Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/UDMzAy2Hqgf3BOB70Kbxb4ZUv00.roa
File: UDMzAy2Hqgf3BOB70Kbxb4ZUv00.roa (raw, json)
Hash identifier: mdvAxh9B/OwHxoJmFHn8nu3ModZqF8fc/ZELW3TxYUs=
Subject key identifier: 50:33:33:03:2D:87:AA:07:F7:04:E0:7B:D0:A6:F1:6F:86:54:BF:4D
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 01845DFDC8644D93619FFD172A298D8D5925
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/UDMzAy2Hqgf3BOB70Kbxb4ZUv00.roa
Signing time: Wed 09 Nov 2022 20:03:43 +0000
ROA not before: Wed 09 Nov 2022 20:03:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209260
IP address blocks: 212.46.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5d:fd:c8:64:4d:93:61:9f:fd:17:2a:29:8d:8d:59:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Nov 9 20:03:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=503333032d87aa07f704e07bd0a6f16f8654bf4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c8:08:b7:94:19:dc:67:b1:88:45:0b:96:16:
d8:26:5a:7c:17:d4:dd:08:1a:1c:d5:d8:fb:a2:1c:
c5:77:42:03:79:b7:8e:11:34:12:c0:26:10:54:d6:
80:15:68:c8:d7:1e:01:9a:b3:49:d9:fa:5c:25:2e:
79:42:c5:11:8d:38:20:4a:11:26:fd:75:55:5b:4f:
8a:c2:f5:59:68:88:37:07:62:02:5a:f3:64:44:6b:
c7:99:76:f5:d1:8d:bb:15:c8:f0:54:57:f6:b0:49:
37:51:8a:30:df:a9:05:72:c8:18:43:38:3a:54:04:
4d:67:88:79:83:a6:b0:d9:7c:1c:a3:31:04:c1:6e:
d8:b6:29:44:ca:f4:06:4a:b4:9a:36:7a:0f:a7:e5:
a4:f6:6c:55:51:21:05:f6:71:77:60:fc:92:54:bd:
83:e3:e5:2b:a5:b8:f6:04:68:6a:01:b1:73:d1:f8:
8f:7a:6e:c6:cc:ff:2b:cf:0c:b6:2c:3d:93:9a:5e:
1e:61:de:3e:41:22:aa:ad:1d:c4:13:3b:4e:1c:a0:
64:66:68:17:95:b0:b3:ea:84:14:70:73:90:7a:e1:
c8:2a:b2:1c:9b:26:d1:de:5c:9d:1a:67:f7:f6:01:
61:eb:e2:a7:d2:8b:d1:96:70:35:0e:f8:1f:b1:31:
62:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:33:33:03:2D:87:AA:07:F7:04:E0:7B:D0:A6:F1:6F:86:54:BF:4D
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/UDMzAy2Hqgf3BOB70Kbxb4ZUv00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.46.37.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:56:bb:e0:88:16:b9:43:ad:ab:eb:c2:ff:7e:60:fc:42:df:
37:8c:9d:53:5c:e1:5e:7e:9d:9e:a3:10:bf:1a:45:e8:9c:a4:
e4:69:15:01:c1:80:2a:d6:06:20:db:6c:6d:25:90:26:1b:25:
9a:ea:4a:e7:08:be:f5:2b:0f:f6:f6:25:92:fb:fd:df:e8:1f:
54:ef:25:45:3d:e0:d1:2e:5a:f2:c4:68:ae:36:ea:1b:70:24:
cf:e4:ff:df:3f:60:1b:23:05:3a:5d:06:8d:bf:dc:f3:c8:cd:
d7:d5:86:f7:23:da:a4:fb:e1:c6:20:63:df:5f:4d:2f:f4:4e:
cc:9e:3b:cb:d8:e9:66:ae:cb:61:6e:dc:bc:eb:c0:52:7c:61:
be:7f:5d:e7:48:9b:58:7b:ea:a3:04:64:a5:b9:ca:c6:fb:cf:
b1:76:99:5e:6a:c8:33:92:e1:07:89:16:de:e5:7f:3b:bb:63:
5a:06:41:ad:2e:03:6a:d0:b2:96:4a:c2:62:12:80:54:ab:6f:
0e:d3:75:f6:0c:15:c0:d0:4b:67:a9:a4:94:33:56:39:eb:1b:
c6:35:80:02:0f:97:34:d1:21:5b:af:2f:cc:3a:6b:f8:a3:11:
8f:72:d6:a8:99:f5:e6:df:03:e1:c3:6d:92:40:c2:3e:00:43:
0b:e8:9d:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:57 2023 by rpki-client on console-ams.rpki-client.org