Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e9c797-eb37-4ac2-9593-c44e9ae5f239/1/9ShfNCKbBGjSf17T174sFQqbfs8.roa
File: 9ShfNCKbBGjSf17T174sFQqbfs8.roa (raw, json)
Hash identifier: qT92dHGVxqbJBEqWEeqn8TSp6Yjg6H3p8+XkWNvnj1M=
Subject key identifier: F5:28:5F:34:22:9B:04:68:D2:7F:5E:D3:D7:BE:2C:15:0A:9B:7E:CF
Certificate issuer: /CN=1f2fbb037b2d98c474b62a60ec88da0cd2e37c61
Certificate serial: 01825DEEB93C67473A1561D0A37B89A8B27B
Authority key identifier: 1F:2F:BB:03:7B:2D:98:C4:74:B6:2A:60:EC:88:DA:0C:D2:E3:7C:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hy-7A3stmMR0tipg7IjaDNLjfGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e9c797-eb37-4ac2-9593-c44e9ae5f239/1/9ShfNCKbBGjSf17T174sFQqbfs8.roa
Signing time: Tue 02 Aug 2022 09:41:42 +0000
ROA not before: Tue 02 Aug 2022 09:41:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 212.46.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5d:ee:b9:3c:67:47:3a:15:61:d0:a3:7b:89:a8:b2:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f2fbb037b2d98c474b62a60ec88da0cd2e37c61
Validity
Not Before: Aug 2 09:41:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5285f34229b0468d27f5ed3d7be2c150a9b7ecf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:72:50:a3:72:3a:49:9a:f0:40:fd:80:aa:33:
ca:a7:46:77:04:c2:7b:3f:d5:b4:3e:05:15:c8:2c:
c0:57:d5:74:ac:76:a7:8a:6b:7c:54:93:5b:82:6f:
7b:1e:f2:22:ba:13:cd:92:62:a8:ca:0c:88:26:da:
3a:5c:46:e8:09:30:22:45:8e:ad:6d:f3:b1:81:16:
94:dc:76:4f:ab:bf:a1:1c:78:a2:7a:af:c7:8f:06:
46:f9:22:85:d0:80:33:5b:3b:fd:27:2f:40:fb:f4:
6e:26:02:3a:cd:bc:a9:30:f6:27:94:10:78:ee:a4:
4c:37:4d:63:16:4b:d8:5d:14:0b:f2:81:13:e4:6c:
e0:26:bb:be:7d:dd:c7:7c:4e:39:8a:d7:5a:ce:97:
90:7e:d0:de:a0:66:16:52:13:29:6c:b1:d4:0a:58:
cf:f6:3b:82:06:aa:f3:ef:d7:40:a5:a4:e9:10:4e:
d7:5e:77:b4:31:44:88:eb:28:43:0a:e1:82:da:64:
47:e2:e8:eb:40:fe:e5:76:5f:dc:0d:84:bc:cb:52:
a9:ae:e6:64:ba:7d:d2:6d:aa:57:b3:38:54:2a:8e:
35:7e:dd:fb:40:7b:6f:22:1e:96:db:8b:5a:4f:a2:
80:ce:c4:28:99:8b:39:e2:ae:9b:e6:72:03:0e:48:
83:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:28:5F:34:22:9B:04:68:D2:7F:5E:D3:D7:BE:2C:15:0A:9B:7E:CF
X509v3 Authority Key Identifier:
keyid:1F:2F:BB:03:7B:2D:98:C4:74:B6:2A:60:EC:88:DA:0C:D2:E3:7C:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hy-7A3stmMR0tipg7IjaDNLjfGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e9c797-eb37-4ac2-9593-c44e9ae5f239/1/9ShfNCKbBGjSf17T174sFQqbfs8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e9c797-eb37-4ac2-9593-c44e9ae5f239/1/Hy-7A3stmMR0tipg7IjaDNLjfGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.46.39.0/24
Signature Algorithm: sha256WithRSAEncryption
50:07:c3:03:c8:e3:67:17:bf:68:e1:28:a0:0c:19:8b:1b:7d:
b0:8e:3e:3c:cd:6c:a6:0a:ef:94:50:b5:f9:83:82:8e:e6:f3:
44:b4:72:21:89:52:81:53:e5:ca:a2:1d:7f:af:6f:ef:41:72:
31:f2:6d:cf:93:3a:2a:c0:f2:2f:d3:fa:d7:e5:2b:08:77:25:
dc:60:90:58:80:10:38:e7:ac:b3:29:56:bb:d1:00:c8:f6:90:
8e:59:5d:93:4b:0e:8a:64:c9:c3:a2:6e:44:47:97:a2:f3:77:
36:f7:49:0f:ad:28:92:71:29:d4:6f:39:d9:af:08:1c:74:ac:
01:28:c7:eb:e1:d7:96:95:24:0a:ec:e0:e8:bd:b5:85:f7:65:
df:b7:ca:28:ad:8c:76:68:ee:6a:10:be:fe:ec:fb:9c:93:f1:
fa:d2:6e:3e:6c:05:a2:f2:be:f5:cd:3d:40:3e:6f:1c:06:bf:
bd:81:5c:a4:89:67:88:ac:c6:ce:63:a8:bf:19:bf:94:d4:47:
44:8b:6b:09:d3:de:6e:1f:93:ad:cf:ad:70:7f:23:f8:1d:45:
09:46:2f:db:75:5c:13:88:fb:52:ee:04:44:fa:ef:b8:ed:f0:
af:b5:11:d4:09:01:1b:6a:5a:d4:3c:fc:44:47:bf:55:a2:0b:
02:67:3d:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:28 2023 by rpki-client on console-fra.rpki-client.org