Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/nsnD9ynJ_c1kKP6smRF2_LirjJ8.roa
File: nsnD9ynJ_c1kKP6smRF2_LirjJ8.roa (raw, json)
Hash identifier: mM7se5YsCYbkUuY9sjyxWfZcnnYqssDuSjWDbJD+VcA=
Subject key identifier: 9E:C9:C3:F7:29:C9:FD:CD:64:28:FE:AC:99:11:76:FC:B8:AB:8C:9F
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 43393C1E
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/nsnD9ynJ_c1kKP6smRF2_LirjJ8.roa
Signing time: Sat 01 Jan 2022 07:59:47 +0000
ROA not before: Sat 01 Jan 2022 07:59:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5483
IP address blocks: 46.183.186.0/24 maxlen: 24
2a03:f80:36::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1127824414 (0x43393c1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Jan 1 07:59:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ec9c3f729c9fdcd6428feac991176fcb8ab8c9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:36:6a:29:78:47:81:8c:38:6a:2e:1d:86:9b:
fe:fe:17:f8:ef:e5:b7:d3:c0:4a:0c:3f:72:96:15:
11:01:ff:e3:ab:5a:fd:7e:ac:27:31:de:7a:83:e4:
f7:b2:b4:08:30:95:91:d5:37:ab:7e:ff:9d:bf:82:
77:a6:4f:8c:20:85:da:3a:fc:d0:09:a5:11:ab:d4:
f0:65:7a:d5:12:c0:76:7c:1c:ce:1f:6f:f9:e1:7c:
9d:66:4e:01:70:6d:17:35:c8:8f:9d:c4:67:c9:8b:
d4:88:c6:d3:6a:9f:3f:87:35:43:32:cd:0c:cf:cc:
f7:7c:37:3f:52:52:0e:40:f5:23:27:d3:6c:60:dc:
22:63:b5:35:9c:e4:35:8e:2d:df:4c:f4:12:2b:25:
2c:07:07:c9:1b:42:9b:d3:da:c5:13:c3:98:f4:2a:
e9:a4:5d:69:ec:a9:0f:9c:2c:be:95:8d:a0:65:0e:
ba:04:b5:98:21:78:2e:a0:a3:71:df:9f:e8:c0:6b:
2e:a9:16:1d:5a:9f:15:9f:f8:fc:da:86:68:4c:c7:
76:e8:28:6b:87:e2:24:93:d5:42:a5:4e:89:e9:f9:
98:ca:e8:6e:80:23:b7:c7:7b:c0:0c:54:4c:cf:c7:
7f:0d:a2:2c:e9:7c:45:b1:9b:c3:ad:d9:ef:e6:7a:
e3:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:C9:C3:F7:29:C9:FD:CD:64:28:FE:AC:99:11:76:FC:B8:AB:8C:9F
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/nsnD9ynJ_c1kKP6smRF2_LirjJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.186.0/24
IPv6:
2a03:f80:36::/48
Signature Algorithm: sha256WithRSAEncryption
31:ae:57:87:22:be:dd:45:6b:6d:c8:56:e7:c4:28:6d:a1:3a:
fb:0a:75:c7:72:7a:48:c4:e7:94:8d:62:51:ea:72:57:04:a0:
dc:4f:2c:57:14:2f:88:a9:25:5e:4f:f0:9e:52:8e:bc:ce:cb:
63:fa:6e:bf:3f:20:2b:c9:32:6b:6a:9d:e3:3d:1f:a9:08:ed:
1b:f1:dd:1c:9c:1e:00:8c:a2:89:df:b9:ef:70:1f:cc:95:88:
12:24:0a:0e:10:07:cd:f6:60:fa:5b:e7:a3:eb:86:5f:8e:bf:
47:0c:17:16:83:39:a1:94:50:40:8a:06:c7:b0:0e:e3:29:ae:
96:67:34:e5:16:e9:46:cc:78:46:e8:5e:10:45:82:34:04:30:
fd:7f:9c:ff:85:d5:e9:b1:4f:0a:ab:ee:82:60:b4:ad:ac:10:
93:54:47:b8:f3:45:81:54:42:27:17:b9:6f:cd:e6:fa:3d:43:
8f:8d:53:86:e6:13:75:61:56:77:fd:45:de:aa:8f:f4:d0:de:
40:db:1e:49:90:ef:32:18:f2:2f:d0:6e:84:af:b2:d5:2d:23:
ff:db:bb:ac:d4:84:fa:b8:89:d3:80:6c:95:88:1e:18:c1:de:
f1:12:2e:4a:9c:13:5d:62:af:d2:64:dc:f8:a6:03:69:e1:37:
28:53:7c:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:58 2023 by rpki-client on console-ams.rpki-client.org