Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/htwTFLEmqnHbFjZtZpQmBygUDC8.roa
File: htwTFLEmqnHbFjZtZpQmBygUDC8.roa (raw, json)
Hash identifier: zYxruQ8V3X35qhlBpFcyhFMp8+oYe3ROcrytffDHaaM=
Subject key identifier: 86:DC:13:14:B1:26:AA:71:DB:16:36:6D:66:94:26:07:28:14:0C:2F
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 08152268
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/htwTFLEmqnHbFjZtZpQmBygUDC8.roa
Signing time: Sat 01 Jan 2022 16:03:22 +0000
ROA not before: Sat 01 Jan 2022 16:03:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211753
IP address blocks: 46.161.214.0/24 maxlen: 24
46.161.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135602792 (0x8152268)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 1 16:03:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86dc1314b126aa71db16366d6694260728140c2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1e:a7:79:b2:5a:b9:bb:bd:ac:1a:74:a0:ae:
a7:04:61:ac:9d:50:f4:88:34:ac:86:8a:d0:a2:0f:
71:f2:1d:ac:e9:c6:ad:9d:55:47:26:23:74:2e:44:
b2:a6:04:36:a0:a3:b4:69:95:cf:2a:f0:c3:cc:b5:
b3:22:3d:eb:56:63:db:3c:df:bf:c4:d0:87:9b:b1:
b5:ce:1d:86:dc:da:25:3e:b3:77:0e:c2:45:29:f2:
ec:90:72:60:b9:b4:58:b5:ed:f1:51:09:cd:f6:4b:
a8:b8:d9:4a:71:10:db:fe:75:f3:ee:1c:b9:a1:ff:
13:52:67:ee:08:77:29:da:18:bc:68:a5:ff:85:07:
3d:33:a7:83:1f:39:7e:8c:50:84:a1:3a:3c:10:9f:
3c:7f:21:bf:25:d3:33:0d:2c:a6:3e:fa:d7:03:57:
0b:18:b8:d4:5e:ea:e5:42:06:58:18:91:f4:78:62:
3e:6f:1f:7f:f8:5b:ab:d7:5a:e7:36:2b:7a:93:cd:
7e:6f:87:c5:e2:b0:a9:8d:b4:1b:5f:be:96:18:11:
b5:7d:2a:e1:06:3b:90:ef:77:aa:aa:bb:ff:87:51:
40:7d:eb:50:81:af:ed:2c:cd:0e:81:42:37:2b:fd:
a0:e4:cb:ed:6b:e6:68:7d:56:41:60:fc:e8:39:78:
43:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:DC:13:14:B1:26:AA:71:DB:16:36:6D:66:94:26:07:28:14:0C:2F
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/htwTFLEmqnHbFjZtZpQmBygUDC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.161.214.0/24
46.161.220.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:fa:20:80:67:43:f8:5a:a7:47:8b:0d:2d:56:4f:2a:3a:d6:
fd:b8:1a:ea:2e:ee:30:2f:cc:81:71:4b:13:0c:4c:f1:88:e2:
20:60:13:54:b5:9f:78:8a:1b:c6:27:69:39:7a:17:c5:12:27:
dd:e9:3e:54:20:a6:c0:a0:aa:c9:60:7b:86:65:71:b3:dd:b7:
ed:ba:fe:58:88:5d:a6:ec:bd:17:ce:1d:10:54:a3:6e:45:ad:
1a:a3:1f:64:a2:6a:06:d4:6c:e5:66:4f:b8:44:37:33:e9:31:
52:6e:9e:79:02:a0:f4:2f:fc:0a:aa:dc:78:c5:fd:c3:49:c9:
21:cd:aa:bd:f1:98:fe:18:90:d0:da:88:b4:32:75:65:00:e5:
56:05:5a:09:8b:b2:35:50:24:75:ef:98:d9:2b:3c:1b:f7:60:
11:7f:4f:ce:e6:a4:73:61:bc:83:58:34:64:fc:de:d7:b2:05:
14:83:1d:b5:00:4c:2b:0f:ce:2d:0d:13:ed:a5:36:de:71:fe:
85:6e:b1:79:24:01:60:3e:a9:d9:cd:be:34:86:83:63:4f:37:
7e:1a:ba:fc:ef:34:d0:64:ef:cc:18:dd:fa:e3:53:55:3d:48:
7e:5c:0f:f8:ea:23:5a:67:3f:1d:96:38:ab:c1:24:a5:de:b9:
d6:81:0b:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org