Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/U4_NChNiS0kvKQsqKvdRYF8WoZc.roa
File: U4_NChNiS0kvKQsqKvdRYF8WoZc.roa (raw, json)
Hash identifier: LOzsIkBWC4qi3bCPwDQ/g9GA1G7GFOjvGTJtykVWJmA=
Subject key identifier: 53:8F:CD:0A:13:62:4B:49:2F:29:0B:2A:2A:F7:51:60:5F:16:A1:97
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 046694E2
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/U4_NChNiS0kvKQsqKvdRYF8WoZc.roa
Signing time: Fri 25 Feb 2022 09:35:10 +0000
ROA not before: Fri 25 Feb 2022 09:35:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 269729
IP address blocks: 46.29.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73831650 (0x46694e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Feb 25 09:35:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=538fcd0a13624b492f290b2a2af751605f16a197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8e:58:eb:d9:a1:51:2f:d8:02:98:67:f0:76:
2e:e3:d0:b0:f1:f1:33:ea:ad:7a:09:55:0b:10:7f:
3e:61:8a:f6:22:9d:4a:29:a3:1e:3a:eb:37:06:22:
f7:6d:ef:de:68:6c:4d:77:ab:ae:6a:97:23:d7:d3:
17:e6:ef:0a:c6:c1:dd:58:63:d7:73:31:65:ee:56:
27:aa:73:bd:0a:3f:5b:11:9a:fa:2a:28:d7:74:af:
31:14:e2:56:f7:37:11:72:63:79:04:84:41:38:92:
77:49:bf:43:80:8c:b3:52:d7:22:b6:a0:e8:b5:b6:
b7:2e:a1:79:2d:f4:8f:f8:e5:a5:77:63:75:8d:4e:
22:b1:69:fa:00:b0:72:9e:38:a4:b2:c0:61:73:ae:
12:4e:21:e2:80:a1:6c:a9:b3:c5:b0:12:5a:95:7a:
6d:ee:01:cc:e2:38:35:a5:fd:06:c2:39:24:eb:76:
ef:8a:59:02:39:d1:37:42:58:4d:4e:bc:02:16:f3:
72:6f:b7:20:49:78:e2:60:fd:b8:3c:8f:7d:ca:40:
84:78:11:1e:4b:31:6a:34:6d:40:2e:01:3a:65:1a:
02:0d:e7:09:b6:30:c9:8f:64:43:09:48:0f:a5:26:
8c:e7:80:86:1e:04:7a:4a:62:ac:c4:6e:30:aa:01:
fc:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:8F:CD:0A:13:62:4B:49:2F:29:0B:2A:2A:F7:51:60:5F:16:A1:97
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/U4_NChNiS0kvKQsqKvdRYF8WoZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.29.30.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:fb:3d:a5:35:09:95:aa:b3:29:13:e6:93:81:ad:96:ab:84:
69:ad:48:c3:d3:50:b8:2e:1c:72:d6:39:2a:eb:9b:d7:23:4c:
bc:c0:13:b8:6f:d2:00:8e:96:0c:91:40:22:62:85:c0:1a:a0:
93:97:90:92:e9:e1:11:a1:9b:2c:59:f9:12:a0:17:12:f6:50:
59:28:d9:33:14:dd:60:79:08:0a:bd:98:c0:2a:21:1d:dd:09:
4e:ca:96:31:93:d5:c1:18:be:da:b7:5e:7b:87:7d:cd:c0:eb:
42:97:49:d9:e8:31:d3:59:84:ba:c2:02:1f:e1:0e:f8:7b:13:
d5:e9:0c:f0:21:01:78:fb:54:2d:49:3c:d0:6c:d1:ed:69:82:
c1:fb:c2:f5:2a:86:bd:4b:96:31:13:37:24:71:37:1e:c4:42:
ff:27:22:6b:20:bf:4b:4b:0f:90:e9:fd:b7:46:d4:c0:f0:20:
07:b0:bf:c6:1e:95:e9:0b:c9:fe:5c:4c:21:09:1f:8b:fa:b1:
b8:d5:50:10:16:e2:27:d1:5b:ad:a6:00:e2:d9:73:f3:a5:9c:
65:a3:ca:a9:0f:f0:a5:cd:44:98:86:42:ce:76:86:93:39:d2:
6d:eb:72:b1:41:66:b0:7f:50:01:29:a2:71:b6:58:36:c9:79:
7c:8d:2e:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:49 2023 by rpki-client on console-fra.rpki-client.org