Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/ffef96-bac5-4126-b2b7-0135d9128e86/1/aJNr-XDSbeYNxpWdpr9rS9mTOSY.roa
File: aJNr-XDSbeYNxpWdpr9rS9mTOSY.roa (raw, json)
Hash identifier: f0GXsWXGC8rtkIXJwU+DwPwN0u6BD2QOY/IHjLJ6ZUg=
Subject key identifier: 68:93:6B:F9:70:D2:6D:E6:0D:C6:95:9D:A6:BF:6B:4B:D9:93:39:26
Certificate issuer: /CN=a503b1dd410070ad62e4a2fc66a13b4eb61368f4
Certificate serial: 01844332BEAA2430DDCBF485EA5CD2886062
Authority key identifier: A5:03:B1:DD:41:00:70:AD:62:E4:A2:FC:66:A1:3B:4E:B6:13:68:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/ffef96-bac5-4126-b2b7-0135d9128e86/1/aJNr-XDSbeYNxpWdpr9rS9mTOSY.roa
Signing time: Fri 04 Nov 2022 15:11:49 +0000
ROA not before: Fri 04 Nov 2022 15:11:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207209
IP address blocks: 46.149.64.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:43:32:be:aa:24:30:dd:cb:f4:85:ea:5c:d2:88:60:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a503b1dd410070ad62e4a2fc66a13b4eb61368f4
Validity
Not Before: Nov 4 15:11:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68936bf970d26de60dc6959da6bf6b4bd9933926
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c6:50:20:df:64:2d:dc:5f:1c:68:de:4a:4d:
e6:a7:00:d4:4d:50:84:1e:b1:fa:9d:f7:5b:d2:cc:
1f:63:04:7d:28:cb:77:7d:5d:18:89:6c:22:cf:73:
f9:44:85:9f:50:be:0b:e0:4a:b4:67:95:bc:ae:67:
17:90:44:a5:48:f4:c3:74:15:38:b2:f7:3d:37:5c:
ca:28:36:92:76:44:5b:08:82:3c:36:00:08:c8:bf:
46:5a:54:6d:f4:59:50:dd:f5:bf:ee:dc:73:a5:19:
c9:c9:a1:8f:79:2c:27:48:5d:46:87:8d:18:b3:aa:
19:25:ef:14:34:24:95:bf:c9:84:91:67:25:57:a9:
58:af:5c:ef:eb:fc:56:bb:64:cd:15:75:c7:41:c2:
68:34:1a:ed:49:80:b0:31:ea:20:85:54:03:fa:41:
7c:f7:35:c1:13:6a:56:8e:3a:09:ce:70:51:ca:0b:
12:df:55:19:66:58:2a:19:c1:f9:35:f9:74:2b:d4:
53:8a:e4:d1:14:eb:bb:bb:eb:8a:2f:ba:04:44:fa:
bc:7b:6b:bd:a0:e2:8e:b9:4a:a7:4f:8c:74:ae:1c:
5a:c8:d7:81:e6:e0:62:b6:73:bc:b9:5d:d1:79:e8:
48:4f:63:0d:55:05:10:2e:29:e7:e8:6f:0e:09:69:
1d:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:93:6B:F9:70:D2:6D:E6:0D:C6:95:9D:A6:BF:6B:4B:D9:93:39:26
X509v3 Authority Key Identifier:
keyid:A5:03:B1:DD:41:00:70:AD:62:E4:A2:FC:66:A1:3B:4E:B6:13:68:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/ffef96-bac5-4126-b2b7-0135d9128e86/1/aJNr-XDSbeYNxpWdpr9rS9mTOSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/ffef96-bac5-4126-b2b7-0135d9128e86/1/pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.149.64.0/23
Signature Algorithm: sha256WithRSAEncryption
19:f2:e6:e2:1f:4b:38:00:38:43:fa:7c:c9:5b:db:cf:9a:aa:
62:0d:83:7d:64:d2:d5:e5:8f:aa:8a:6c:b8:9b:b7:a5:0c:61:
60:db:56:e7:69:8a:a0:dd:c6:d3:71:5b:ef:c7:95:38:b3:45:
4c:13:20:d5:99:a5:9c:03:d8:62:06:32:32:01:e3:93:14:08:
34:e6:95:bd:72:8a:83:da:5d:6c:a8:23:80:75:82:b4:01:44:
49:3b:de:f9:f5:7d:b5:9a:8a:de:6d:25:4c:e4:56:14:37:74:
70:66:4f:f9:91:31:00:cd:de:91:5d:10:2e:75:50:7a:cd:44:
ad:75:e1:77:57:06:9d:57:04:88:c2:39:b9:da:d2:a4:55:75:
c1:9c:1f:36:23:8b:38:77:8d:5c:30:e9:85:eb:86:3f:f8:b6:
7c:31:28:6c:a9:bb:f0:18:f8:3d:c3:61:12:06:bc:94:cb:32:
f5:5b:f7:2b:10:45:3e:55:4c:25:5a:04:c2:36:b8:b2:f0:af:
5e:d1:ed:7d:25:7d:74:6c:8f:23:61:8e:9f:47:cf:1a:e4:25:
a0:ff:af:26:dc:cd:c3:7f:e7:fc:74:4c:15:b5:86:fb:57:4d:
e2:88:49:af:af:e2:26:4c:27:3a:8d:6c:f4:bb:98:ae:7a:9d:
0b:ff:cc:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:24 2024 by rpki-client on console-fra.rpki-client.org