Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/e413d8-d389-473e-b63a-204d76eee661/1/6xwF30xzFMbbLu9yqi7HGpgnvF0.roa
File: 6xwF30xzFMbbLu9yqi7HGpgnvF0.roa (raw, json)
Hash identifier: enHEyOj+2IR8vdcTgnKTZM22Gl5UcNe8Rx65d++Kiuo=
Subject key identifier: EB:1C:05:DF:4C:73:14:C6:DB:2E:EF:72:AA:2E:C7:1A:98:27:BC:5D
Certificate issuer: /CN=8095e0cc6e4a8de8acd3b07cce5ea0c040c47ff1
Certificate serial: 0970AAB4
Authority key identifier: 80:95:E0:CC:6E:4A:8D:E8:AC:D3:B0:7C:CE:5E:A0:C0:40:C4:7F:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gJXgzG5Kjeis07B8zl6gwEDEf_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/e413d8-d389-473e-b63a-204d76eee661/1/6xwF30xzFMbbLu9yqi7HGpgnvF0.roa
Signing time: Sat 01 Jan 2022 00:56:15 +0000
ROA not before: Sat 01 Jan 2022 00:56:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29686
IP address blocks: 46.243.74.0/23 maxlen: 24
46.243.73.0/24 maxlen: 24
46.243.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158378676 (0x970aab4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8095e0cc6e4a8de8acd3b07cce5ea0c040c47ff1
Validity
Not Before: Jan 1 00:56:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb1c05df4c7314c6db2eef72aa2ec71a9827bc5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d7:12:e8:3f:ed:70:b2:95:01:61:ab:26:1f:
e9:d8:a5:d1:72:fd:70:72:05:4b:ad:d0:70:a0:e1:
0f:0b:f7:7d:4f:2e:7e:48:72:e5:fe:f1:bb:26:3e:
47:62:01:0b:b3:65:75:58:46:7e:4f:ed:fe:f9:1c:
64:83:d2:54:50:a3:d0:0f:47:6a:2c:37:ad:af:8b:
19:86:ac:2e:5c:8a:f9:65:a5:61:6a:23:ce:bf:35:
a1:88:fc:95:0c:63:26:5e:45:b5:ce:8f:6f:16:9d:
40:2f:24:79:dd:a5:53:c0:ef:bd:4e:4e:19:91:9c:
a6:1f:2f:c8:6c:39:12:00:36:c0:7f:7b:e1:a6:cb:
ae:39:6e:4c:a3:8b:61:78:12:64:2f:1e:f7:00:cb:
f3:c2:04:6b:e8:8e:61:7a:0a:bb:10:b1:36:58:dd:
03:4e:4b:e5:41:7f:46:d2:a0:b0:0e:16:50:6b:ce:
57:7b:f9:97:57:52:de:d9:65:ae:27:13:50:9d:ad:
2f:a6:bc:76:6b:4e:17:f7:b4:1c:8a:06:52:ec:bf:
6a:4a:e0:66:7d:aa:d6:dd:c4:ef:8a:c9:a0:15:56:
94:0d:e0:05:3f:06:02:71:7d:74:f6:16:72:4c:e2:
74:43:26:7e:da:0b:11:be:30:ec:7e:5d:8d:6a:2d:
26:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:1C:05:DF:4C:73:14:C6:DB:2E:EF:72:AA:2E:C7:1A:98:27:BC:5D
X509v3 Authority Key Identifier:
keyid:80:95:E0:CC:6E:4A:8D:E8:AC:D3:B0:7C:CE:5E:A0:C0:40:C4:7F:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gJXgzG5Kjeis07B8zl6gwEDEf_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e413d8-d389-473e-b63a-204d76eee661/1/6xwF30xzFMbbLu9yqi7HGpgnvF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e413d8-d389-473e-b63a-204d76eee661/1/gJXgzG5Kjeis07B8zl6gwEDEf_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.243.72.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:d8:20:b1:20:31:10:fc:3d:b5:c4:64:cb:1a:f6:83:61:67:
87:bc:c6:e4:50:4d:52:c8:0f:b0:10:7d:26:cb:54:a2:7c:26:
00:ec:33:1d:99:35:8d:2e:8d:7f:10:df:08:cf:31:e0:2e:c9:
04:28:64:1f:39:ab:19:7c:ba:26:12:73:5f:d7:31:70:ef:31:
b8:1c:67:4d:e7:a8:38:8e:94:61:d4:a5:06:d9:c2:77:0d:16:
60:dd:d5:ff:17:8b:68:83:f2:ae:ae:bc:4b:71:2f:c8:67:18:
05:e1:e4:be:36:aa:fa:d7:b5:2b:0e:b9:2d:89:21:d4:37:ac:
82:d0:18:80:d6:73:1a:96:28:32:79:34:5d:91:37:61:cb:ab:
85:03:bf:bf:72:7d:94:70:a7:2b:58:7a:7d:e3:2d:9e:b3:59:
57:f1:04:be:f2:33:b0:27:3e:db:08:86:2a:52:d8:4a:ba:b1:
19:8a:1d:b8:dc:f7:3f:fd:de:a2:fc:93:e2:5e:4f:28:59:8d:
30:d9:ba:47:6c:75:7e:fd:8f:91:e4:24:07:06:3f:c2:e1:91:
a7:09:e1:c7:4a:bc:29:e5:17:dc:76:f4:8f:7f:38:32:f2:b0:
79:5d:32:94:3d:88:5d:d2:9b:9b:4e:31:c5:89:5f:e6:fb:9b:
df:49:79:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:59 2024 by rpki-client on console-fra.rpki-client.org