Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/SSJF2Wvs9VmoX6j4AyABNF-ziY8.roa
File: SSJF2Wvs9VmoX6j4AyABNF-ziY8.roa (raw, json)
Hash identifier: d9L80ncFR+n3lhSmBOJ590mPUTlbuG5x3bA47GMWZBY=
Subject key identifier: 49:22:45:D9:6B:EC:F5:59:A8:5F:A8:F8:03:20:01:34:5F:B3:89:8F
Certificate issuer: /CN=352ae33b11b36a319ba81347d852480d8e74c87d
Certificate serial: 06006905
Authority key identifier: 35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/SSJF2Wvs9VmoX6j4AyABNF-ziY8.roa
Signing time: Sat 01 Jan 2022 13:55:35 +0000
ROA not before: Sat 01 Jan 2022 13:55:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209087
IP address blocks: 46.26.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100690181 (0x6006905)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352ae33b11b36a319ba81347d852480d8e74c87d
Validity
Not Before: Jan 1 13:55:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=492245d96becf559a85fa8f8032001345fb3898f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:6d:9b:b0:e8:cd:cb:e9:94:c0:b0:b1:7f:30:
22:7b:01:01:e2:e3:78:21:94:f2:68:64:f9:06:54:
56:1f:a5:91:cd:34:4f:ad:11:b3:e3:0d:23:dd:58:
29:ce:8c:37:5f:92:a5:17:c7:1e:61:c5:01:f8:c5:
55:a7:17:79:1b:6a:09:f6:13:29:ad:a9:69:d8:f3:
a3:24:03:4e:c6:4e:e0:42:aa:ee:7a:f3:3c:05:bd:
7e:cf:73:83:f2:7d:32:82:b8:01:33:3c:99:c1:82:
44:83:c5:a7:ef:b6:04:13:e1:a5:b3:e8:eb:3e:b1:
7d:0a:05:c2:6d:8b:7e:e4:79:c7:b0:03:9b:07:f0:
ef:71:cd:ec:e2:15:7f:34:65:4c:72:37:d6:8e:c6:
85:f3:45:68:f2:4e:33:fa:71:aa:16:08:c3:39:2a:
db:57:ed:a4:59:bc:95:2d:f2:31:6d:72:85:22:c4:
46:a3:42:87:47:64:0a:db:85:83:4e:fc:b3:1f:07:
50:6e:19:78:b3:95:22:bc:36:2c:70:d3:28:5d:1d:
9e:48:4e:04:63:a7:59:26:5f:5c:21:59:45:d2:53:
29:ad:1a:1e:9c:2e:45:06:87:f4:80:b7:db:1a:dd:
39:9f:3e:8e:25:3a:af:65:da:75:3d:a5:3e:2c:10:
a7:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:22:45:D9:6B:EC:F5:59:A8:5F:A8:F8:03:20:01:34:5F:B3:89:8F
X509v3 Authority Key Identifier:
keyid:35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/SSJF2Wvs9VmoX6j4AyABNF-ziY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/NSrjOxGzajGbqBNH2FJIDY50yH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.26.164.0/24
Signature Algorithm: sha256WithRSAEncryption
77:e4:ec:b9:4c:4e:82:9a:2a:81:29:03:f4:13:e0:e6:d8:e4:
af:80:35:ef:fc:a0:74:e6:8e:72:39:82:45:e8:84:87:63:f7:
f0:d3:83:57:58:70:2a:53:7b:23:d6:65:d1:5b:de:f7:d5:73:
5f:3a:e4:a0:86:c2:0a:53:de:28:88:cb:86:eb:32:b6:92:0f:
96:e2:e8:ef:99:97:1f:7c:ae:11:60:13:2d:42:76:57:b8:4a:
b1:9e:99:25:e6:ce:93:5f:b0:7b:67:f2:35:0c:0b:36:a3:11:
b1:5a:0e:0f:62:20:37:ef:25:c7:3d:cf:82:e5:2c:68:97:19:
da:1b:1e:1c:7d:59:73:fa:8e:cd:86:ee:ba:83:7c:a0:3f:98:
d8:d7:be:35:3b:d3:61:ad:b5:86:36:1f:c3:06:e2:2f:3b:d8:
cb:f6:5f:e1:42:22:1d:dc:2c:85:3a:0e:7c:84:9f:e6:a0:37:
19:95:c9:7a:4f:a8:2f:c1:57:dc:64:34:a9:0d:b6:93:d6:29:
8c:96:e7:3d:40:b6:7b:99:d6:21:95:cc:cb:12:cb:48:96:89:
66:6d:01:d9:1e:12:16:c8:4f:66:2e:cb:be:23:26:0b:09:90:
6e:2d:6f:eb:bc:2a:d8:a0:54:17:34:2e:e7:bf:c6:f5:1a:28:
be:7e:50:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:12 2024 by rpki-client on console-ams.rpki-client.org