Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/yG3AX83KJ5Bq447U8PAdHr3PEIM.roa
File: yG3AX83KJ5Bq447U8PAdHr3PEIM.roa (raw, json)
Hash identifier: TJpzx1PZMJLJ6wZ3zRJWrB9sKNjxO2B3evLZHq5DNLs=
Subject key identifier: C8:6D:C0:5F:CD:CA:27:90:6A:E3:8E:D4:F0:F0:1D:1E:BD:CF:10:83
Certificate issuer: /CN=77e3c2900b599754283f27f3b4e8d7f6c4510972
Certificate serial: 311774
Authority key identifier: 77:E3:C2:90:0B:59:97:54:28:3F:27:F3:B4:E8:D7:F6:C4:51:09:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d-PCkAtZl1QoPyfztOjX9sRRCXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/yG3AX83KJ5Bq447U8PAdHr3PEIM.roa
Signing time: Tue 12 Apr 2022 06:39:20 +0000
ROA not before: Tue 12 Apr 2022 06:39:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52214
IP address blocks: 46.226.208.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3217268 (0x311774)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77e3c2900b599754283f27f3b4e8d7f6c4510972
Validity
Not Before: Apr 12 06:39:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c86dc05fcdca27906ae38ed4f0f01d1ebdcf1083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:60:b9:ee:10:7a:6e:55:32:51:77:5d:89:92:
9f:41:bf:9d:49:57:0f:ed:59:7b:fa:30:ac:5a:ab:
a2:ee:6e:ec:91:e6:2d:98:82:ff:83:ac:df:12:99:
6e:9c:e7:ad:45:ad:86:53:1a:0e:de:56:9b:5c:6c:
4d:af:46:a0:9b:76:d3:38:fa:49:f3:23:b5:ae:dd:
8b:71:c3:33:98:16:8c:17:90:e8:67:06:b2:c6:7a:
f1:8d:60:56:20:93:b0:44:0e:92:9a:73:5b:8d:2a:
0b:7b:39:a4:6b:77:3c:96:46:eb:de:28:9d:ef:35:
b1:a1:68:e3:92:2f:86:8b:b7:d4:04:49:09:00:9c:
f8:67:c1:98:a5:dc:9d:c3:54:59:d7:9f:f8:8a:f4:
ce:93:75:35:fc:91:b5:f2:ac:8f:38:94:0c:74:be:
2d:9f:95:2e:3b:b9:5d:e6:55:49:11:8e:fa:23:44:
93:fb:58:78:51:b1:39:e8:8e:c3:bd:80:a5:36:07:
85:0a:24:37:52:12:76:74:2b:b8:0d:4e:d2:e7:8f:
4c:de:62:c2:28:6b:62:d3:60:8d:ea:49:7a:1f:ee:
f2:5b:34:6e:7a:cd:33:06:b3:92:00:32:cb:c4:10:
f9:91:70:2f:6c:d9:30:89:9f:4a:e4:c7:ed:b0:ef:
4d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:6D:C0:5F:CD:CA:27:90:6A:E3:8E:D4:F0:F0:1D:1E:BD:CF:10:83
X509v3 Authority Key Identifier:
keyid:77:E3:C2:90:0B:59:97:54:28:3F:27:F3:B4:E8:D7:F6:C4:51:09:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d-PCkAtZl1QoPyfztOjX9sRRCXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/yG3AX83KJ5Bq447U8PAdHr3PEIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/d-PCkAtZl1QoPyfztOjX9sRRCXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.208.0/21
Signature Algorithm: sha256WithRSAEncryption
98:8b:89:9f:8d:21:34:ee:f7:62:c6:1c:65:84:59:1a:f6:ef:
72:59:ea:83:a0:ad:0a:9d:41:08:3d:06:55:90:00:a4:56:0b:
08:17:92:c6:fa:63:ac:c0:d0:70:38:ce:b2:4f:9b:28:4d:19:
60:6a:16:c1:cd:50:44:e6:50:78:8a:d2:1f:3d:72:0e:98:b8:
ef:04:d0:03:06:5e:d6:e8:6b:e6:5e:08:25:de:2e:a8:29:95:
9b:c0:32:35:b0:57:5e:19:00:e0:41:63:d3:31:e5:4b:f9:85:
cd:5e:80:5d:45:fe:01:4e:55:92:1c:d3:fa:75:e3:30:52:52:
2b:24:09:cc:4b:4a:ca:c2:1e:5e:ca:66:49:7f:69:67:91:df:
c7:e6:c9:13:f7:47:14:2a:a0:b5:9b:cd:83:74:dc:79:e3:f6:
df:63:8f:8d:3e:da:99:06:89:de:cb:f5:9b:10:58:b4:54:68:
17:98:07:ee:79:1d:51:bf:10:96:a0:46:63:55:fb:a2:91:e0:
7c:4d:9a:f6:f6:c1:ba:03:be:ac:8d:8e:99:39:35:f9:e8:89:
65:74:80:7c:79:17:cf:bd:cc:14:03:46:6c:1d:11:6f:47:eb:
35:53:ca:53:2a:9e:95:f6:78:24:e1:1c:fb:17:f3:a2:83:e7:
b5:af:3c:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:18 2023 by rpki-client on console-ams.rpki-client.org