Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/792737-6a02-424b-82cb-a29ce7da10fd/1/hKlZ7dX6kqlH5ZeedgOnr4gSk-k.roa
File: hKlZ7dX6kqlH5ZeedgOnr4gSk-k.roa (raw, json)
Hash identifier: L3HdM6jl2wW6pkKvYKZ3Jn7mdoeZ0RZSA/JtYlW/Fu8=
Subject key identifier: 84:A9:59:ED:D5:FA:92:A9:47:E5:97:9E:76:03:A7:AF:88:12:93:E9
Certificate issuer: /CN=cf40fdd82a0fdf3b70be18221eeba60d801ed7bf
Certificate serial: 0930F695
Authority key identifier: CF:40:FD:D8:2A:0F:DF:3B:70:BE:18:22:1E:EB:A6:0D:80:1E:D7:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z0D92CoP3ztwvhgiHuumDYAe178.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/792737-6a02-424b-82cb-a29ce7da10fd/1/hKlZ7dX6kqlH5ZeedgOnr4gSk-k.roa
Signing time: Sat 01 Jan 2022 15:02:06 +0000
ROA not before: Sat 01 Jan 2022 15:02:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208149
IP address blocks: 46.227.56.0/24 maxlen: 24
185.51.132.0/24 maxlen: 24
2001:1548:200::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154203797 (0x930f695)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf40fdd82a0fdf3b70be18221eeba60d801ed7bf
Validity
Not Before: Jan 1 15:02:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84a959edd5fa92a947e5979e7603a7af881293e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4a:e6:25:95:12:ab:b0:62:e0:57:b9:88:95:
5f:7a:3a:f4:54:86:68:cb:b5:35:56:e1:fb:13:f7:
d4:25:2b:db:2e:44:39:6c:2f:64:49:dc:8d:f1:6b:
8c:db:08:f7:14:f7:ab:a5:e3:db:cb:6b:84:75:ce:
34:e9:5f:9e:3a:0c:fd:c8:88:99:3b:5c:46:72:45:
82:77:a7:10:8b:d0:62:1b:53:83:a8:af:04:ca:2a:
bf:20:b8:ff:fb:80:af:18:9b:e5:54:73:49:c6:0c:
48:aa:d9:6f:08:50:f8:f8:53:e1:88:4b:88:72:af:
13:9d:b7:0c:d8:26:fa:cd:90:35:14:1a:80:0c:78:
6f:93:ae:f1:e8:d5:df:a3:62:aa:ba:6f:04:34:a6:
e0:ad:29:91:bc:94:2b:48:a7:0c:93:96:3a:45:1c:
22:92:33:60:33:d0:cf:9d:be:ce:6e:c8:83:24:58:
9f:27:7c:b2:71:a1:e0:dd:41:6b:bb:f5:bf:a7:48:
5d:97:35:36:43:7d:2a:5f:49:a3:e8:b6:a5:ba:88:
6a:eb:1b:56:63:b6:97:07:d5:63:9a:bc:72:7a:0a:
c7:4f:28:80:52:ea:cb:66:d5:a8:87:32:0e:66:8d:
d4:59:6a:a6:57:dd:73:60:ac:0b:b2:e4:4f:d8:35:
3d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:A9:59:ED:D5:FA:92:A9:47:E5:97:9E:76:03:A7:AF:88:12:93:E9
X509v3 Authority Key Identifier:
keyid:CF:40:FD:D8:2A:0F:DF:3B:70:BE:18:22:1E:EB:A6:0D:80:1E:D7:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z0D92CoP3ztwvhgiHuumDYAe178.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/792737-6a02-424b-82cb-a29ce7da10fd/1/hKlZ7dX6kqlH5ZeedgOnr4gSk-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/792737-6a02-424b-82cb-a29ce7da10fd/1/z0D92CoP3ztwvhgiHuumDYAe178.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.227.56.0/24
185.51.132.0/24
IPv6:
2001:1548:200::/48
Signature Algorithm: sha256WithRSAEncryption
62:97:ec:c7:05:c0:18:69:80:b0:09:1c:db:e4:f2:9a:56:d4:
57:cd:b8:a1:7c:05:e7:76:69:58:18:b2:30:80:df:a1:a6:dd:
0a:d8:4b:e9:a6:e2:63:9d:e4:08:0e:1a:cb:e7:3a:71:47:7d:
5a:18:12:ab:5c:e8:8f:1b:27:97:02:e4:31:58:13:ec:fb:49:
76:38:f2:89:57:ca:03:a8:6a:6c:f0:b1:4b:06:be:7f:26:58:
a8:4e:c4:b5:5a:41:af:69:44:9f:01:f6:cf:98:47:f1:c1:1b:
ef:e0:34:95:a0:8c:d0:ff:ed:a2:ae:1f:2d:68:34:9c:dd:3e:
53:b7:94:ba:63:f5:c9:c7:7e:55:ab:87:b5:97:4d:a5:8f:86:
f1:bd:bc:58:9d:93:96:f5:3e:d9:cc:58:15:59:3a:ce:19:5e:
21:df:b5:f4:fb:04:c8:1d:57:03:4f:b7:ec:3a:b4:1f:6c:f6:
c6:4c:de:ac:db:7e:53:c8:20:81:6c:fe:0d:db:27:76:82:a0:
b4:1a:4f:f3:5a:f2:7c:e0:32:36:d8:30:58:1d:7c:d1:47:6c:
4b:cb:31:8d:7d:9f:4e:38:2a:68:fb:b1:6d:5d:13:45:92:73:
36:da:47:fe:c9:4e:b6:4c:d3:07:9b:43:0c:83:c5:b2:67:95:
45:a1:26:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:54 2024 by rpki-client on console-fra.rpki-client.org