Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/3aabe0-9e5f-498d-b550-030acd3ae336/1/3rykVXIvG2X4LBIc3FSjsNpRgyk.roa
File: 3rykVXIvG2X4LBIc3FSjsNpRgyk.roa (raw, json)
Hash identifier: +7UmnrCZy8OTqvRMviYXJ9clWZXOdmBFXuMmMwtc2IU=
Subject key identifier: DE:BC:A4:55:72:2F:1B:65:F8:2C:12:1C:DC:54:A3:B0:DA:51:83:29
Certificate issuer: /CN=eed5b3af0064981e96bb5e27d8f04d86e6306cfa
Certificate serial: 04EE6318
Authority key identifier: EE:D5:B3:AF:00:64:98:1E:96:BB:5E:27:D8:F0:4D:86:E6:30:6C:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7tWzrwBkmB6Wu14n2PBNhuYwbPo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/3aabe0-9e5f-498d-b550-030acd3ae336/1/3rykVXIvG2X4LBIc3FSjsNpRgyk.roa
Signing time: Sat 01 Jan 2022 12:03:22 +0000
ROA not before: Sat 01 Jan 2022 12:03:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12561
IP address blocks: 46.31.8.0/22 maxlen: 22
46.31.8.0/21 maxlen: 21
46.31.12.0/22 maxlen: 22
2a02:4980::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82731800 (0x4ee6318)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eed5b3af0064981e96bb5e27d8f04d86e6306cfa
Validity
Not Before: Jan 1 12:03:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=debca455722f1b65f82c121cdc54a3b0da518329
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e8:7f:ea:34:ce:6c:6f:d3:6a:e1:a5:e6:b8:
1d:f1:e6:68:76:01:6f:40:be:6d:02:87:6e:f4:0d:
cf:95:db:69:bb:41:2e:4b:8c:e2:53:98:02:0d:fd:
09:a7:b9:ee:35:be:ab:69:6f:66:c8:e9:fd:0c:d5:
ef:c5:bd:bb:a6:d2:aa:79:b2:ec:c0:a4:7f:1e:a3:
2e:6a:18:90:4a:fa:ae:c3:96:d9:5d:8a:7b:06:6a:
6a:7f:fc:62:ed:c5:b5:d5:07:fc:09:b3:a7:6d:c1:
94:5f:11:2f:7d:01:08:c5:b2:2d:44:02:20:15:43:
56:a7:80:8c:52:89:aa:85:df:aa:76:53:63:97:92:
51:4d:5b:f7:33:f9:a9:0c:6c:12:35:c0:73:e6:1a:
cd:f7:bb:04:bf:47:c1:c9:fc:27:fa:94:3a:03:80:
12:30:9d:1e:f5:a5:db:7e:8e:41:64:34:90:2a:17:
4f:92:c2:93:81:99:8a:d0:ab:60:08:1d:a7:ee:e9:
5d:24:bb:67:04:cc:56:e1:47:3a:30:c2:47:2e:09:
b4:30:8b:f4:aa:e2:80:dc:fa:c4:6b:6b:cd:c5:1b:
f5:a5:25:3c:1c:fc:0c:99:ac:31:a6:0f:e5:42:34:
14:32:3f:5c:83:15:68:4f:21:a4:fd:50:01:20:2c:
b3:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:BC:A4:55:72:2F:1B:65:F8:2C:12:1C:DC:54:A3:B0:DA:51:83:29
X509v3 Authority Key Identifier:
keyid:EE:D5:B3:AF:00:64:98:1E:96:BB:5E:27:D8:F0:4D:86:E6:30:6C:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7tWzrwBkmB6Wu14n2PBNhuYwbPo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3aabe0-9e5f-498d-b550-030acd3ae336/1/3rykVXIvG2X4LBIc3FSjsNpRgyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3aabe0-9e5f-498d-b550-030acd3ae336/1/7tWzrwBkmB6Wu14n2PBNhuYwbPo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.8.0/21
IPv6:
2a02:4980::/32
Signature Algorithm: sha256WithRSAEncryption
26:8c:a4:52:a3:22:99:fc:05:b6:57:09:3c:c9:4c:13:0a:09:
dc:16:06:2e:70:a1:2a:41:53:6b:28:be:92:e2:ec:43:f6:bf:
1e:76:40:45:be:c4:09:8d:e3:09:34:3d:d0:45:db:12:16:40:
0b:74:30:6d:b5:d5:41:73:40:c7:a5:ea:53:22:15:de:95:99:
d0:71:82:5c:35:9a:38:62:4f:c1:58:92:50:4a:53:c9:11:1a:
22:29:ad:92:16:98:e7:50:71:56:76:8f:a6:7e:5e:c1:52:89:
e0:8c:18:3e:7a:ec:5b:fc:c9:49:57:ef:23:7f:ef:00:51:24:
4e:f5:8f:9c:d2:7d:5c:1c:a0:aa:21:71:1f:a0:be:11:a6:86:
37:eb:b7:83:fe:db:a9:4e:c7:63:1f:60:c4:86:25:10:ea:fb:
52:15:71:cc:87:d0:6a:ee:31:bb:e0:ac:16:67:49:c2:f1:6a:
01:a9:7c:08:cc:63:bc:89:fc:c9:db:83:b5:97:b0:8c:73:d0:
fb:e6:11:58:4b:c2:b9:b4:4d:52:d4:4f:03:b0:ee:66:5c:28:
1b:c9:a5:80:27:02:c3:04:35:71:a2:06:3f:1c:d7:b4:22:c0:
c1:47:9a:3e:82:ca:b0:95:17:fc:04:6f:8f:1a:d0:f7:e3:c5:
3f:7f:2d:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:16 2023 by rpki-client on console-fra.rpki-client.org