Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/71e09c-28f3-4825-806f-a0dc354f4ca3/1/RHBhpHB5HvO4yyt3JapgZswZNdY.roa
File: RHBhpHB5HvO4yyt3JapgZswZNdY.roa (raw, json)
Hash identifier: NkYxS5mVO68s2qFtEU1TiO0hlqlXx3DlbvKnY/qCzXY=
Subject key identifier: 44:70:61:A4:70:79:1E:F3:B8:CB:2B:77:25:AA:60:66:CC:19:35:D6
Certificate issuer: /CN=e9aab1446100a8fce03df19d755e06329ee24713
Certificate serial: 1853D1C9
Authority key identifier: E9:AA:B1:44:61:00:A8:FC:E0:3D:F1:9D:75:5E:06:32:9E:E2:47:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6aqxRGEAqPzgPfGddV4GMp7iRxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/71e09c-28f3-4825-806f-a0dc354f4ca3/1/RHBhpHB5HvO4yyt3JapgZswZNdY.roa
Signing time: Sat 01 Jan 2022 15:59:29 +0000
ROA not before: Sat 01 Jan 2022 15:59:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48618
IP address blocks: 46.246.32.0/23 maxlen: 24
46.246.10.0/23 maxlen: 24
2a00:1a28:100::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 408146377 (0x1853d1c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9aab1446100a8fce03df19d755e06329ee24713
Validity
Not Before: Jan 1 15:59:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=447061a470791ef3b8cb2b7725aa6066cc1935d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:98:c7:a8:76:99:e2:28:52:bb:79:73:10:c7:
43:9f:b2:17:d4:6a:36:9d:3f:5e:a2:1c:09:3c:57:
e9:cf:30:ee:0a:39:b4:a1:3e:25:05:f8:0a:91:53:
51:16:69:d9:72:b0:18:0b:42:73:de:d5:16:c2:2e:
c3:2f:15:f7:ad:60:b3:ea:41:fb:3b:eb:4c:e8:d0:
e5:94:5a:16:15:5e:d5:dc:1f:81:95:a3:f3:55:b0:
87:f5:5d:5e:74:0c:53:97:3f:70:26:b2:49:77:2a:
00:ea:8a:94:85:47:17:7c:24:1b:e4:e3:a5:b8:3e:
da:09:36:74:af:fa:77:e3:7a:05:4f:38:d8:63:dc:
7d:2d:9b:05:32:d9:e9:92:57:ee:78:10:fc:01:15:
85:6d:6f:01:ad:f7:34:60:61:49:36:8d:fb:86:e6:
5c:5e:fb:58:76:7c:e0:c6:61:f8:89:56:bb:ba:bf:
cc:13:9a:b1:59:35:da:ec:5e:de:fa:8d:73:3e:27:
08:db:eb:4b:e1:9f:f5:19:96:d3:95:d4:03:3b:bb:
07:9a:ca:7c:b9:2a:a5:1f:47:aa:ea:cf:08:f2:87:
6c:c6:35:65:a7:89:a8:25:20:7b:08:19:f3:9c:54:
7f:ee:2a:b0:05:29:d1:a9:63:0e:51:67:e7:b7:3d:
19:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:70:61:A4:70:79:1E:F3:B8:CB:2B:77:25:AA:60:66:CC:19:35:D6
X509v3 Authority Key Identifier:
keyid:E9:AA:B1:44:61:00:A8:FC:E0:3D:F1:9D:75:5E:06:32:9E:E2:47:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6aqxRGEAqPzgPfGddV4GMp7iRxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/71e09c-28f3-4825-806f-a0dc354f4ca3/1/RHBhpHB5HvO4yyt3JapgZswZNdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/71e09c-28f3-4825-806f-a0dc354f4ca3/1/6aqxRGEAqPzgPfGddV4GMp7iRxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.246.10.0/23
46.246.32.0/23
IPv6:
2a00:1a28:100::/48
Signature Algorithm: sha256WithRSAEncryption
21:cf:c8:5b:be:cb:9b:8d:d8:1d:28:e6:d5:f8:b6:2f:15:af:
46:86:4f:6d:90:14:c8:cf:b1:ab:00:84:c1:5e:34:ca:bb:7c:
2a:0d:e5:fe:44:89:58:a8:22:70:ee:08:f5:41:d9:2e:62:59:
53:6e:16:41:a7:12:f7:8f:fe:cd:dd:23:9c:89:31:dc:4b:63:
7b:04:5e:94:f9:d9:40:7a:77:6b:1d:94:f7:25:ba:cf:22:0d:
17:25:09:76:96:1f:6d:73:cc:fa:62:60:d0:fc:77:d7:b1:c2:
da:2f:dd:ab:ba:4d:53:15:4b:e5:10:b2:0e:1f:dc:6b:e9:db:
72:f0:0f:cd:77:7f:0c:e7:37:1c:1f:88:ed:19:a0:73:f8:f7:
5e:e5:b3:8d:10:d6:95:7b:b2:c8:0f:8c:c7:f4:25:19:f4:50:
d4:77:5f:13:12:2c:95:2f:c5:d6:a7:80:ff:21:6c:0b:6c:7d:
e2:0a:f6:9b:3d:17:a0:ab:cb:42:02:8e:56:cd:06:ae:ea:3d:
9d:da:fd:5a:92:f1:eb:66:c4:3b:d9:eb:9c:08:00:81:81:ab:
05:4d:e1:5c:77:d4:3b:cb:d0:d6:eb:10:5b:21:e6:05:d2:b2:
b8:2a:d0:c9:1a:bf:f3:f2:40:40:1a:f0:bd:c2:95:b1:5b:fa:
94:1d:48:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:17 2024 by rpki-client on console-fra.rpki-client.org