Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/92b8ae-9c09-443c-b8ba-436bfb9e77ed/1/Lf_AwOMUcAQrq-CG-W4uVKbxq7U.roa
File: Lf_AwOMUcAQrq-CG-W4uVKbxq7U.roa (raw, json)
Hash identifier: rAj16bshcZv3BVqTOcNWSyyD5ZtmCP947pzzii2O4Gc=
Subject key identifier: 2D:FF:C0:C0:E3:14:70:04:2B:AB:E0:86:F9:6E:2E:54:A6:F1:AB:B5
Certificate issuer: /CN=42ca1a1e3d0925423310c154b502c2842888e612
Certificate serial: 1219B7D6
Authority key identifier: 42:CA:1A:1E:3D:09:25:42:33:10:C1:54:B5:02:C2:84:28:88:E6:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsoaHj0JJUIzEMFUtQLChCiI5hI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/92b8ae-9c09-443c-b8ba-436bfb9e77ed/1/Lf_AwOMUcAQrq-CG-W4uVKbxq7U.roa
Signing time: Sat 01 Jan 2022 04:53:37 +0000
ROA not before: Sat 01 Jan 2022 04:53:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197240
IP address blocks: 46.30.104.0/23 maxlen: 24
46.30.108.0/24 maxlen: 24
46.30.110.0/23 maxlen: 24
46.30.106.0/23 maxlen: 24
46.30.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 303675350 (0x1219b7d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42ca1a1e3d0925423310c154b502c2842888e612
Validity
Not Before: Jan 1 04:53:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2dffc0c0e31470042babe086f96e2e54a6f1abb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:fd:0e:03:17:e0:63:2c:f2:e8:f5:c5:db:5e:
2a:e7:e5:08:e6:4a:42:dd:f0:d3:37:19:06:70:db:
f5:df:d8:21:dd:3b:07:b3:27:e6:53:b8:08:a7:59:
30:a3:fb:f9:c6:06:ce:0e:30:13:57:98:7f:0d:57:
c5:45:c2:0f:2e:3c:e7:e6:9e:2a:5b:f2:f8:4c:cc:
1f:f5:2a:e4:a7:f3:dc:fc:13:60:12:8b:cb:fc:9d:
1c:c2:8c:fc:7f:a8:71:c3:60:28:eb:fc:b7:ba:50:
fc:d6:b1:dc:c0:0b:ff:ef:50:65:fd:d7:52:46:e7:
ea:ee:53:fe:53:32:e1:44:6c:ad:dc:61:f5:54:dd:
24:08:a1:80:65:57:96:46:01:2d:48:a0:a8:a5:0b:
31:e8:d6:ad:64:2e:12:de:a0:ea:75:2d:d3:1d:30:
f0:a2:df:1e:e4:84:67:11:1a:d3:e6:76:45:8f:fc:
41:a0:2a:a1:c7:89:48:bb:df:be:34:a5:f7:81:56:
f2:4f:d9:61:9e:4b:d3:21:0c:5c:ad:19:8b:2b:78:
45:e1:6a:54:33:00:08:a6:71:66:aa:1b:dd:26:89:
19:04:be:9d:db:0b:bc:c9:13:ba:1b:eb:cc:01:04:
ea:35:8f:8b:c1:0a:b3:10:99:6d:74:ea:77:df:12:
68:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:FF:C0:C0:E3:14:70:04:2B:AB:E0:86:F9:6E:2E:54:A6:F1:AB:B5
X509v3 Authority Key Identifier:
keyid:42:CA:1A:1E:3D:09:25:42:33:10:C1:54:B5:02:C2:84:28:88:E6:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsoaHj0JJUIzEMFUtQLChCiI5hI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/92b8ae-9c09-443c-b8ba-436bfb9e77ed/1/Lf_AwOMUcAQrq-CG-W4uVKbxq7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/92b8ae-9c09-443c-b8ba-436bfb9e77ed/1/QsoaHj0JJUIzEMFUtQLChCiI5hI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.30.104.0/21
Signature Algorithm: sha256WithRSAEncryption
3d:1c:75:ce:60:43:03:2c:59:23:20:3c:b5:28:fb:1c:22:d2:
e4:88:1a:c2:17:8d:ae:72:8c:71:fe:54:4e:3c:33:c4:5b:93:
29:27:8f:06:b1:a6:9d:39:c1:58:a6:04:85:48:c0:6b:6b:6f:
7f:7f:ab:b5:de:df:5f:cc:02:cd:98:a7:b6:07:ba:00:9a:5d:
81:e6:39:fc:6f:0f:0a:c1:9c:12:53:42:4f:82:5b:ae:30:fe:
16:0b:f4:28:12:99:e9:50:31:b7:ee:93:41:9d:f7:f3:b3:78:
96:0b:65:d2:73:a3:94:58:85:da:fd:b6:b5:36:70:52:ae:e7:
6a:ce:1a:17:43:27:0e:7d:e0:f8:4c:bb:d5:c7:6f:5d:17:33:
32:10:c9:72:4a:db:9a:1b:b0:eb:4c:a9:50:9a:66:b7:bf:2f:
c3:81:55:f9:80:58:e4:20:79:ff:1e:1b:c8:3b:c4:7a:e8:73:
eb:97:24:6a:09:13:a8:95:65:c4:2e:27:fd:27:bf:68:fa:0f:
9a:3a:a5:c0:38:31:50:fb:4d:33:d3:d0:18:76:17:3b:07:44:
01:5f:0f:ef:ef:ef:63:32:7d:5e:bb:29:63:7d:bd:ed:2b:dc:
d0:70:ad:0b:ac:a5:eb:78:31:c9:94:bb:78:cc:32:e7:12:ef:
9b:6d:fe:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:10:19 2025 by rpki-client