Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/ca066e-8dca-4d28-944b-f959d4e1f289/1/BqqldNRkvcCpjfmpggQZZvo14e8.roa
File: BqqldNRkvcCpjfmpggQZZvo14e8.roa (raw, json)
Hash identifier: ZueDlypsOr4mNSnwDe2vztanxtemnUQwNZyj5oHNlJo=
Subject key identifier: 06:AA:A5:74:D4:64:BD:C0:A9:8D:F9:A9:82:04:19:66:FA:35:E1:EF
Certificate issuer: /CN=f7fdfc337d8ce0e05ef7f7b72af27eb61cd47037
Certificate serial: 1552BDA5
Authority key identifier: F7:FD:FC:33:7D:8C:E0:E0:5E:F7:F7:B7:2A:F2:7E:B6:1C:D4:70:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9_38M32M4OBe9_e3KvJ-thzUcDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/ca066e-8dca-4d28-944b-f959d4e1f289/1/BqqldNRkvcCpjfmpggQZZvo14e8.roa
Signing time: Sat 01 Jan 2022 06:58:00 +0000
ROA not before: Sat 01 Jan 2022 06:58:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9498
IP address blocks: 46.186.228.94/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 357744037 (0x1552bda5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7fdfc337d8ce0e05ef7f7b72af27eb61cd47037
Validity
Not Before: Jan 1 06:58:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06aaa574d464bdc0a98df9a982041966fa35e1ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1a:89:a1:a3:00:ae:ac:70:a2:a5:6c:89:dc:
51:45:25:77:68:30:ea:eb:79:32:ff:fb:58:95:2c:
ac:90:3e:be:91:1e:19:fe:c0:bc:9d:89:4a:1b:80:
7c:59:69:e9:58:ee:5f:d9:9d:36:f8:2b:e9:50:15:
ad:48:34:dd:54:f7:0a:cb:15:80:b0:7f:e3:7a:8b:
eb:87:fa:a1:29:bc:02:5e:29:d0:8c:49:07:dd:80:
3f:f0:b5:6b:e4:4f:a5:ff:d3:10:d0:6f:2c:35:17:
60:c1:8b:69:9f:6c:c0:41:71:48:07:c7:f4:5e:e6:
3c:d8:c4:a3:92:af:46:af:2b:63:aa:a9:d8:fa:ec:
e4:e9:5b:97:49:bf:0a:57:9b:bc:d6:66:ec:a0:11:
a9:42:bc:6a:6f:f9:8f:78:58:63:f0:33:7b:cc:f6:
d7:7b:c2:84:0d:b3:b0:4a:5c:0c:c5:30:52:07:a6:
18:77:21:55:db:f9:ce:70:2a:66:b1:c6:9a:d9:41:
cc:b0:b3:fa:25:14:1d:50:aa:5e:8e:0c:d3:c2:d5:
70:33:6b:4c:b2:9a:be:9f:1d:34:6b:bb:f9:c7:a7:
7d:e5:2e:ea:bb:c6:ef:07:da:5c:e7:de:6c:9b:e3:
0c:f7:79:e2:b0:d8:2e:75:bb:f9:7e:20:04:72:53:
e0:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:AA:A5:74:D4:64:BD:C0:A9:8D:F9:A9:82:04:19:66:FA:35:E1:EF
X509v3 Authority Key Identifier:
keyid:F7:FD:FC:33:7D:8C:E0:E0:5E:F7:F7:B7:2A:F2:7E:B6:1C:D4:70:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9_38M32M4OBe9_e3KvJ-thzUcDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/ca066e-8dca-4d28-944b-f959d4e1f289/1/BqqldNRkvcCpjfmpggQZZvo14e8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/ca066e-8dca-4d28-944b-f959d4e1f289/1/9_38M32M4OBe9_e3KvJ-thzUcDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.186.228.94/32
Signature Algorithm: sha256WithRSAEncryption
49:d2:a2:c1:43:82:8b:19:fa:5c:86:24:80:a4:0e:7b:19:2b:
80:c1:bb:25:d4:62:c3:15:ce:08:1a:42:9f:50:d7:ad:5d:32:
6e:0e:e6:ee:1c:76:69:06:28:2a:c9:02:30:c9:a8:30:5c:8f:
55:3c:15:47:8b:66:ee:08:25:64:73:ef:83:ef:15:a0:a5:7c:
30:f6:63:9b:df:0e:1a:d9:0b:76:72:cb:5f:6a:b8:db:a6:25:
9f:30:57:eb:48:cf:08:c9:b6:0a:5f:a7:56:ab:86:e4:2e:5e:
26:27:84:e5:d6:0c:c7:25:2b:45:89:32:3e:01:a4:96:78:22:
08:8f:96:db:aa:3b:3c:83:b8:c2:99:d2:61:76:46:30:18:3c:
ec:d7:88:8a:eb:08:18:10:72:92:db:b5:ab:f5:63:47:6b:22:
89:b1:65:cf:b9:26:e5:ed:7f:36:25:d2:7e:4f:a2:b1:b0:b7:
f0:a4:8f:b5:16:4d:e9:95:55:8d:f8:99:d1:11:e7:4e:b6:78:
7e:42:13:ae:74:ff:65:c2:41:9b:26:fb:09:07:04:d6:b2:2c:
18:66:b5:ce:c4:ee:37:bb:ed:98:54:93:e3:a7:9d:14:cc:ce:
f1:f8:1e:22:56:d8:c2:d2:1e:e1:79:9c:cd:63:45:dd:24:be:
2c:a9:84:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:57 2023 by rpki-client on console-fra.rpki-client.org