Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e9c797-eb37-4ac2-9593-c44e9ae5f239/1/8dq3gJxFeVqdrx3cHpZxi6T5Ylc.roa
File: 8dq3gJxFeVqdrx3cHpZxi6T5Ylc.roa (raw, json)
Hash identifier: 3lZhqsE0K8anGnvgaGbkttbYyswBFJetnZCXWRWXOjg=
Subject key identifier: F1:DA:B7:80:9C:45:79:5A:9D:AF:1D:DC:1E:96:71:8B:A4:F9:62:57
Certificate issuer: /CN=1f2fbb037b2d98c474b62a60ec88da0cd2e37c61
Certificate serial: 01826000865E53C560A03DF23F9188797918
Authority key identifier: 1F:2F:BB:03:7B:2D:98:C4:74:B6:2A:60:EC:88:DA:0C:D2:E3:7C:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hy-7A3stmMR0tipg7IjaDNLjfGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e9c797-eb37-4ac2-9593-c44e9ae5f239/1/8dq3gJxFeVqdrx3cHpZxi6T5Ylc.roa
Signing time: Tue 02 Aug 2022 19:20:23 +0000
ROA not before: Tue 02 Aug 2022 19:20:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35758
IP address blocks: 212.46.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:60:00:86:5e:53:c5:60:a0:3d:f2:3f:91:88:79:79:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f2fbb037b2d98c474b62a60ec88da0cd2e37c61
Validity
Not Before: Aug 2 19:20:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1dab7809c45795a9daf1ddc1e96718ba4f96257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:83:e4:10:a4:5f:53:87:34:8e:90:86:2c:c1:
6f:d0:70:16:f1:f6:d0:cd:e8:ba:77:2b:5b:ec:52:
4c:95:83:04:11:8a:58:e1:76:4b:50:aa:18:c9:c5:
6b:d7:ef:d5:2b:33:8b:bd:a6:29:5b:d8:27:ad:74:
23:c1:46:02:f6:c0:0c:e8:e7:e8:27:b9:1b:c4:b7:
80:4a:47:01:2c:f8:4b:90:90:3e:be:8f:70:9e:29:
d2:d0:8b:cf:3c:12:1a:73:67:37:c4:31:af:e8:3c:
e5:e3:28:3c:96:5d:6f:f7:71:80:53:58:36:5b:23:
e9:4d:de:53:ab:17:3b:dd:33:52:a9:06:ef:83:65:
a7:2d:d9:6a:5f:e9:c5:11:76:1c:eb:c6:47:e8:93:
89:bf:9b:1b:31:25:0c:5d:3b:a9:d4:b2:51:1f:c0:
23:8a:7b:2e:a1:91:51:5f:bc:df:95:10:eb:eb:7b:
cb:31:48:8d:6c:be:c9:6f:74:61:c5:2d:96:fd:78:
18:b4:1a:23:1d:fa:54:6d:02:58:99:43:2d:54:c3:
a7:39:90:7f:6d:20:f3:23:b4:78:6e:12:aa:0b:4c:
2d:d2:38:52:f9:4c:95:8f:e2:4c:d7:ce:ee:b7:5b:
4b:85:6e:7f:ce:5d:db:ff:9f:eb:93:1a:14:fb:ce:
3c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:DA:B7:80:9C:45:79:5A:9D:AF:1D:DC:1E:96:71:8B:A4:F9:62:57
X509v3 Authority Key Identifier:
keyid:1F:2F:BB:03:7B:2D:98:C4:74:B6:2A:60:EC:88:DA:0C:D2:E3:7C:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hy-7A3stmMR0tipg7IjaDNLjfGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e9c797-eb37-4ac2-9593-c44e9ae5f239/1/8dq3gJxFeVqdrx3cHpZxi6T5Ylc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e9c797-eb37-4ac2-9593-c44e9ae5f239/1/Hy-7A3stmMR0tipg7IjaDNLjfGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.46.39.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:66:15:cc:ea:31:56:1c:32:b7:cf:ae:7d:15:21:8b:33:44:
b4:a9:e4:31:65:18:bf:23:5c:87:62:6e:a9:57:e3:4e:25:46:
35:51:f7:26:26:a9:f3:49:b6:37:d8:59:66:0d:cc:fd:3e:9a:
b0:2f:89:b5:e9:6b:c6:07:92:5e:0d:e0:36:45:a7:82:af:bc:
a6:50:0f:9f:e1:09:45:62:98:e1:c7:e9:b7:28:fa:a3:6f:a3:
13:34:5f:a9:1f:ec:d5:de:39:70:e9:9a:20:02:af:d1:50:3e:
6e:a2:8c:16:3a:fc:7d:ac:a9:6d:07:d8:06:f4:fa:c7:4b:e3:
ae:f1:9e:a2:d7:6a:56:23:3e:0e:7e:d2:3e:d8:09:1e:74:48:
1b:1a:ff:be:2a:83:6d:04:c8:a1:7a:8a:94:9b:a3:25:0b:0a:
47:81:e2:98:97:4b:58:74:6f:f3:2a:15:a4:5a:28:be:f6:fa:
07:f1:9b:8b:ac:3c:98:d7:e2:5b:61:4f:74:53:79:1b:5c:dc:
55:63:e0:7b:05:ff:2d:bb:ef:6d:cf:ab:e2:c3:c4:2c:e7:34:
ab:7d:ec:60:8f:14:dd:79:8c:03:59:59:0f:7c:94:5a:7f:5c:
bb:24:c0:3f:9b:79:56:1c:03:aa:9d:bf:74:9a:08:8d:a7:b0:
42:ea:5e:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:15 2023 by rpki-client on console-ams.rpki-client.org