Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/RDhV5hmZjccQdGzPAibxH_L1OkM.roa
File: RDhV5hmZjccQdGzPAibxH_L1OkM.roa (raw, json)
Hash identifier: YvE+DaFKB1HcEXFb8nAnwJPIe0NIWsEyW0Wzg3OkOdY=
Subject key identifier: 44:38:55:E6:19:99:8D:C7:10:74:6C:CF:02:26:F1:1F:F2:F5:3A:43
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 48630845
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/RDhV5hmZjccQdGzPAibxH_L1OkM.roa
Signing time: Sat 01 Jan 2022 03:00:26 +0000
ROA not before: Sat 01 Jan 2022 03:00:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43350
IP address blocks: 46.161.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1214449733 (0x48630845)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 1 03:00:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=443855e619998dc710746ccf0226f11ff2f53a43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:38:a4:77:92:51:ad:b4:e4:7f:d5:fc:c3:c0:
ac:55:7b:fc:ff:b8:3a:f1:93:dc:56:36:34:a7:e0:
6a:a8:f6:f2:42:b5:ee:5c:dd:44:26:56:c9:d5:85:
d9:e3:ca:8d:de:17:8f:e8:32:05:89:02:24:52:0b:
b1:3a:e8:25:54:0f:45:d3:41:11:56:96:10:7f:24:
c7:58:c1:32:5b:d0:14:8c:a0:e3:44:cc:f5:b3:5f:
f3:b9:7c:cf:92:a0:c0:7b:2f:d3:61:16:e6:3f:c3:
54:69:e0:44:2e:32:a0:bd:2e:e4:c1:09:de:27:cd:
e7:c1:33:91:bd:98:4c:94:89:ae:51:f3:59:2e:0e:
b2:29:eb:ba:21:50:f5:db:e1:00:ff:84:61:21:a3:
48:84:c6:bd:10:81:1d:7d:f2:bd:cf:7a:a9:83:be:
95:45:a6:cb:94:8d:eb:5c:12:e8:92:b3:82:2b:f1:
82:56:fc:8f:e7:9b:08:e3:62:87:0f:8e:fe:5c:de:
6b:56:51:57:44:c8:45:1f:54:6b:81:cb:f7:7a:1c:
28:bc:da:93:6e:e5:2b:b8:1c:f6:b3:3a:c8:e5:dd:
3e:3b:b0:26:14:cc:d0:00:5e:69:ff:7d:62:e1:13:
6a:64:22:7a:44:63:e1:b0:7d:41:3b:54:6e:ac:31:
83:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:38:55:E6:19:99:8D:C7:10:74:6C:CF:02:26:F1:1F:F2:F5:3A:43
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/RDhV5hmZjccQdGzPAibxH_L1OkM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.161.27.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:0a:7f:29:09:8e:55:b4:b7:fc:b8:59:69:66:c6:11:0c:14:
a7:8f:b9:0a:37:7e:b4:02:3f:af:bd:23:31:99:71:49:8c:74:
cc:ca:2d:72:32:9d:80:29:81:02:08:43:00:e9:bb:c4:9b:2b:
7f:f9:46:43:d8:bc:d9:4f:00:75:cb:2c:31:0f:95:b7:78:59:
86:d3:26:1f:bd:e3:77:ca:5f:6f:76:31:34:71:f8:25:87:a2:
5e:3f:ac:cd:af:ce:1c:21:4a:c5:06:18:cf:5a:6f:e2:22:96:
3b:79:c9:0d:63:11:e2:c3:22:f5:2c:6d:83:8b:a9:8b:d0:0e:
43:e8:35:c7:c0:10:86:c3:df:02:53:a1:b1:f4:b4:29:0f:d9:
58:54:a4:27:31:eb:95:b9:05:86:3c:57:93:4a:89:dd:64:3f:
b8:4f:2f:89:55:ad:ae:3b:4b:c0:d2:3b:c5:fb:bc:45:ed:a4:
9a:a0:66:b3:8a:cd:12:62:80:19:5b:85:10:f2:fb:0f:44:f5:
bc:78:91:c0:35:cc:52:6e:b3:fa:88:ac:9b:9d:d5:0c:9d:ec:
5f:95:8e:6d:6d:6a:18:7e:71:c9:b8:0b:af:61:72:a7:24:e1:
cc:81:f4:c5:e2:83:b0:d9:53:d6:79:9a:62:12:16:1a:60:7c:
43:72:d2:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:43 2023 by rpki-client on console-ams.rpki-client.org