Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/pyOuHeN6aslf0BtEpqYq_EFjmlQ.roa
File: pyOuHeN6aslf0BtEpqYq_EFjmlQ.roa (raw, json)
Hash identifier: tI3/+72cRrDDlMeSH9AT2AJ8SGaTbBo4EwTXCzxAxZ0=
Subject key identifier: A7:23:AE:1D:E3:7A:6A:C9:5F:D0:1B:44:A6:A6:2A:FC:41:63:9A:54
Certificate issuer: /CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Certificate serial: 08DBCC23
Authority key identifier: D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/pyOuHeN6aslf0BtEpqYq_EFjmlQ.roa
Signing time: Mon 10 Jan 2022 08:02:52 +0000
ROA not before: Mon 10 Jan 2022 08:02:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206774
IP address blocks: 46.252.1.0/24 maxlen: 24
46.252.3.0/24 maxlen: 24
46.252.5.0/24 maxlen: 24
46.252.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148622371 (0x8dbcc23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Validity
Not Before: Jan 10 08:02:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a723ae1de37a6ac95fd01b44a6a62afc41639a54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:38:8d:0a:63:ae:54:16:ea:65:b6:12:d7:15:
e0:ae:50:be:fe:4d:59:88:d3:4b:a3:20:a7:8b:c1:
70:bf:dc:e9:f7:26:6c:6c:ef:7d:e0:ac:31:8f:69:
43:8d:ac:38:af:12:8f:eb:e1:d1:46:f5:04:a2:82:
83:5c:e1:f9:dc:8c:06:47:9b:02:43:21:73:1d:e7:
4c:cc:f1:59:14:fc:6a:18:b9:d9:60:3d:94:b7:31:
f0:79:64:2b:03:d1:01:4d:a7:99:83:9a:c1:b6:e3:
8f:4b:00:a1:5a:ee:35:ef:c2:cb:3c:91:6e:f7:9b:
6b:2a:12:65:aa:d5:63:58:e7:29:ac:f9:58:5f:59:
dd:a3:4a:43:4e:b1:4f:72:31:41:43:fc:ea:cc:6a:
d0:cb:eb:4b:6d:b5:09:1c:3b:e5:aa:15:37:62:1d:
7f:3d:37:60:a9:17:16:46:57:a5:47:a9:b9:39:9d:
8f:44:cf:d7:22:53:d2:dc:d1:d6:7d:a8:63:17:c4:
03:d7:e1:ac:4e:de:80:84:a2:fe:8c:66:9b:60:a7:
3c:dd:1e:a5:94:bf:29:9b:e8:2a:58:c2:5c:29:d8:
8d:83:44:1c:a8:5e:ee:ca:8b:15:8b:2e:24:1f:9c:
61:e5:b3:24:75:26:7d:d2:dd:4b:11:5c:e6:56:72:
6c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:23:AE:1D:E3:7A:6A:C9:5F:D0:1B:44:A6:A6:2A:FC:41:63:9A:54
X509v3 Authority Key Identifier:
keyid:D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/pyOuHeN6aslf0BtEpqYq_EFjmlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.252.1.0/24
46.252.3.0/24
46.252.5.0/24
46.252.7.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:df:ac:72:da:b1:c5:9b:39:8c:1a:89:ab:dc:f8:31:f1:0c:
8d:c1:95:a7:2a:81:61:df:9e:ed:8f:d9:50:d1:9f:dd:92:04:
98:2a:aa:66:a3:49:54:6b:f8:26:93:c4:c4:47:43:dc:4a:0d:
b7:61:55:34:4f:d6:9e:7d:4c:b5:2c:89:20:69:c3:7f:03:44:
28:0d:0f:a8:1e:85:7f:2c:86:ed:51:22:6c:b4:f2:ff:fd:8b:
c6:cb:a9:c4:ba:bf:a0:0a:5b:f4:fa:77:bc:b0:5d:65:69:58:
90:5c:fb:c3:30:00:66:d9:be:2a:af:58:4a:ec:9c:59:f6:4a:
34:78:10:57:f9:ee:88:b4:c5:49:94:90:13:04:15:13:ac:46:
db:04:4a:82:84:a1:94:a1:b8:24:b2:4b:92:6f:83:08:6f:a6:
4f:6a:93:25:54:5c:b8:8f:cf:73:4e:4c:7a:8c:bf:59:fe:e8:
46:f4:aa:58:d1:de:b8:94:f8:53:ec:af:13:4a:04:67:c8:28:
f9:a7:ec:de:d0:33:7a:74:66:5c:58:f4:cf:75:b9:54:01:18:
00:88:8a:38:9c:8b:63:0e:cb:20:74:dd:e9:a3:71:1a:42:89:
c9:48:fe:29:66:ee:34:96:d1:3e:30:89:fc:80:7b:e1:f0:b3:
be:97:99:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:57 2023 by rpki-client on console-fra.rpki-client.org