Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/ImrIL3U-ZyQMq7UaytOmPiZ66gQ.roa
File: ImrIL3U-ZyQMq7UaytOmPiZ66gQ.roa (raw, json)
Hash identifier: OGlZ5Plz6Hrykuwmqp+SOM+iY97qiQkeD5v0rvYbjKw=
Subject key identifier: 22:6A:C8:2F:75:3E:67:24:0C:AB:B5:1A:CA:D3:A6:3E:26:7A:EA:04
Certificate issuer: /CN=8e626c909eb4951154bcee8221e43951b4257624
Certificate serial: 018ACBC5DFC9061F27C3D3AD5F3952BBB177
Authority key identifier: 8E:62:6C:90:9E:B4:95:11:54:BC:EE:82:21:E4:39:51:B4:25:76:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jmJskJ60lRFUvO6CIeQ5UbQldiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/ImrIL3U-ZyQMq7UaytOmPiZ66gQ.roa
Signing time: Mon 25 Sep 2023 09:57:37 +0000
ROA not before: Mon 25 Sep 2023 09:57:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211043
IP address blocks: 46.244.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cb:c5:df:c9:06:1f:27:c3:d3:ad:5f:39:52:bb:b1:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e626c909eb4951154bcee8221e43951b4257624
Validity
Not Before: Sep 25 09:57:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=226ac82f753e67240cabb51acad3a63e267aea04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:4d:6f:79:53:97:f8:dc:94:2d:d6:59:6c:0f:
0a:97:60:a5:c7:03:36:c4:03:1d:ee:17:83:cb:24:
fd:9e:67:d8:65:32:84:fd:c0:7d:c3:91:f0:dd:69:
61:a1:66:fb:85:bc:e8:c2:32:db:cf:cd:27:49:28:
ae:47:dc:f0:84:bc:a6:01:f4:d9:2f:5c:27:31:ea:
7e:9e:6b:f8:69:1c:2a:23:1e:10:11:ae:55:77:40:
ba:c9:f9:07:31:04:90:9c:be:5c:5a:e0:eb:e5:b1:
44:08:dc:39:d5:fc:f7:e4:09:a2:20:0d:73:d7:c3:
39:ae:c1:d4:14:9d:7c:78:1e:6e:94:98:7b:a7:a3:
df:bd:a9:0a:0b:0c:07:d1:8e:8a:1f:a9:30:4b:26:
2a:3f:2d:76:c5:bc:3c:f7:5e:b1:10:64:3f:f6:82:
56:ac:68:c2:0d:12:1b:f4:2f:98:17:7e:60:df:89:
42:c4:77:09:fc:fd:8f:99:f9:3f:69:2e:a1:2b:b6:
07:58:bc:1a:2a:57:1f:c3:74:04:6c:90:3e:c6:8f:
2c:48:ea:74:37:2e:82:1c:10:69:f9:54:d7:76:e7:
f6:5c:de:5e:fc:7c:09:67:30:95:21:c1:d4:24:69:
ee:74:0d:3f:d4:6b:a8:3a:b8:89:f6:ae:73:0d:93:
98:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:6A:C8:2F:75:3E:67:24:0C:AB:B5:1A:CA:D3:A6:3E:26:7A:EA:04
X509v3 Authority Key Identifier:
keyid:8E:62:6C:90:9E:B4:95:11:54:BC:EE:82:21:E4:39:51:B4:25:76:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jmJskJ60lRFUvO6CIeQ5UbQldiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/ImrIL3U-ZyQMq7UaytOmPiZ66gQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/jmJskJ60lRFUvO6CIeQ5UbQldiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.244.99.0/24
Signature Algorithm: sha256WithRSAEncryption
38:00:f7:6a:99:f1:a8:8a:e8:98:b8:ad:1a:a0:0f:e2:1e:70:
8c:d1:b6:74:c6:ea:6b:52:d6:7b:df:88:29:43:9c:50:02:24:
33:51:a2:4f:fd:fb:5c:8e:4c:02:0e:ea:17:75:45:eb:c5:ab:
85:0d:da:d9:57:41:fb:04:91:2d:37:ec:79:71:5b:b5:68:c4:
a9:85:fa:0b:d9:f9:2c:1e:58:95:b4:ea:61:91:64:93:15:df:
19:d4:a8:07:94:f6:2a:e2:33:01:21:91:15:56:6e:4e:84:49:
fa:b5:3a:53:41:72:a7:eb:a0:ba:8c:03:ee:4c:90:9e:e2:ca:
dc:ea:6a:86:fe:f2:a3:90:f5:64:da:55:51:5a:70:f2:8c:88:
a5:f2:6c:9f:92:29:05:b3:f8:aa:32:80:5c:0d:77:97:28:d0:
4e:9f:35:c3:be:c0:ef:cb:4c:8d:23:2f:68:cb:94:08:07:ed:
fd:9d:b3:90:2a:f1:1e:8d:e6:61:2f:48:0d:df:ac:9d:d9:d0:
e8:03:80:03:de:7d:c5:43:05:59:fa:ea:70:28:e0:0d:04:41:
7e:68:f2:40:5b:01:c1:34:6a:23:c0:0e:cc:37:50:57:07:cf:
61:30:1c:fe:8d:6d:8e:67:be:cf:44:37:12:72:17:9c:d8:28:
9b:cd:9f:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:06 2025 by rpki-client