Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/9a3eac-f862-4789-ac21-d9444a3d0ce0/1/0g2l0D4nsK1crMLAmCspvQhm48g.roa
File: 0g2l0D4nsK1crMLAmCspvQhm48g.roa (raw, json)
Hash identifier: 4heDTgTktcuITJpK+L4uWcKes9VHsmFfzh5vSXR7HVg=
Subject key identifier: D2:0D:A5:D0:3E:27:B0:AD:5C:AC:C2:C0:98:2B:29:BD:08:66:E3:C8
Certificate issuer: /CN=fb70de840fd6bf4b0afd1274e44efd1b8665762c
Certificate serial: 0105F8E2
Authority key identifier: FB:70:DE:84:0F:D6:BF:4B:0A:FD:12:74:E4:4E:FD:1B:86:65:76:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-3DehA_Wv0sK_RJ05E79G4Zldiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/9a3eac-f862-4789-ac21-d9444a3d0ce0/1/0g2l0D4nsK1crMLAmCspvQhm48g.roa
Signing time: Sat 01 Jan 2022 02:01:21 +0000
ROA not before: Sat 01 Jan 2022 02:01:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199468
IP address blocks: 46.254.111.0/24 maxlen: 24
2a11:c900::/29 maxlen: 34
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17168610 (0x105f8e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb70de840fd6bf4b0afd1274e44efd1b8665762c
Validity
Not Before: Jan 1 02:01:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d20da5d03e27b0ad5cacc2c0982b29bd0866e3c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:1e:63:0c:c8:10:20:23:a0:df:4f:3e:69:90:
13:d9:87:05:76:6e:23:6d:a1:3a:11:2f:57:03:49:
9a:36:aa:fc:85:2d:cb:31:c0:e8:a7:a8:21:fa:5b:
8a:fd:04:cc:e7:34:f6:10:da:15:bf:df:a0:0d:a9:
e3:43:d7:3d:34:fa:38:7b:c1:d8:66:d7:db:a8:b7:
bc:be:b8:7d:23:22:dc:d2:47:2d:47:66:da:57:43:
5a:e8:c2:a9:4c:0a:a8:80:4e:8b:9b:db:15:53:c4:
3a:b8:bc:b7:68:8f:53:c9:c4:92:60:04:34:69:0f:
eb:cf:3d:92:51:af:8a:65:89:80:67:19:75:af:b7:
51:dc:ae:f8:ae:12:4b:1c:1b:17:30:7b:fb:36:4c:
41:b5:36:53:4f:cb:11:d3:34:f9:9c:13:58:17:a2:
c7:e6:70:73:2f:0f:88:88:c0:48:39:d0:28:92:d0:
9b:c4:87:e7:1f:29:51:7a:a7:b6:a4:ed:fa:0c:ef:
62:fc:66:54:94:1f:a4:c7:ef:ee:fb:f0:93:6b:5d:
03:87:4b:bc:0d:2c:a0:40:55:bc:f0:91:2b:56:7b:
63:56:64:ca:6d:6e:58:b9:6c:14:b5:f6:f8:e0:37:
53:49:91:10:2d:b7:e1:68:7d:e3:23:0f:5a:51:2c:
b3:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:0D:A5:D0:3E:27:B0:AD:5C:AC:C2:C0:98:2B:29:BD:08:66:E3:C8
X509v3 Authority Key Identifier:
keyid:FB:70:DE:84:0F:D6:BF:4B:0A:FD:12:74:E4:4E:FD:1B:86:65:76:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-3DehA_Wv0sK_RJ05E79G4Zldiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9a3eac-f862-4789-ac21-d9444a3d0ce0/1/0g2l0D4nsK1crMLAmCspvQhm48g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9a3eac-f862-4789-ac21-d9444a3d0ce0/1/1-3DehA_Wv0sK_RJ05E79G4Zldiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.254.111.0/24
IPv6:
2a11:c900::/29
Signature Algorithm: sha256WithRSAEncryption
44:23:8a:69:65:3f:69:30:c4:64:0a:6c:30:42:be:0d:f0:ed:
73:54:cd:d3:5a:69:cb:9c:5f:0c:f5:14:4b:85:ac:ad:91:14:
b6:00:cb:32:ca:f2:75:d0:29:1d:f9:97:2b:e8:b5:69:f6:74:
f1:21:1e:8d:5e:e3:62:ca:75:14:6b:33:f9:25:b5:14:65:99:
43:da:6f:1d:c1:98:cf:cf:19:9f:e8:ad:5e:71:43:80:a9:00:
f9:9e:e4:24:69:98:46:c8:97:73:8f:03:d0:62:fb:60:ee:05:
d8:29:6a:89:4e:32:6b:c7:93:02:9a:6d:8e:5c:d5:e7:aa:36:
57:11:5f:93:ba:fe:17:94:88:59:cc:d5:bb:ce:94:be:a1:54:
81:f5:62:0c:42:7a:9b:8c:14:7a:04:79:76:4f:95:45:d4:a8:
a1:a2:e4:cb:eb:03:6e:4f:d2:07:b0:de:ab:8c:1f:00:84:3c:
f9:55:49:a3:c0:2f:cc:03:bd:86:1a:26:5c:0d:c7:83:eb:73:
09:6f:e5:65:f0:90:b6:53:ae:c6:93:6a:6c:ba:da:aa:0f:ed:
fa:5a:71:8f:ae:5a:7b:4e:14:1b:1c:80:90:39:4f:a0:d0:32:
d1:af:e5:01:f0:23:1c:82:63:d0:17:a2:15:44:39:5f:6b:52:
90:2f:f3:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:20 2023 by rpki-client on console-ams.rpki-client.org