Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/vKF8hPUVqCilvDc6DfN8BBhq3P4.roa
File: vKF8hPUVqCilvDc6DfN8BBhq3P4.roa (raw, json)
Hash identifier: V856qiOvm+ipV5W5WL/We0u9B9sJEtZkyQaPb9mMt3Q=
Subject key identifier: BC:A1:7C:84:F5:15:A8:28:A5:BC:37:3A:0D:F3:7C:04:18:6A:DC:FE
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 3A491730
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/vKF8hPUVqCilvDc6DfN8BBhq3P4.roa
Signing time: Sat 01 Jan 2022 14:56:20 +0000
ROA not before: Sat 01 Jan 2022 14:56:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49100
IP address blocks: 46.209.122.0/24 maxlen: 24
46.209.237.0/24 maxlen: 24
46.209.235.0/24 maxlen: 24
46.209.234.0/24 maxlen: 24
5.160.106.0/24 maxlen: 24
77.104.114.0/23 maxlen: 23
46.209.102.0/24 maxlen: 24
46.209.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 977868592 (0x3a491730)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 14:56:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bca17c84f515a828a5bc373a0df37c04186adcfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:a3:5f:23:f8:cf:27:d6:82:ca:08:91:0c:0c:
91:5f:51:e1:50:7a:c5:88:a9:63:71:4e:84:0c:cf:
17:91:9e:c7:58:82:17:6e:9a:92:83:3d:b4:51:7e:
ff:eb:68:a9:30:99:2d:fa:08:07:f5:f1:2b:28:61:
4e:8a:24:e3:27:32:0b:80:d5:d0:0a:c0:d7:55:fa:
0a:78:74:58:a6:1a:f3:22:f4:00:b6:1c:16:dd:d1:
da:f0:52:55:1b:ab:27:41:72:6a:79:85:81:ae:13:
fb:14:fc:c9:fd:86:fb:85:d0:89:f3:ef:a2:18:fa:
45:d1:f5:62:18:d2:0d:b5:fe:33:eb:f4:ad:88:81:
33:7b:99:96:2f:5e:14:f4:85:2c:52:a6:dd:ff:2b:
ce:2b:55:d4:b4:55:2d:c5:84:e6:aa:0d:08:e8:a8:
df:26:9b:38:45:dc:65:fd:32:d1:03:d8:8b:86:f5:
bb:a7:5c:f5:41:d5:43:b0:e3:85:98:06:01:92:92:
86:c4:57:be:f4:74:35:64:d0:78:47:97:b9:21:a8:
e4:df:7e:fd:42:f5:97:59:d8:4f:80:db:7b:f6:71:
d0:5c:fb:a4:f0:34:0c:8a:09:7f:66:cb:56:90:ad:
08:a4:8e:c1:cd:dd:23:73:0b:f0:17:75:9d:46:70:
c4:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:A1:7C:84:F5:15:A8:28:A5:BC:37:3A:0D:F3:7C:04:18:6A:DC:FE
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/vKF8hPUVqCilvDc6DfN8BBhq3P4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.106.0/24
46.209.10.0/24
46.209.102.0/24
46.209.122.0/24
46.209.234.0/23
46.209.237.0/24
77.104.114.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:ca:cc:c6:72:06:cb:d7:ed:57:62:30:8a:e1:37:36:e3:14:
58:c1:b1:fc:de:14:dc:0b:49:ed:f6:68:a8:39:2b:dd:81:ff:
87:20:41:41:97:c0:8a:24:db:24:88:3b:f0:e8:2e:f3:36:df:
1c:2e:f8:26:9d:b7:12:57:9b:c3:48:e3:f4:87:28:0f:23:18:
81:29:b3:95:f3:70:85:34:d8:fa:f6:be:bb:4b:64:1d:64:63:
b7:53:97:97:54:21:d6:e4:21:69:34:75:9e:75:48:41:e6:79:
44:ee:0b:2b:0e:a9:6e:a8:4f:0a:0d:25:c1:3c:a9:e1:e4:15:
8c:39:1b:58:4d:da:05:41:6c:62:11:7c:fe:6a:3e:ad:ad:59:
28:d8:d5:a7:52:f0:bf:cd:f4:57:57:2d:b2:12:a1:a9:22:06:
f9:7c:81:e8:1b:08:00:16:18:72:c6:32:3e:a9:4c:f1:80:a5:
48:5c:b6:1b:89:4b:58:e4:71:b8:b7:03:66:05:e1:d7:7d:45:
7b:a5:d5:a4:3c:77:22:32:bf:a8:ef:aa:ad:99:45:d0:de:aa:
98:8b:88:ce:30:4b:7c:a4:39:86:ed:04:85:40:f2:b9:51:cb:
05:7e:49:5b:53:50:bd:f1:a6:df:4b:6d:88:d9:01:60:92:fc:
f2:71:c6:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:21 2024 by rpki-client on console-ams.rpki-client.org