Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/3aabe0-9e5f-498d-b550-030acd3ae336/1/k-qgWu-5pRFnJDNEPA1C3cnQ8rk.roa
File: k-qgWu-5pRFnJDNEPA1C3cnQ8rk.roa (raw, json)
Hash identifier: 0gEReOzYZe4/IZlPKStBQh+GhJFI6SRHTJQ1IGMn+1g=
Subject key identifier: 93:EA:A0:5A:EF:B9:A5:11:67:24:33:44:3C:0D:42:DD:C9:D0:F2:B9
Certificate issuer: /CN=eed5b3af0064981e96bb5e27d8f04d86e6306cfa
Certificate serial: 04EEE675
Authority key identifier: EE:D5:B3:AF:00:64:98:1E:96:BB:5E:27:D8:F0:4D:86:E6:30:6C:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7tWzrwBkmB6Wu14n2PBNhuYwbPo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/3aabe0-9e5f-498d-b550-030acd3ae336/1/k-qgWu-5pRFnJDNEPA1C3cnQ8rk.roa
Signing time: Sat 01 Jan 2022 12:03:23 +0000
ROA not before: Sat 01 Jan 2022 12:03:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198089
IP address blocks: 46.31.8.0/22 maxlen: 22
46.31.8.0/21 maxlen: 21
46.31.12.0/22 maxlen: 22
2a02:4980::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82765429 (0x4eee675)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eed5b3af0064981e96bb5e27d8f04d86e6306cfa
Validity
Not Before: Jan 1 12:03:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93eaa05aefb9a511672433443c0d42ddc9d0f2b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:d9:60:84:d6:a2:e0:af:18:f8:cb:dc:ac:d0:
7e:20:04:a9:d4:be:44:0c:3a:bb:ce:b0:c5:a4:a6:
8f:75:79:db:8d:75:44:80:44:1c:79:c1:30:0f:47:
a5:22:87:17:97:dd:9d:cd:0d:4c:de:1c:32:9c:cf:
c5:9b:1f:17:58:ea:f0:63:6d:1d:de:bd:0e:54:07:
33:de:e6:64:e2:18:9d:a0:f3:93:7a:4d:90:ee:52:
5b:6a:4b:99:24:54:5d:69:6a:bf:69:9d:e8:84:dd:
5a:0d:40:c2:67:45:ff:40:eb:3d:95:64:01:97:5d:
4f:73:44:a8:fd:d9:8a:ed:07:50:b1:5d:8a:44:49:
ea:29:aa:69:61:96:ca:89:35:07:b0:07:92:48:f8:
75:86:83:4c:18:dd:52:92:e1:03:31:c6:d0:72:de:
84:91:51:b3:62:d9:33:fc:e3:7e:c2:4f:8a:eb:3f:
d1:29:0c:f0:75:7b:e0:10:8c:f7:ca:57:bd:90:00:
f0:b1:56:d8:0f:a6:80:59:97:24:d1:70:f3:d8:8f:
82:39:70:1f:45:34:b9:89:c7:26:db:57:2e:b8:a0:
6c:2e:79:a3:49:33:dd:c0:da:b8:bb:d4:50:69:61:
5d:9c:47:e8:37:60:41:cc:d8:dc:3d:1c:39:6a:c7:
ff:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:EA:A0:5A:EF:B9:A5:11:67:24:33:44:3C:0D:42:DD:C9:D0:F2:B9
X509v3 Authority Key Identifier:
keyid:EE:D5:B3:AF:00:64:98:1E:96:BB:5E:27:D8:F0:4D:86:E6:30:6C:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7tWzrwBkmB6Wu14n2PBNhuYwbPo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3aabe0-9e5f-498d-b550-030acd3ae336/1/k-qgWu-5pRFnJDNEPA1C3cnQ8rk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3aabe0-9e5f-498d-b550-030acd3ae336/1/7tWzrwBkmB6Wu14n2PBNhuYwbPo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.8.0/21
IPv6:
2a02:4980::/32
Signature Algorithm: sha256WithRSAEncryption
81:40:77:43:5b:d2:2f:8c:d2:7e:93:e0:59:97:6e:a5:bb:51:
d7:aa:ab:b8:90:06:3f:3a:fe:9d:e1:3b:4f:11:c0:53:b0:da:
5a:94:af:56:3e:95:5f:9e:ed:25:13:7a:3e:55:54:a4:7c:c7:
f3:a6:1b:6c:c5:63:a2:1f:14:79:3e:fe:26:ed:46:21:6a:84:
a5:f0:23:91:85:f0:29:6e:71:c0:bf:9c:d1:ff:ef:cc:b6:b9:
3d:61:94:02:1a:e7:b3:43:a0:0f:77:56:f3:f8:8a:b3:81:4d:
b3:5e:cf:3a:97:03:5a:3e:6b:ba:46:2b:84:b5:e2:ad:09:47:
ff:ca:f4:3c:87:48:87:90:5a:f1:37:67:9c:73:6d:0f:e0:a4:
3c:91:f9:a5:da:59:37:6e:82:1e:0e:57:9a:34:4c:56:20:6d:
64:65:7c:00:0b:44:8c:37:b0:d2:48:2d:eb:62:1a:5f:d6:54:
66:5d:d1:a7:17:01:41:0f:58:9a:08:42:6e:25:ae:df:77:f5:
94:bf:81:98:f6:04:98:9e:00:9f:55:6b:07:ef:51:85:12:7c:
39:01:cf:35:c9:a0:b7:6b:53:d0:57:e1:22:ca:4c:0a:00:60:
09:de:a8:d6:ae:1e:52:61:4c:35:25:46:2e:8b:3e:70:9a:9b:
ee:30:b6:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:16 2023 by rpki-client on console-fra.rpki-client.org