Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/3de42d-a77c-451d-8177-13c4ddd4229e/1/rsfs6Bj-N9pZTrC9wj7V6D01JzU.roa
File: rsfs6Bj-N9pZTrC9wj7V6D01JzU.roa (raw, json)
Hash identifier: ykqpk/SL1JZ8M764pXW24te3Tm2waWIYaiCtnCFIkFA=
Subject key identifier: AE:C7:EC:E8:18:FE:37:DA:59:4E:B0:BD:C2:3E:D5:E8:3D:35:27:35
Certificate issuer: /CN=6581dd2a05392973d28b2479fd5dd09808619d9b
Certificate serial: 01001C
Authority key identifier: 65:81:DD:2A:05:39:29:73:D2:8B:24:79:FD:5D:D0:98:08:61:9D:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYHdKgU5KXPSiyR5_V3QmAhhnZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/3de42d-a77c-451d-8177-13c4ddd4229e/1/rsfs6Bj-N9pZTrC9wj7V6D01JzU.roa
Signing time: Mon 28 Feb 2022 17:45:23 +0000
ROA not before: Mon 28 Feb 2022 17:45:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57878
IP address blocks: 212.46.59.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65564 (0x1001c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6581dd2a05392973d28b2479fd5dd09808619d9b
Validity
Not Before: Feb 28 17:45:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aec7ece818fe37da594eb0bdc23ed5e83d352735
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:40:93:e5:8d:9e:3a:4a:52:99:66:a5:79:84:
73:9b:99:7c:94:fa:8c:b6:54:54:a7:26:7e:24:4e:
b0:43:e8:6f:a7:f9:6f:cf:ec:0a:76:3b:c4:d8:2d:
b1:4c:df:29:e7:57:f8:1f:ee:dc:46:bb:aa:27:22:
ba:b0:98:14:8c:02:20:ca:81:c5:20:2d:da:d2:fa:
f1:c2:56:84:40:7d:08:e0:e8:47:9a:1c:d0:1d:7d:
b8:d1:eb:27:dd:10:2b:7e:6d:8c:60:23:ce:95:19:
9a:aa:ea:74:22:a2:cd:43:69:ec:6e:92:02:69:27:
de:41:c7:35:ef:6c:ed:ac:f6:4f:c7:d7:ae:2c:2c:
66:2c:b5:8d:f9:90:6e:d5:c1:81:06:17:95:4c:d6:
f5:62:a6:9a:78:d8:3e:33:76:0c:ba:f9:ee:1a:c5:
a0:a1:da:21:5b:04:87:c3:af:2f:f4:a1:b1:04:42:
dc:3c:9c:6d:e8:e5:92:9f:3d:57:55:6e:6c:d9:2c:
91:15:2c:f1:3d:8d:cb:f6:84:c2:52:18:47:b2:63:
24:99:ec:78:73:36:75:57:7c:94:cf:52:70:f6:a0:
bf:42:78:0f:fe:8e:64:26:10:4a:c1:c0:17:f6:c6:
94:c1:9e:fe:5b:a9:c7:49:ec:94:c3:d3:a9:c7:01:
de:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:C7:EC:E8:18:FE:37:DA:59:4E:B0:BD:C2:3E:D5:E8:3D:35:27:35
X509v3 Authority Key Identifier:
keyid:65:81:DD:2A:05:39:29:73:D2:8B:24:79:FD:5D:D0:98:08:61:9D:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYHdKgU5KXPSiyR5_V3QmAhhnZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/3de42d-a77c-451d-8177-13c4ddd4229e/1/rsfs6Bj-N9pZTrC9wj7V6D01JzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/3de42d-a77c-451d-8177-13c4ddd4229e/1/ZYHdKgU5KXPSiyR5_V3QmAhhnZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.46.59.0/24
Signature Algorithm: sha256WithRSAEncryption
54:38:48:6f:a1:0b:f5:a0:cc:f8:15:e3:11:13:44:ae:d4:3b:
d2:88:34:b7:62:cd:c0:25:43:cf:d3:9d:9c:f1:a2:33:34:1a:
c8:d2:30:18:26:c1:c7:1e:c2:f8:c2:41:55:fa:cb:c0:c6:02:
1f:ad:f4:ad:73:ba:01:1f:85:36:e9:44:90:fb:7e:03:ac:66:
4d:52:03:fc:a8:aa:a3:cb:db:2f:db:5d:e3:03:82:6a:0b:13:
ff:53:b1:ed:b0:70:b4:f6:43:bb:87:21:70:93:5d:5d:2f:7b:
f2:b9:b2:27:a4:94:fd:ef:fd:ff:2c:1d:8e:d4:be:8d:6a:29:
4f:4e:41:3b:76:f8:27:de:a3:3d:5d:05:99:0e:c1:fb:9d:8d:
f1:cb:fb:23:a5:33:f3:5f:1d:9f:ee:3b:72:6c:50:ea:57:bb:
f4:7c:71:d2:50:8f:f0:df:b4:58:e5:6d:bf:7e:9b:f0:f4:c9:
ba:1e:9b:c1:32:d9:bb:29:5d:91:b9:38:1a:b2:df:06:19:01:
0b:d2:01:43:a1:8c:0c:9b:d8:9e:ad:ca:49:b6:1f:58:30:ed:
1c:4a:6d:0a:fe:c4:67:cc:0c:72:c7:8d:76:fa:4f:ed:54:f6:
3d:94:94:e1:e0:17:d6:58:c4:37:2e:01:df:a4:ff:15:c6:99:
17:de:21:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:31 2023 by rpki-client on console-fra.rpki-client.org