Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/dcb6fb-0e86-4d34-adc3-d93fd49ae8ef/1/MEZyDz5EQ2jPEMd9KJeaYL2GFnM.roa
File: MEZyDz5EQ2jPEMd9KJeaYL2GFnM.roa (raw, json)
Hash identifier: R6ndVjOj1RP494y/NUcgozTnRuU2o224K0DVquGajaE=
Subject key identifier: 30:46:72:0F:3E:44:43:68:CF:10:C7:7D:28:97:9A:60:BD:86:16:73
Certificate issuer: /CN=51f866f32b47c69d478ad95354e257e51a236a57
Certificate serial: 44A774FF
Authority key identifier: 51:F8:66:F3:2B:47:C6:9D:47:8A:D9:53:54:E2:57:E5:1A:23:6A:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ufhm8ytHxp1HitlTVOJX5Rojalc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/dcb6fb-0e86-4d34-adc3-d93fd49ae8ef/1/MEZyDz5EQ2jPEMd9KJeaYL2GFnM.roa
Signing time: Sat 01 Jan 2022 11:57:20 +0000
ROA not before: Sat 01 Jan 2022 11:57:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60463
IP address blocks: 46.21.218.0/24 maxlen: 24
46.21.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1151825151 (0x44a774ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51f866f32b47c69d478ad95354e257e51a236a57
Validity
Not Before: Jan 1 11:57:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3046720f3e444368cf10c77d28979a60bd861673
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:a2:88:97:66:fd:4f:e3:a7:80:08:63:dd:86:
b4:4e:32:72:34:97:ed:2a:7f:39:ac:41:45:18:20:
49:45:6a:ea:fe:8f:3e:ec:99:1e:a5:da:25:5a:59:
50:a4:47:68:22:4d:0e:6b:72:3f:41:ff:a2:9a:b0:
72:2b:71:a6:df:69:f2:19:65:81:96:3e:79:26:de:
d8:2a:8a:f4:d1:f0:9d:93:eb:db:77:94:e0:04:e1:
74:da:1b:57:1c:a6:de:81:92:fd:5e:3a:1a:15:2b:
91:ff:ed:c9:af:68:19:32:aa:4a:17:4d:9e:e7:c4:
c5:47:3b:a5:56:06:f1:92:2c:a3:02:58:b1:a6:45:
8c:60:4a:e8:bd:47:ef:26:1c:99:b5:d8:9e:74:ad:
38:3a:9d:78:cb:7a:77:23:db:f7:6f:68:5e:5d:c4:
c8:42:e9:c8:5e:a1:02:04:fa:eb:7b:8a:51:01:af:
2a:c8:78:e5:68:c0:1c:f7:8f:1d:7a:42:4b:e6:2a:
4c:f1:7f:12:e7:19:b2:bd:c0:8a:3c:7e:71:ab:94:
8a:55:aa:40:cb:fb:dd:ed:e9:af:c4:16:b9:04:21:
68:af:54:21:6f:42:b6:26:85:96:41:14:eb:de:3b:
c1:e2:77:ed:49:20:1e:4a:c9:3e:c0:20:c9:e0:86:
51:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:46:72:0F:3E:44:43:68:CF:10:C7:7D:28:97:9A:60:BD:86:16:73
X509v3 Authority Key Identifier:
keyid:51:F8:66:F3:2B:47:C6:9D:47:8A:D9:53:54:E2:57:E5:1A:23:6A:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ufhm8ytHxp1HitlTVOJX5Rojalc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/dcb6fb-0e86-4d34-adc3-d93fd49ae8ef/1/MEZyDz5EQ2jPEMd9KJeaYL2GFnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/dcb6fb-0e86-4d34-adc3-d93fd49ae8ef/1/Ufhm8ytHxp1HitlTVOJX5Rojalc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.21.217.0-46.21.218.255
Signature Algorithm: sha256WithRSAEncryption
34:09:79:ba:e2:b9:53:5d:fe:e1:24:b0:07:99:c8:2a:94:f7:
42:ff:3c:bd:43:da:13:71:5f:37:4e:2c:39:9f:a9:0b:0f:7e:
aa:7b:f7:d4:de:c6:87:f3:53:46:b2:31:f6:be:5b:a0:ab:8c:
3f:6c:36:1e:67:45:98:72:e9:c5:60:3c:46:de:93:3c:9c:f4:
ed:28:72:8f:27:d1:c2:47:8e:58:9f:c2:9c:f6:cc:a8:8e:a4:
c2:a4:0f:a9:57:89:73:f5:49:6c:51:cd:c9:76:6c:af:85:bd:
6e:45:1e:6d:73:98:3a:8d:a1:ce:9f:8e:98:6c:e4:2f:e7:10:
c2:73:75:b5:56:f2:42:ee:36:42:a8:1f:c7:76:65:70:96:cb:
81:c4:f5:3a:9f:0f:f9:b8:61:df:2f:de:9e:c9:7b:bf:6b:04:
99:26:a5:00:b4:0c:8c:be:e5:36:3e:67:eb:a5:f2:7d:7c:4b:
80:0a:2c:34:9d:a7:83:50:e5:17:5f:10:3c:b9:df:81:67:1c:
6b:89:a3:15:4d:0c:6a:46:a0:2f:e5:a4:7e:e1:c7:ca:2d:71:
3e:4b:91:41:c4:fb:34:ae:60:67:68:34:0c:34:e9:5b:54:85:
14:3c:7d:2f:23:30:38:15:db:ee:d1:05:77:90:ec:55:cb:19:
9e:92:1b:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:17 2024 by rpki-client on console-ams.rpki-client.org