Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/qYCr-Df_dmNDzQkyw6Tf_QzLHzI.roa
File: qYCr-Df_dmNDzQkyw6Tf_QzLHzI.roa (raw, json)
Hash identifier: DAYT4AvDhcTosQCaqo/BZK+ADkaTIF+pASEl2Kr1UQk=
Subject key identifier: A9:80:AB:F8:37:FF:76:63:43:CD:09:32:C3:A4:DF:FD:0C:CB:1F:32
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 3BDC3F5E
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/qYCr-Df_dmNDzQkyw6Tf_QzLHzI.roa
Signing time: Tue 24 May 2022 13:05:16 +0000
ROA not before: Tue 24 May 2022 13:05:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204393
IP address blocks: 46.209.135.0/24 maxlen: 24
46.209.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1004289886 (0x3bdc3f5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: May 24 13:05:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a980abf837ff766343cd0932c3a4dffd0ccb1f32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:48:68:d6:6b:f3:95:38:08:6c:07:b9:15:5a:
50:c2:fc:ae:81:a0:d6:9d:d9:60:2a:93:f2:d2:11:
5a:b9:39:51:f4:87:f1:38:9e:66:c8:1d:40:34:9f:
cc:de:a2:15:52:6d:3e:9c:e2:ef:70:b5:95:be:3b:
d3:74:fc:6f:85:34:35:7b:de:2b:e7:d4:44:b3:a6:
93:3c:74:7b:ce:8b:16:26:2c:f6:de:a4:20:fc:24:
59:b1:cf:a7:f2:ca:df:00:7b:98:95:5f:d9:c2:f5:
c6:42:a1:fe:1a:6d:f4:bb:07:97:63:c6:4c:99:7a:
fa:90:7d:76:a7:4c:d1:78:ff:53:28:16:3b:82:63:
4b:f7:a8:9c:7f:63:81:4c:5d:2c:d9:4f:7b:15:9f:
48:d1:e7:9a:70:8b:ba:69:40:16:e5:c3:8e:37:cb:
4c:8f:38:9a:13:ef:08:33:4f:7c:c4:59:6d:83:ea:
0e:61:35:38:16:83:b2:14:fb:39:73:24:ac:83:3e:
b2:9b:33:a8:9d:ed:c2:af:80:14:19:4c:d9:54:4a:
6b:9b:52:3c:f5:e9:53:18:9f:21:4a:dd:ed:1e:02:
77:63:c9:ba:da:5b:36:c9:9e:0f:c0:46:0c:3f:44:
e7:53:91:0c:78:a7:95:b1:75:b8:7d:e5:15:6b:7c:
c6:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:80:AB:F8:37:FF:76:63:43:CD:09:32:C3:A4:DF:FD:0C:CB:1F:32
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/qYCr-Df_dmNDzQkyw6Tf_QzLHzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.209.135.0/24
46.209.242.0/24
Signature Algorithm: sha256WithRSAEncryption
65:54:45:63:08:8f:21:71:03:b6:f8:d0:f7:7c:3f:83:98:69:
41:84:50:72:89:04:f4:93:78:5a:84:2e:72:7f:43:54:73:6a:
e0:f6:2e:e2:7d:bd:e3:5b:22:a5:32:ee:91:f1:7d:e1:d0:a6:
8b:2b:e6:bf:c2:49:a2:b8:20:48:ea:1b:2a:1a:12:99:91:4a:
a2:80:4c:c5:78:f7:4c:f9:b7:36:11:fe:d1:bc:4f:6a:53:7d:
41:a8:b6:a6:c0:60:aa:34:cb:c4:7d:5a:6a:2d:c3:8a:d0:ad:
53:20:73:74:80:a6:e7:2c:52:91:ff:f2:44:ee:48:b0:e4:36:
c5:40:57:e1:e2:7c:94:7e:35:9d:0c:ef:f3:57:86:56:8f:ab:
c1:ce:dc:71:e6:b2:ad:2b:e8:b4:85:40:0f:1a:26:06:cb:b7:
22:56:b1:44:ca:0d:25:5c:91:c7:d8:d0:da:a2:8a:ea:2d:be:
f7:80:88:4c:2b:97:15:25:3e:fe:a1:6a:1d:2c:f9:c5:e5:78:
c6:c9:e0:e2:a8:92:02:72:23:34:a8:86:cd:27:74:81:7f:c4:
ba:40:0a:5e:21:0a:40:86:94:51:b5:8b:b0:53:e5:92:20:57:
2c:d6:f0:e8:2d:f6:31:8e:b9:b6:fb:b4:9c:35:91:f2:77:49:
9a:5b:30:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:07 2023 by rpki-client on console-ams.rpki-client.org