Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/y49oKASFsLeO6poGBiMpWYWcSbA.roa
File: y49oKASFsLeO6poGBiMpWYWcSbA.roa (raw, json)
Hash identifier: CfLzfJ/Ql2KCAKgyCtvT3CJ7TgctGKIwtPWEqq525RM=
Subject key identifier: CB:8F:68:28:04:85:B0:B7:8E:EA:9A:06:06:23:29:59:85:9C:49:B0
Certificate issuer: /CN=11bfa2961fa0e0b07041293ddc0c3693a9e0a238
Certificate serial: 07205BDE
Authority key identifier: 11:BF:A2:96:1F:A0:E0:B0:70:41:29:3D:DC:0C:36:93:A9:E0:A2:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eb-ilh-g4LBwQSk93Aw2k6ngojg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/y49oKASFsLeO6poGBiMpWYWcSbA.roa
Signing time: Sat 01 Jan 2022 16:05:52 +0000
ROA not before: Sat 01 Jan 2022 16:05:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49785
IP address blocks: 46.22.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119561182 (0x7205bde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11bfa2961fa0e0b07041293ddc0c3693a9e0a238
Validity
Not Before: Jan 1 16:05:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb8f68280485b0b78eea9a0606232959859c49b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:af:ff:f5:25:f8:0e:36:89:9b:c9:79:56:89:
8a:af:0a:fd:15:fc:36:b0:46:33:2a:cf:f9:a9:94:
a9:76:2c:ed:95:dc:cf:d1:0d:4a:4c:42:18:d4:02:
ad:1d:c0:c5:63:b3:3c:5d:e6:00:68:94:17:3b:3b:
a0:50:97:17:80:77:63:3b:f6:03:3f:02:91:fa:3b:
ad:b9:be:95:4d:2d:82:79:ff:8a:1b:14:55:eb:57:
b5:3d:7f:c3:0f:a1:9f:cd:41:06:42:9c:29:6f:65:
86:0b:ef:96:13:e9:2a:8e:16:e0:e8:94:8b:3a:88:
34:31:da:fc:c1:c6:ba:39:19:bb:33:63:98:62:4b:
dd:79:01:cf:d9:90:24:fe:c2:46:41:46:7f:13:8c:
dc:e7:66:2c:07:28:9f:c4:d9:5c:97:5e:35:eb:4a:
38:c9:a5:23:c9:4d:fe:c1:6a:94:a6:48:46:b2:96:
63:0d:75:82:c7:5a:97:e8:2e:4b:07:ba:ea:0b:bc:
3b:d2:30:38:36:0e:a7:80:2f:af:d4:01:dc:6b:50:
b9:97:56:bc:a8:b7:92:6c:2f:e8:c0:6b:bf:0f:a6:
6a:4d:bc:59:6a:05:23:ae:37:5a:f0:40:e0:89:d1:
18:47:cc:c4:46:59:b1:c2:22:fe:4a:4d:e1:f1:3f:
8b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:8F:68:28:04:85:B0:B7:8E:EA:9A:06:06:23:29:59:85:9C:49:B0
X509v3 Authority Key Identifier:
keyid:11:BF:A2:96:1F:A0:E0:B0:70:41:29:3D:DC:0C:36:93:A9:E0:A2:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eb-ilh-g4LBwQSk93Aw2k6ngojg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/y49oKASFsLeO6poGBiMpWYWcSbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/Eb-ilh-g4LBwQSk93Aw2k6ngojg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.22.174.0/24
Signature Algorithm: sha256WithRSAEncryption
72:4d:9d:d7:8d:b7:9e:66:7a:aa:38:96:7a:01:db:be:bf:26:
92:c0:ec:82:e8:25:3a:7a:7f:40:cd:50:f0:e9:4e:01:c2:f5:
b9:bc:30:ed:cb:5a:4c:76:28:84:c6:cb:01:45:b8:0d:d8:92:
87:65:b8:17:45:ad:6d:b8:1f:72:a0:94:d3:ea:67:ca:a4:ed:
21:37:6e:92:62:f1:0c:74:01:82:d9:80:92:db:2d:b9:59:9d:
86:e3:c9:55:4f:ba:b0:93:77:a3:06:d6:09:86:69:c1:d8:54:
d1:f4:c3:2f:9f:03:fc:58:ff:0d:90:a7:3a:37:24:ec:6e:4b:
75:05:5d:30:64:3a:de:1e:45:4c:f1:1c:25:03:8a:93:61:5b:
f2:ec:29:2f:c7:1b:66:ad:c5:6b:92:25:4c:4f:86:e9:31:a5:
3c:b4:4f:a5:84:58:a2:e2:95:05:d2:33:b7:f8:e1:20:11:42:
4c:0b:88:34:ac:4a:af:08:71:3e:63:06:62:29:e3:0e:aa:9f:
b0:7d:a3:42:55:a0:ae:d4:eb:f1:e9:d9:05:a5:70:64:db:d2:
ba:cf:e2:4e:66:f1:9a:a2:d7:74:93:99:49:3c:60:41:7f:d7:
03:f1:e0:43:2b:b8:29:36:8a:f5:fe:be:b3:28:1c:e3:4d:00:
6c:33:4d:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:51 2023 by rpki-client on console-ams.rpki-client.org