Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/Nd40xnWOOuT5nFzASb1LCW5l9y4.roa
File: Nd40xnWOOuT5nFzASb1LCW5l9y4.roa (raw, json)
Hash identifier: 2ThyXIOVLDP5F9dM2qL9sER5QgCLslsZvSyTyfpJHRs=
Subject key identifier: 35:DE:34:C6:75:8E:3A:E4:F9:9C:5C:C0:49:BD:4B:09:6E:65:F7:2E
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018365335C3202CA1A709E48FCE812F94088
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/Nd40xnWOOuT5nFzASb1LCW5l9y4.roa
Signing time: Thu 22 Sep 2022 12:36:48 +0000
ROA not before: Thu 22 Sep 2022 12:36:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6079
IP address blocks: 46.161.218.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:65:33:5c:32:02:ca:1a:70:9e:48:fc:e8:12:f9:40:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Sep 22 12:36:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35de34c6758e3ae4f99c5cc049bd4b096e65f72e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:79:82:95:d2:27:f4:e0:fe:e4:2f:95:2b:8e:
db:f4:b3:6b:99:43:b7:aa:fe:40:54:4b:40:99:39:
a9:22:b0:70:0a:69:c6:c7:c7:3c:4f:72:1a:cc:67:
f3:a1:09:8f:de:ff:3e:45:ac:8b:b8:1b:b6:01:aa:
05:51:9f:4b:ff:0a:c7:fd:e8:bc:30:44:89:70:82:
87:92:23:83:a5:20:62:b9:09:07:5c:09:f9:38:a4:
fc:28:f2:9c:57:9f:16:3d:68:3b:22:3f:4c:71:4b:
a7:c4:47:34:d1:9c:97:50:1c:ee:ff:dc:f6:2e:91:
b0:c9:88:7a:d1:ca:35:e7:5f:ce:a8:6a:e5:cc:97:
86:a6:cc:16:6b:e3:7f:e3:dc:db:4a:24:65:2d:08:
c0:f0:be:a6:2a:8c:7e:3d:16:ee:ae:87:b3:96:12:
65:eb:49:03:bd:08:31:70:6b:a7:23:94:db:0a:fb:
71:bc:1e:16:49:52:d3:ba:e8:a7:90:b9:bb:13:ef:
aa:24:25:a0:e4:90:ec:96:8a:75:b9:60:f6:a1:9f:
cf:ad:be:78:1b:ae:53:84:26:95:1c:1d:b9:c3:fa:
e6:7a:16:cc:40:8e:d6:f0:93:fa:a2:f8:7a:d2:fa:
cc:15:69:7d:47:c5:7a:24:68:37:41:fb:93:fc:1e:
1e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:DE:34:C6:75:8E:3A:E4:F9:9C:5C:C0:49:BD:4B:09:6E:65:F7:2E
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/Nd40xnWOOuT5nFzASb1LCW5l9y4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.161.218.0/23
Signature Algorithm: sha256WithRSAEncryption
55:43:ec:ea:6e:4d:e5:f3:9f:cb:3b:e1:eb:4e:d2:98:c5:b0:
a7:8a:50:f6:7f:f7:4a:80:65:df:39:7f:1e:6c:4a:c9:02:59:
50:1e:f5:56:71:10:75:15:38:00:03:d9:5e:75:41:8f:ed:0e:
2e:ac:b7:3b:ce:ed:f2:ec:a9:d4:0e:3a:26:28:3a:0d:22:7d:
a3:c0:38:06:3c:e9:5b:17:9c:65:7a:43:de:d5:61:5b:08:04:
26:cd:c4:6d:da:4b:52:2f:a0:8d:a4:a5:06:ea:fe:30:d0:18:
c6:81:e4:8a:39:00:dc:89:bb:19:58:bb:49:de:5c:7a:28:b0:
73:9b:a9:cc:87:78:e2:1a:db:f3:51:9d:66:4c:c2:6e:6a:bf:
96:5f:25:76:ff:0e:a3:03:ad:bd:17:ec:df:61:fe:32:f3:f5:
14:4c:71:9b:c3:ed:37:ec:bd:d3:45:68:ad:88:14:42:70:25:
de:2a:e9:32:3c:33:d6:4f:1c:c6:e4:63:a7:fc:e1:de:8b:d3:
c2:dd:cf:c8:56:1a:34:4d:00:c9:84:c1:0d:ed:80:88:cf:b8:
97:a3:8b:a4:6c:f2:67:4c:7b:c5:e7:3c:10:a6:51:c1:6c:00:
6b:ec:d5:ef:b0:30:29:a3:ef:df:85:f7:be:69:51:64:a1:8e:
2f:a6:cf:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org