 2022 06:04:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21487
IP address blocks: 46.48.128.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1117474435 (0x429b4e83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 1 06:04:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e9ee6a6272028ed075b6bdd757f17f5ede50127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a8:90:42:32:b3:91:db:e7:88:65:f9:6e:2f:
b2:84:e6:e2:ed:6f:b6:90:7a:90:23:88:43:ce:76:
67:55:20:8f:47:a0:39:91:5b:13:ae:11:be:49:d3:
45:7f:a6:b1:e9:0d:a5:39:25:ab:11:b6:8f:07:60:
c6:14:3c:93:c2:0b:b2:f2:6d:50:6e:1f:43:a7:83:
57:a9:62:30:5a:b9:df:24:04:d1:07:12:87:37:6b:
b0:eb:05:b4:fd:73:82:93:ac:02:e1:d5:84:f4:f6:
5f:1f:2e:cf:07:d6:df:ce:8b:45:40:60:7f:09:c9:
f2:f9:40:68:a3:f2:1c:49:e7:14:e7:5b:83:b1:55:
f2:9b:a0:fd:e7:86:38:9b:e4:1b:62:14:3e:16:2c:
48:73:6d:2b:40:92:24:f1:fa:d3:94:da:09:c8:ca:
1d:33:81:0f:99:00:be:58:67:75:a2:fa:a2:5d:be:
60:10:fc:e3:39:2d:74:c7:25:31:a5:ed:7a:9e:5a:
62:1e:57:38:9a:e5:08:fa:52:69:ba:68:14:bb:4c:
e3:18:f9:fb:09:55:14:10:e7:f9:b4:d8:ab:f7:6b:
fe:12:eb:f3:f9:66:42:7f:d7:8c:a1:94:68:fb:48:
38:1a:46:1d:13:7c:f6:a2:b1:aa:db:e0:10:da:96:
2f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:9E:E6:A6:27:20:28:ED:07:5B:6B:DD:75:7F:17:F5:ED:E5:01:27
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/Dp7mpicgKO0HW2vddX8X9e3lASc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.48.128.0/20
Signature Algorithm: sha256WithRSAEncryption
14:e8:10:16:18:74:5d:a2:68:d9:5a:ea:60:6b:2a:36:a2:9a:
fa:2c:c8:0e:95:88:ee:9c:d4:45:2c:09:65:92:04:4c:e2:a4:
ba:e5:5d:29:cc:ec:e3:4b:b6:fc:b1:5a:0f:19:83:91:c3:78:
50:97:2d:ca:0d:ec:b6:68:ed:31:ce:01:74:3e:c9:0c:5b:e1:
5e:d6:9a:d6:b0:df:95:96:e0:29:34:e6:63:8a:69:22:8a:b5:
6b:7e:e2:0b:89:21:87:6d:ad:78:02:68:68:ca:ff:ce:28:b3:
93:2d:55:95:d5:fc:ba:38:dc:0f:68:3f:d0:64:c7:f1:33:d0:
5c:63:de:90:4b:3b:84:24:09:e3:ab:96:9b:e0:f8:23:5a:02:
84:9f:7e:b4:4d:f9:df:7d:20:0d:a6:f4:f0:9c:9b:b3:e3:bb:
de:9a:06:34:e0:a0:3c:e0:31:18:42:e2:2b:f0:a0:c8:64:20:
a2:94:c4:51:ac:8d:9c:47:4e:0c:fe:06:f8:14:57:0d:c0:21:
fc:bb:ce:fe:e8:3e:fc:cd:77:c2:09:e0:1b:40:1f:eb:56:b9:
fd:95:2a:b5:0d:81:f1:cf:c0:c9:96:27:49:93:28:1c:11:c4:
93:1b:0b:29:7a:45:a8:f4:3f:97:e9:99:67:0c:b5:eb:d4:ad:
d6:7f:f9:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:55 2024 by rpki-client on console-fra.rpki-client.org