Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/669ebf-ee7f-4eb7-8486-95ad92ac8698/1/s9gR_HKGkbIckBH_8fSxDdOIAxo.roa
File: s9gR_HKGkbIckBH_8fSxDdOIAxo.roa (raw, json)
Hash identifier: W1fPmdKmhZ0ECr18alpJyaojMXZIMageRoZPHvSMCj8=
Subject key identifier: B3:D8:11:FC:72:86:91:B2:1C:90:11:FF:F1:F4:B1:0D:D3:88:03:1A
Certificate issuer: /CN=1062bc36512658a0f7d3f96bc1d8e67d9fd4918b
Certificate serial: 047D7C86
Authority key identifier: 10:62:BC:36:51:26:58:A0:F7:D3:F9:6B:C1:D8:E6:7D:9F:D4:91:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EGK8NlEmWKD30_lrwdjmfZ_UkYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/669ebf-ee7f-4eb7-8486-95ad92ac8698/1/s9gR_HKGkbIckBH_8fSxDdOIAxo.roa
Signing time: Sat 01 Jan 2022 04:57:00 +0000
ROA not before: Sat 01 Jan 2022 04:57:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197297
IP address blocks: 195.245.86.0/23 maxlen: 24
46.253.144.0/20 maxlen: 24
46.253.145.0/24 maxlen: 24
193.24.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75332742 (0x47d7c86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1062bc36512658a0f7d3f96bc1d8e67d9fd4918b
Validity
Not Before: Jan 1 04:57:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3d811fc728691b21c9011fff1f4b10dd388031a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:bc:c9:c1:12:39:b0:b5:f5:19:44:02:0c:ed:
67:ca:a9:80:18:a4:b2:a2:88:ed:66:60:1b:67:81:
16:e8:1b:e0:da:c8:b7:d5:4d:cf:c8:01:00:aa:3c:
74:7a:a5:e9:b8:36:53:1f:5e:99:c8:34:4b:32:05:
6f:ee:50:62:de:d1:9d:09:b2:2c:82:93:b9:da:9e:
25:73:e4:40:b0:bd:a3:65:9c:2d:38:16:bc:2c:e3:
6f:4c:a3:35:ea:8f:84:ae:c1:32:8e:6e:d3:70:d5:
a5:a8:0e:3c:f7:76:50:07:da:87:64:e0:af:61:d0:
a4:3d:70:f4:db:23:14:3f:0c:9a:29:7a:14:80:ae:
87:6f:c5:8b:3f:4a:e7:e7:6a:b2:8b:fa:9f:ed:c7:
82:1d:0c:dc:c6:8d:f5:01:bd:bb:1a:1f:12:31:c4:
2b:69:3a:5a:2f:fc:c0:69:7d:aa:37:ac:39:4e:01:
34:a6:dd:4e:ad:aa:8d:e0:e9:3f:bb:46:3a:91:ba:
d4:8b:89:ca:02:5d:95:5e:ce:17:08:fb:f9:7f:a6:
1d:b2:82:72:7b:c0:93:8e:5b:f6:1f:23:0c:f4:04:
af:b8:0e:87:4e:c1:cf:34:ae:a5:95:62:ed:10:04:
d5:8c:48:c3:c8:48:7a:ab:e7:e8:e3:0b:6d:b5:7c:
7d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:D8:11:FC:72:86:91:B2:1C:90:11:FF:F1:F4:B1:0D:D3:88:03:1A
X509v3 Authority Key Identifier:
keyid:10:62:BC:36:51:26:58:A0:F7:D3:F9:6B:C1:D8:E6:7D:9F:D4:91:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EGK8NlEmWKD30_lrwdjmfZ_UkYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/669ebf-ee7f-4eb7-8486-95ad92ac8698/1/s9gR_HKGkbIckBH_8fSxDdOIAxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/669ebf-ee7f-4eb7-8486-95ad92ac8698/1/EGK8NlEmWKD30_lrwdjmfZ_UkYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.144.0/20
193.24.252.0/22
195.245.86.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:69:30:02:e2:f1:83:89:a6:ed:ab:2e:9e:d8:e2:24:cb:41:
1c:bb:8d:df:dc:ab:d4:c0:70:3c:85:9e:7a:bc:71:6d:a2:b9:
fc:53:04:b7:42:f5:08:e7:6a:eb:7b:e4:cf:2d:42:34:db:e6:
43:db:c0:95:c3:9a:0e:46:43:17:65:b0:0f:3f:35:18:38:05:
ef:6f:aa:76:95:18:86:d0:0b:2c:c5:dd:27:37:92:c1:80:aa:
13:9d:28:f0:e7:cc:80:82:33:8c:43:70:93:67:e0:1a:45:91:
54:44:df:e1:68:f2:b8:9d:d4:0a:05:8f:33:1e:f9:68:ea:21:
75:7d:0a:9c:02:85:3f:64:c2:5b:ff:c4:ec:a5:5d:e7:df:f6:
c8:96:1b:b3:f2:01:3f:85:6f:9f:54:de:ed:ad:8c:b2:b4:1f:
1e:a5:6b:08:e1:e9:f2:f6:90:a1:b2:49:c5:74:56:28:44:42:
78:a0:51:a3:c7:c4:ed:de:74:49:2b:11:5c:83:2d:87:a3:15:
d2:c9:ab:61:c5:77:9f:9e:fe:9d:f6:9a:49:60:7d:47:13:13:
8a:34:b1:3c:4f:48:a0:11:7b:6f:df:a1:6d:f1:07:09:91:48:
ae:cf:31:75:de:49:bc:b0:46:31:04:84:dc:3f:58:c6:06:eb:
85:00:4d:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:01 2024 by rpki-client on console-fra.rpki-client.org