Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/090638-8a99-4063-93a0-6e9938972708/1/kvAvtHmi-b1X9JvDEQb0-Q8hNG0.roa
File: kvAvtHmi-b1X9JvDEQb0-Q8hNG0.roa (raw, json)
Hash identifier: usRlkB2+ilPfJrbDb3+YgwABGrYYlkluEALx3c70dRE=
Subject key identifier: 92:F0:2F:B4:79:A2:F9:BD:57:F4:9B:C3:11:06:F4:F9:0F:21:34:6D
Certificate issuer: /CN=48f47a31172fb549c696132880c6824fb0777b55
Certificate serial: 32A08201
Authority key identifier: 48:F4:7A:31:17:2F:B5:49:C6:96:13:28:80:C6:82:4F:B0:77:7B:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SPR6MRcvtUnGlhMogMaCT7B3e1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/090638-8a99-4063-93a0-6e9938972708/1/kvAvtHmi-b1X9JvDEQb0-Q8hNG0.roa
Signing time: Sat 01 Jan 2022 15:03:36 +0000
ROA not before: Sat 01 Jan 2022 15:03:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51514
IP address blocks: 46.31.48.0/21 maxlen: 24
185.79.82.0/23 maxlen: 24
2a02:23e8::/32 maxlen: 48
2a02:23ea::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 849379841 (0x32a08201)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48f47a31172fb549c696132880c6824fb0777b55
Validity
Not Before: Jan 1 15:03:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92f02fb479a2f9bd57f49bc31106f4f90f21346d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:69:9b:12:6a:3e:c6:e3:dd:1a:92:62:63:cd:
8e:57:be:7b:8e:22:f8:3a:98:e5:e2:44:19:a3:33:
47:4f:9a:7d:88:55:89:ca:11:e4:1b:b5:1f:d9:85:
ea:7b:c4:04:81:e5:2b:d6:c9:2e:f5:d7:2d:b4:3f:
71:8d:92:57:6c:13:78:ef:2c:f2:48:38:01:82:0b:
6f:f5:82:d9:46:c7:ae:7b:24:79:e4:d8:28:98:92:
2e:75:fd:52:89:a5:e2:7b:ef:7b:07:2b:a7:79:ba:
2e:0f:c1:69:de:52:9a:9c:80:b2:e0:35:98:3f:16:
0b:50:39:48:b5:b9:d8:4b:06:95:91:ad:0d:7d:a6:
51:a6:9f:d4:06:98:f9:18:a9:7e:cd:b5:81:7b:33:
0b:be:15:9e:b2:50:01:42:2f:b0:3d:04:6b:e2:bc:
18:f2:d3:a6:8c:c1:98:96:38:92:10:d9:40:b9:10:
3e:3e:3a:ac:a2:ba:90:4e:3d:eb:81:cc:df:26:f7:
00:19:54:95:09:29:6e:ed:dc:c7:9e:a1:c0:ce:8c:
20:4b:9f:3c:a8:34:50:f8:67:85:46:24:d5:a4:f6:
ac:d5:36:50:87:24:3f:0c:f9:fa:72:5d:ce:00:7f:
65:02:c8:25:f4:75:f7:a6:3c:be:53:2d:76:70:8b:
04:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:F0:2F:B4:79:A2:F9:BD:57:F4:9B:C3:11:06:F4:F9:0F:21:34:6D
X509v3 Authority Key Identifier:
keyid:48:F4:7A:31:17:2F:B5:49:C6:96:13:28:80:C6:82:4F:B0:77:7B:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SPR6MRcvtUnGlhMogMaCT7B3e1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/090638-8a99-4063-93a0-6e9938972708/1/kvAvtHmi-b1X9JvDEQb0-Q8hNG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/090638-8a99-4063-93a0-6e9938972708/1/SPR6MRcvtUnGlhMogMaCT7B3e1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.48.0/21
185.79.82.0/23
IPv6:
2a02:23e8::/32
2a02:23ea::/32
Signature Algorithm: sha256WithRSAEncryption
1e:3a:74:fb:fe:98:98:d7:83:05:02:63:5d:0a:09:ea:c8:7b:
46:c0:b0:ed:e5:96:09:85:1f:9a:c6:7d:e8:54:88:f0:84:ec:
bd:c0:1d:2b:5e:4a:d2:fe:77:05:08:56:85:79:b5:37:b1:01:
b2:91:76:64:7d:2d:4a:36:f0:8e:5a:c3:34:1f:fa:7f:d5:85:
1d:36:f6:a4:39:b9:13:13:22:96:cb:a1:eb:5a:4d:00:7d:8c:
5c:01:9e:37:05:3e:4f:7e:e0:ed:f6:5a:60:e5:cd:06:71:ed:
f0:dd:b5:2d:5a:cd:40:29:0a:ee:66:1f:df:80:fd:cb:67:a7:
45:d1:8d:9e:97:37:f5:31:80:3b:0d:70:5b:90:bb:22:bf:62:
b6:1b:54:75:6e:05:a5:22:6b:63:9f:2a:02:e6:6a:4f:a5:02:
5e:6c:2c:5c:19:ec:eb:2d:71:9e:3a:0f:f4:17:ca:f1:35:e4:
99:e0:3b:69:6d:f1:bc:ef:60:de:85:bf:cc:41:a8:99:e3:3f:
c6:0d:d1:13:31:f0:3f:f1:bb:1c:ca:5f:b4:f5:09:97:b0:60:
b0:fa:77:16:45:12:a3:8e:26:dc:85:fc:02:70:bc:f0:de:5f:
90:b8:8b:0f:a4:81:49:09:25:3f:a0:c8:bc:bd:27:16:00:fe:
92:14:86:45
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:05 2023 by rpki-client on console-fra.rpki-client.org