Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/RkFAheqYRgwUI8sL6yjC0n5ChpU.roa
File: RkFAheqYRgwUI8sL6yjC0n5ChpU.roa (raw, json)
Hash identifier: jg/qoFwxu0tPlM1u5tWYRq1aEaaaAaxsxN0qxDqOAyo=
Subject key identifier: 46:41:40:85:EA:98:46:0C:14:23:CB:0B:EB:28:C2:D2:7E:42:86:95
Certificate issuer: /CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Certificate serial: 014A6CF3
Authority key identifier: 98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/RkFAheqYRgwUI8sL6yjC0n5ChpU.roa
Signing time: Sat 01 Jan 2022 03:55:11 +0000
ROA not before: Sat 01 Jan 2022 03:55:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211826
IP address blocks: 45.84.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21654771 (0x14a6cf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Validity
Not Before: Jan 1 03:55:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=46414085ea98460c1423cb0beb28c2d27e428695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1a:ea:b7:64:ae:8d:d6:46:3b:bc:f5:8b:e4:
6c:3b:7a:87:4c:07:54:72:35:8a:8e:ec:12:69:4d:
29:57:ff:f8:44:c3:2f:f6:79:24:33:0f:91:2b:13:
85:32:92:89:d6:29:5d:50:6b:1a:c2:7d:5a:20:02:
f4:ea:f8:66:37:27:9c:5c:15:0f:aa:14:35:6f:fa:
f1:83:e8:13:e5:bc:6a:c7:74:16:4a:e5:d9:99:23:
14:29:1e:1a:10:e2:84:a1:e6:b1:d3:cf:73:c6:32:
84:5e:6c:2b:6e:28:fd:0d:70:e1:ee:52:09:f7:64:
d9:55:41:7b:0a:89:ec:8a:71:e0:93:11:f6:64:f2:
a9:90:6a:40:ae:90:40:01:04:99:2e:42:1c:5e:ec:
de:52:af:b3:f6:c8:dc:cb:e0:1c:be:6d:1e:7e:dd:
14:3e:34:e2:05:55:b8:1e:72:23:28:31:e3:f7:65:
e2:5c:0a:2d:b8:4d:04:7b:29:87:7a:80:00:c0:96:
5a:16:38:3a:5e:b5:47:1d:81:43:7c:30:eb:74:02:
aa:f7:ac:5b:69:b8:58:15:4d:fd:29:8c:51:e9:13:
65:9d:f0:1a:b8:00:db:5e:78:8f:bf:ea:76:ad:aa:
1a:2b:b9:2f:12:d3:c5:78:8e:a8:96:7e:91:5b:9c:
74:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:41:40:85:EA:98:46:0C:14:23:CB:0B:EB:28:C2:D2:7E:42:86:95
X509v3 Authority Key Identifier:
keyid:98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/RkFAheqYRgwUI8sL6yjC0n5ChpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/mGihmSu4A33egdDIzcBpX87hfCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.58.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:79:ba:60:83:65:f8:f1:64:78:f0:f7:13:d6:82:04:75:e9:
81:c0:e7:24:c3:f1:fa:2c:90:a5:46:5b:5f:37:fa:78:21:b5:
ca:e4:7f:29:c6:0e:5d:ac:3b:31:ad:bb:e6:22:6a:7a:2e:aa:
79:01:93:0c:ac:ca:02:66:7e:91:1e:9d:ef:b0:55:8c:11:cc:
2d:57:be:e7:e2:90:d9:02:a8:10:a8:3e:68:16:60:ff:84:92:
46:63:70:bb:af:03:66:42:1f:52:d4:d4:31:c2:a7:e2:4f:6f:
69:50:ed:2d:fe:46:42:09:42:74:6a:36:e4:f1:d0:b9:b5:9b:
0e:d8:b2:f0:dc:46:ce:1d:db:22:bf:bb:c9:12:8e:a1:39:ab:
61:49:29:81:b7:02:b1:11:31:64:cc:0d:ad:2f:49:9b:02:3e:
7c:70:fd:e8:21:bf:e1:a3:1f:e8:bb:4e:a5:eb:b2:18:8d:96:
80:ee:b1:a3:80:a8:5e:63:fc:dd:6a:14:b0:f8:9f:1d:53:b6:
37:d5:50:53:a0:2e:c4:94:42:05:f0:a2:db:95:8c:b2:8c:f7:
c4:6a:92:03:11:d0:2c:4a:ec:55:ec:44:41:de:52:dd:a2:48:
cc:a2:e5:0c:43:95:c5:96:cd:c4:dc:f8:08:c6:43:04:23:01:
1e:01:7e:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:11 2023 by rpki-client on console-ams.rpki-client.org