Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/090638-8a99-4063-93a0-6e9938972708/1/2naougSZgEGfsvoz8MuHfXiaGRI.roa
File: 2naougSZgEGfsvoz8MuHfXiaGRI.roa (raw, json)
Hash identifier: 4WxdvW+CDYKPUKA/J88DlRQ54iFYeaxQhHx/uK2Mbqg=
Subject key identifier: DA:76:A8:BA:04:99:80:41:9F:B2:FA:33:F0:CB:87:7D:78:9A:19:12
Certificate issuer: /CN=48f47a31172fb549c696132880c6824fb0777b55
Certificate serial: 32A099D0
Authority key identifier: 48:F4:7A:31:17:2F:B5:49:C6:96:13:28:80:C6:82:4F:B0:77:7B:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SPR6MRcvtUnGlhMogMaCT7B3e1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/090638-8a99-4063-93a0-6e9938972708/1/2naougSZgEGfsvoz8MuHfXiaGRI.roa
Signing time: Sat 01 Jan 2022 15:03:36 +0000
ROA not before: Sat 01 Jan 2022 15:03:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209983
IP address blocks: 46.31.48.0/21 maxlen: 24
2a02:23ea::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 849385936 (0x32a099d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48f47a31172fb549c696132880c6824fb0777b55
Validity
Not Before: Jan 1 15:03:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da76a8ba049980419fb2fa33f0cb877d789a1912
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:2f:08:e7:8d:71:1b:67:bc:47:1c:76:c0:a9:
1e:1d:b0:f2:27:06:96:c3:d2:7c:8f:a7:40:8b:81:
fa:3e:54:00:c5:4d:36:79:9e:bc:fb:4d:02:6f:67:
b1:ed:8b:e3:4d:7e:7a:7b:74:a1:00:2e:3e:72:aa:
eb:00:39:0b:33:5a:7b:32:71:07:01:89:38:ff:b0:
1b:83:5f:16:f0:cc:fa:b0:ac:0c:1b:84:7a:82:c0:
3e:19:ea:b6:7f:bb:45:b8:3a:b8:51:7a:5f:9c:71:
73:bb:e7:8d:ef:9c:44:91:c6:11:7e:1b:33:d0:4a:
77:3f:0e:92:2c:23:7b:3c:a4:d6:8d:0f:b6:a6:5e:
6f:69:a5:0a:75:90:c5:ff:6a:a3:70:1d:80:36:22:
28:e2:f1:8d:c8:63:8d:69:31:80:79:a7:b7:d4:7a:
32:5e:5b:46:ef:f7:7b:5b:de:ff:64:b9:55:fe:c3:
e4:46:4e:9e:25:57:03:9c:7f:28:e9:c8:75:51:76:
11:2f:e2:69:5a:7e:d1:e9:6c:a3:19:f5:a1:6d:90:
ce:78:99:70:fc:7c:ad:41:95:93:ac:ca:af:84:72:
55:60:9f:c4:b2:a4:fd:ac:45:bf:43:ff:a3:50:45:
d0:d5:8d:00:cd:27:ba:2c:6a:06:1d:50:46:49:42:
ec:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:76:A8:BA:04:99:80:41:9F:B2:FA:33:F0:CB:87:7D:78:9A:19:12
X509v3 Authority Key Identifier:
keyid:48:F4:7A:31:17:2F:B5:49:C6:96:13:28:80:C6:82:4F:B0:77:7B:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SPR6MRcvtUnGlhMogMaCT7B3e1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/090638-8a99-4063-93a0-6e9938972708/1/2naougSZgEGfsvoz8MuHfXiaGRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/090638-8a99-4063-93a0-6e9938972708/1/SPR6MRcvtUnGlhMogMaCT7B3e1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.48.0/21
IPv6:
2a02:23ea::/32
Signature Algorithm: sha256WithRSAEncryption
19:49:d1:2d:c1:c1:84:04:4e:0a:f4:f3:3d:23:d4:80:d6:ed:
05:a0:cd:7b:fb:a8:79:be:ce:e5:cf:5d:98:20:47:4a:c7:e9:
5a:fb:4b:b2:ee:0b:e9:44:f4:06:e2:11:1d:1d:1c:5e:53:c0:
16:f5:b8:80:d1:54:3b:54:ba:9b:00:73:e7:65:4b:20:cb:27:
d4:67:c4:f6:6d:80:2b:8e:62:bf:9e:be:11:2b:66:6c:26:70:
c8:18:1d:2f:5f:a8:84:33:b7:a9:35:48:29:c9:9f:ea:46:c9:
d3:ca:53:b7:41:3f:87:95:13:4f:1e:b3:07:77:40:6f:52:1b:
38:f4:3b:0a:02:c6:bd:45:f5:7c:ad:3a:90:4b:ae:2e:87:46:
cc:db:d5:e9:26:15:94:58:58:db:f1:cd:d2:a6:2f:29:99:f6:
b1:2f:a1:4e:74:98:31:91:9d:05:90:b1:17:01:ac:b6:bb:e5:
5e:ff:37:89:c3:eb:2e:7b:98:e3:e0:29:3f:17:be:48:ad:9e:
da:35:c4:67:88:6c:39:6d:45:a4:b1:4b:74:5d:90:3a:82:e0:
94:e6:87:de:74:55:86:e7:14:bd:4f:26:fc:24:7b:89:6e:dd:
66:c9:23:71:9d:27:1d:4b:66:7b:83:ac:13:3c:0b:93:53:39:
37:0b:d1:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 18:07:32 2025 by rpki-client