Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/QmvQfP2En6u9081fSjxEZEw6rFI.roa
File: QmvQfP2En6u9081fSjxEZEw6rFI.roa (raw, json)
Hash identifier: Q+s16b4QJT0Hi4Jh8qVvyvGANGPM4J4QHMD0obFg/yw=
Subject key identifier: 42:6B:D0:7C:FD:84:9F:AB:BD:D3:CD:5F:4A:3C:44:64:4C:3A:AC:52
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 435F9E5A
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/QmvQfP2En6u9081fSjxEZEw6rFI.roa
Signing time: Wed 05 Jan 2022 08:56:22 +0000
ROA not before: Wed 05 Jan 2022 08:56:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42160
IP address blocks: 46.183.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1130339930 (0x435f9e5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Jan 5 08:56:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=426bd07cfd849fabbdd3cd5f4a3c44644c3aac52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:18:81:36:3c:ad:9a:c7:71:6f:1a:f0:54:87:
d6:98:de:4c:d2:0b:e9:f5:da:72:65:ff:8e:06:6d:
02:49:b8:ec:09:b4:3f:7b:ff:e1:03:09:a3:b4:e0:
eb:07:a4:0b:57:dd:28:b4:08:e5:ee:62:84:67:43:
26:b6:48:99:63:dc:00:30:aa:e9:0e:9c:33:13:1d:
50:73:f9:04:34:85:11:da:b9:0c:73:3a:83:5d:91:
bf:22:56:c9:66:af:04:cc:96:d2:9a:c3:f8:63:71:
75:1d:11:d3:70:df:b8:45:52:62:4a:f7:b6:77:55:
d5:fa:89:5a:6d:da:87:60:87:9c:6e:4f:58:12:d2:
07:8d:e0:27:26:88:e9:02:8c:54:08:7d:02:8d:4c:
f7:89:d2:97:43:2c:db:72:23:a8:9f:30:ea:32:b9:
59:19:90:84:ae:5c:4b:11:62:b2:3e:78:59:b5:b2:
a0:bf:d5:3a:54:e5:f7:f6:60:d5:2b:90:ac:48:41:
11:00:01:a8:5d:89:eb:9e:1e:e4:98:ad:c0:ed:a4:
8a:2a:fd:21:17:53:a5:53:11:ab:4a:0e:0c:51:7d:
22:d5:96:c3:dd:33:6f:1a:91:79:f6:4b:eb:ec:03:
26:e4:ce:cb:0c:16:7d:43:5e:0a:20:7e:8d:1e:c6:
3e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:6B:D0:7C:FD:84:9F:AB:BD:D3:CD:5F:4A:3C:44:64:4C:3A:AC:52
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/QmvQfP2En6u9081fSjxEZEw6rFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.187.0/24
Signature Algorithm: sha256WithRSAEncryption
89:d4:ff:87:b5:af:a4:de:2e:6f:36:a3:32:8c:72:44:a8:58:
ad:4e:29:eb:8c:23:d0:bf:00:4e:40:1d:4d:8a:cd:27:6d:3e:
0c:af:dc:54:95:eb:a5:25:f3:79:fd:cb:f7:65:92:9b:dd:11:
85:e1:c4:8b:e5:2b:b0:e8:f3:d7:ff:4f:81:bd:29:a2:14:1d:
0c:c8:db:8b:7a:6a:f1:ff:33:cf:91:11:f1:ab:37:e7:15:84:
f3:38:f1:b1:87:7b:0c:73:c5:72:11:5d:51:3e:26:9d:c8:e8:
e9:8b:03:45:15:4f:d7:d2:f1:a4:fd:b2:c0:63:0d:7d:f0:29:
cb:be:a1:af:32:6a:8e:bd:68:ff:5e:8e:53:6e:a8:a9:9c:4b:
be:c6:2c:f7:45:89:0c:ea:45:0b:1e:b0:84:ae:71:1d:f0:e1:
c6:c7:aa:19:af:2c:67:54:f9:03:9f:a2:20:bc:b2:3c:cf:40:
90:4d:c8:e8:fa:48:83:83:49:5c:60:25:25:2e:0e:28:42:76:
da:0e:b3:72:32:ed:35:2c:18:3e:5e:d0:58:89:ed:f2:70:7b:
98:1c:73:d3:ee:48:ff:e8:a2:3d:20:f6:90:f5:32:11:29:f8:
a2:91:d4:d1:01:ce:ac:dc:c6:2f:9f:50:76:e2:c6:66:2f:51:
87:63:20:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:51 2024 by rpki-client on console-ams.rpki-client.org