Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/D9LaSpr75YfS1ojcxl7vTtmwvsA.roa
File: D9LaSpr75YfS1ojcxl7vTtmwvsA.roa (raw, json)
Hash identifier: q5yqmkHUCB5Na8Yhnd5yKyHq/vWsikIYRILImhRgFfc=
Subject key identifier: 0F:D2:DA:4A:9A:FB:E5:87:D2:D6:88:DC:C6:5E:EF:4E:D9:B0:BE:C0
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 0B632437
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/D9LaSpr75YfS1ojcxl7vTtmwvsA.roa
Signing time: Sat 01 Jan 2022 08:58:40 +0000
ROA not before: Sat 01 Jan 2022 08:58:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57914
IP address blocks: 46.234.11.0/24 maxlen: 24
46.234.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 191046711 (0xb632437)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 1 08:58:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0fd2da4a9afbe587d2d688dcc65eef4ed9b0bec0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a0:e3:f7:5b:e9:dd:6f:a6:35:12:86:cf:ef:
ac:e4:08:25:32:fb:25:df:3f:e7:7c:ff:47:6d:9c:
84:b1:3c:58:b8:c7:b2:ed:28:3e:5f:39:16:4e:79:
de:73:4b:50:b3:82:f6:83:7b:68:eb:a6:48:18:71:
4b:48:38:2c:8e:c7:0a:68:76:b1:16:09:dd:1a:88:
a3:37:83:6d:f1:2e:5b:a5:b2:13:82:1a:e8:5e:b7:
a0:bb:f5:0b:97:4b:38:58:bb:4b:cf:d7:4c:89:a6:
a6:bb:83:16:ed:e4:3c:47:36:49:15:6d:61:ea:c8:
36:3b:db:7f:48:15:5c:da:18:70:a7:11:3c:6f:2b:
d5:19:0d:d4:84:fb:8b:17:2c:f3:00:eb:51:77:e5:
3e:37:42:d7:86:83:5d:a1:cf:11:66:f7:e0:09:9c:
96:d6:3a:af:25:7b:a0:3b:fd:74:8f:5f:8c:23:b9:
e9:85:89:09:f6:96:b6:16:71:a8:91:62:aa:8b:df:
fb:11:6d:ac:7a:bf:51:ac:04:70:1d:aa:f3:62:f1:
32:de:73:95:e9:88:54:7d:1e:36:97:23:16:ea:ec:
37:90:17:9e:9d:67:a0:4e:b6:e1:64:6a:9d:9a:8d:
a4:2c:7e:60:00:ed:bd:d2:c5:4a:3e:15:91:27:47:
5f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:D2:DA:4A:9A:FB:E5:87:D2:D6:88:DC:C6:5E:EF:4E:D9:B0:BE:C0
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/D9LaSpr75YfS1ojcxl7vTtmwvsA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.234.11.0-46.234.12.255
Signature Algorithm: sha256WithRSAEncryption
4c:0a:6d:96:77:ff:f0:6e:49:4f:19:4f:8d:15:16:e8:10:09:
8b:f6:a0:02:7d:b6:77:62:63:02:1a:f3:1f:7e:e8:bc:b5:a3:
c4:ce:56:64:95:a9:51:1e:b4:18:73:fe:5c:d8:61:32:80:62:
7e:d0:21:9e:2d:8a:71:88:d4:f6:84:c5:2f:a5:7f:fb:5c:64:
b7:19:82:3c:df:c6:bc:68:96:1e:0e:46:da:1d:5b:63:4b:da:
2f:79:e6:50:ab:fb:05:bf:14:c3:cc:48:fc:04:57:55:dd:82:
3f:7c:9e:27:1d:cb:99:2e:1f:f1:b2:82:05:3d:65:16:7b:d6:
71:a9:3a:0c:f7:52:fe:62:4b:0f:5f:f5:bf:31:9d:7a:bb:44:
25:ab:7c:34:20:0f:21:c2:8d:4e:fa:10:c2:a1:aa:40:30:4a:
93:39:88:f3:98:fa:a9:c6:de:52:52:0c:8f:ac:ff:fa:f0:51:
9d:86:95:9d:b7:17:12:70:46:1b:32:4b:29:06:c7:e9:50:02:
a5:18:e8:8c:85:af:49:6d:22:2d:11:60:94:15:17:b1:bc:e7:
94:65:58:9d:54:bf:54:30:32:28:bd:ba:27:27:69:ef:7c:2f:
40:03:c4:5e:41:90:d8:eb:cc:74:5a:ca:9d:cb:ce:90:86:e5:
fd:75:b6:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:37 2024 by rpki-client on console-ams.rpki-client.org