Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/3YozjGdUTtWkUV-wWmdCG2qsQpk.roa
File: 3YozjGdUTtWkUV-wWmdCG2qsQpk.roa (raw, json)
Hash identifier: y14wNScUFaecCc8QtcDdTO/QuCO1oZdhEO23ez1Pnbo=
Subject key identifier: DD:8A:33:8C:67:54:4E:D5:A4:51:5F:B0:5A:67:42:1B:6A:AC:42:99
Certificate issuer: /CN=11bfa2961fa0e0b07041293ddc0c3693a9e0a238
Certificate serial: 072249E0
Authority key identifier: 11:BF:A2:96:1F:A0:E0:B0:70:41:29:3D:DC:0C:36:93:A9:E0:A2:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eb-ilh-g4LBwQSk93Aw2k6ngojg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/3YozjGdUTtWkUV-wWmdCG2qsQpk.roa
Signing time: Sat 01 Jan 2022 16:05:53 +0000
ROA not before: Sat 01 Jan 2022 16:05:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60816
IP address blocks: 46.22.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119687648 (0x72249e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11bfa2961fa0e0b07041293ddc0c3693a9e0a238
Validity
Not Before: Jan 1 16:05:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd8a338c67544ed5a4515fb05a67421b6aac4299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:c4:05:d0:b3:f0:05:50:98:7f:26:5c:a7:42:
d9:47:e1:eb:cc:0b:a1:38:ae:fe:fd:c7:44:28:eb:
79:8a:bf:27:98:69:0e:08:56:8a:66:fd:b1:1c:d3:
51:a6:ef:e3:69:82:6f:f5:b4:eb:45:5d:37:9d:9e:
f7:ad:c7:a8:6f:24:fb:c6:9f:8a:81:ec:26:6e:72:
0f:02:69:91:04:4f:10:66:0f:b5:43:6a:89:cb:15:
6f:63:69:a5:bb:89:22:b1:3c:c7:4f:6b:76:b4:ef:
ce:04:91:a9:7f:21:f3:8d:c1:90:17:a9:63:82:2f:
c9:73:74:bf:0c:2d:cf:14:b1:9b:a9:e3:37:59:78:
7b:9b:61:25:0d:33:13:c8:db:09:6a:55:53:b2:2e:
35:1c:a1:9d:74:ea:89:82:41:c6:ce:a2:8e:6d:05:
a3:0a:35:db:77:ab:cb:c1:68:8e:e4:73:8d:78:88:
92:9e:2b:ca:90:a9:5b:30:77:c8:53:7d:19:2c:45:
bf:93:90:dc:bf:ba:31:f5:4d:e9:30:4f:74:c5:fc:
b9:89:ca:31:04:eb:24:09:3e:47:2e:b8:d0:ca:b5:
47:84:ba:d1:20:66:25:04:6e:01:9d:9a:22:4d:4c:
21:a0:26:c4:cf:e7:84:8c:dd:56:71:06:c7:70:b5:
50:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:8A:33:8C:67:54:4E:D5:A4:51:5F:B0:5A:67:42:1B:6A:AC:42:99
X509v3 Authority Key Identifier:
keyid:11:BF:A2:96:1F:A0:E0:B0:70:41:29:3D:DC:0C:36:93:A9:E0:A2:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eb-ilh-g4LBwQSk93Aw2k6ngojg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/3YozjGdUTtWkUV-wWmdCG2qsQpk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/Eb-ilh-g4LBwQSk93Aw2k6ngojg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.22.163.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:47:6c:fc:ba:3f:e4:c4:97:48:bb:5b:82:62:ff:5c:4c:f6:
6d:32:b8:24:19:7c:de:f0:23:38:c8:47:a3:04:97:ec:cc:76:
9b:4f:a2:c8:b8:c0:bb:38:02:a8:96:fc:39:da:d2:14:9a:0c:
16:54:1d:0a:bc:cc:43:7d:a5:a1:32:bf:15:14:b3:ed:db:1f:
ce:97:1d:d8:d7:3f:43:c3:bc:2d:a9:15:c6:b1:4f:98:a2:b6:
95:d7:fa:78:63:56:3a:7a:e9:69:af:08:a9:ec:a8:c3:82:30:
67:1c:13:2a:4f:e4:09:f6:30:60:69:48:a9:dc:50:e8:b9:01:
13:13:b9:24:4e:9f:f5:25:62:5c:65:b4:69:6c:bd:64:2a:6c:
6c:a7:ba:d3:01:69:14:b3:0e:c9:23:48:39:5f:d3:8e:c2:97:
99:e5:95:e6:3d:d1:e1:45:27:8d:c9:17:80:13:55:2c:6c:a6:
f4:fb:32:27:47:c8:33:b9:19:10:5e:bc:5f:8d:f5:78:00:79:
74:bd:eb:85:91:37:d7:a9:ac:4d:06:d2:35:8e:e7:21:22:6a:
a2:da:63:05:1d:0d:38:50:f8:08:ca:40:07:8b:bf:c3:24:9b:
b1:a8:96:0b:71:6e:a5:58:dd:21:70:44:2e:10:5b:85:6b:02:
91:24:20:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:51 2023 by rpki-client on console-ams.rpki-client.org