Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/mFZq3DoflSsFmCU1X-1DJs81Dos.roa
File: mFZq3DoflSsFmCU1X-1DJs81Dos.roa (raw, json)
Hash identifier: eXBt94MNC/501NbcxpC7tdKSvbLRUIjzr26JqTg347E=
Subject key identifier: 98:56:6A:DC:3A:1F:95:2B:05:98:25:35:5F:ED:43:26:CF:35:0E:8B
Certificate issuer: /CN=11bfa2961fa0e0b07041293ddc0c3693a9e0a238
Certificate serial: 0722BBE0
Authority key identifier: 11:BF:A2:96:1F:A0:E0:B0:70:41:29:3D:DC:0C:36:93:A9:E0:A2:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eb-ilh-g4LBwQSk93Aw2k6ngojg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/mFZq3DoflSsFmCU1X-1DJs81Dos.roa
Signing time: Sat 01 Jan 2022 16:05:53 +0000
ROA not before: Sat 01 Jan 2022 16:05:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61242
IP address blocks: 46.22.161.0/24 maxlen: 24
46.22.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119716832 (0x722bbe0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11bfa2961fa0e0b07041293ddc0c3693a9e0a238
Validity
Not Before: Jan 1 16:05:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98566adc3a1f952b059825355fed4326cf350e8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:63:07:07:69:f5:e7:c5:c6:11:31:dd:66:92:
76:79:77:9c:25:45:d2:bd:4c:b6:83:c9:76:7b:7f:
ec:d7:5b:64:f5:88:b8:0a:09:d1:72:00:af:5d:31:
1f:ef:36:83:a3:bf:ab:d1:c5:7f:d2:89:ea:0b:f6:
66:db:76:29:63:24:81:36:3a:e8:46:c9:2e:9f:9d:
1c:c9:5d:15:4e:ee:ca:40:97:95:12:f9:4d:71:3d:
dc:70:96:0e:d9:17:f5:79:23:22:65:e1:15:b0:d8:
be:29:5c:8f:87:2f:59:91:ec:77:fd:ad:19:e4:4d:
27:b4:bb:66:70:04:f9:7c:b8:87:67:79:ff:ea:7a:
5d:10:14:bf:22:56:1d:f7:f9:7d:9a:0c:bf:f4:69:
b8:64:3d:ab:74:97:3b:1d:77:70:54:60:5b:ac:c6:
a9:0b:53:1e:26:66:74:3b:ca:a0:fa:52:91:89:21:
3c:99:99:35:0d:17:9e:b1:70:83:e2:50:e5:4d:02:
29:46:16:c7:fa:db:77:7f:4f:25:28:28:80:a7:71:
ad:0a:1d:4b:d7:17:1c:b8:3e:5d:6a:5c:b1:2e:19:
ed:64:41:b3:f0:88:af:5a:31:f1:28:8c:4f:8d:f7:
0a:f8:e9:2f:f0:ef:93:68:03:c8:cd:f1:35:9b:b0:
16:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:56:6A:DC:3A:1F:95:2B:05:98:25:35:5F:ED:43:26:CF:35:0E:8B
X509v3 Authority Key Identifier:
keyid:11:BF:A2:96:1F:A0:E0:B0:70:41:29:3D:DC:0C:36:93:A9:E0:A2:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eb-ilh-g4LBwQSk93Aw2k6ngojg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/mFZq3DoflSsFmCU1X-1DJs81Dos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/Eb-ilh-g4LBwQSk93Aw2k6ngojg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.22.161.0/24
46.22.172.0/24
Signature Algorithm: sha256WithRSAEncryption
83:4f:5f:8e:93:3e:a2:84:05:fa:cc:ec:19:27:13:09:83:d5:
4f:ea:12:a9:88:f9:f6:13:7c:ec:a6:a1:e9:bd:25:5f:4e:3b:
5d:89:90:d1:ec:dc:70:67:a3:a6:22:c1:00:b2:fe:ab:5f:e8:
77:49:a6:e2:f3:81:4d:5b:cf:99:0c:f5:09:8e:27:f4:61:ac:
45:4f:96:e3:58:53:1e:04:c2:fc:00:0f:9f:42:a9:5b:86:6f:
f7:d7:3d:a1:ef:97:52:a5:75:8d:7f:67:8e:f7:e2:f2:5a:27:
9e:9a:01:d5:e4:94:ea:8a:61:56:1e:d6:c7:a3:9a:c5:15:dc:
4c:2b:a7:aa:ea:a7:91:04:91:34:8c:a1:53:6c:37:4f:1e:51:
ac:d8:3c:c1:69:a5:99:5d:c6:9a:f2:7a:a8:8c:7c:b0:bc:76:
52:da:2d:46:da:da:2b:7f:89:7e:4b:e5:58:73:1e:e6:4c:04:
04:91:6d:e7:20:d6:96:d2:66:4e:a1:83:44:52:e3:32:a6:af:
7e:05:c5:0b:a6:3a:fb:e8:43:07:d8:47:3b:a0:fc:65:33:90:
cc:fb:76:3e:72:f4:7f:9b:62:26:c6:61:00:1d:58:4d:98:3c:
e0:e5:2c:cf:9a:d2:71:5c:f2:d6:b1:e3:33:00:99:ac:0a:36:
e7:fd:a2:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:51 2023 by rpki-client on console-ams.rpki-client.org