Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/46shg-B9J4ws5mgB8S4ImRQJCR0.roa
File: 46shg-B9J4ws5mgB8S4ImRQJCR0.roa (raw, json)
Hash identifier: EfqepasGw8JpWOtJEuji7J//pGe2ujoUlXuDeCAQxRw=
Subject key identifier: E3:AB:21:83:E0:7D:27:8C:2C:E6:68:01:F1:2E:08:99:14:09:09:1D
Certificate issuer: /CN=ccbf95b47ab2b99c222bfe54521efd1ab67d267f
Certificate serial: 06164BBF
Authority key identifier: CC:BF:95:B4:7A:B2:B9:9C:22:2B:FE:54:52:1E:FD:1A:B6:7D:26:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zL-VtHqyuZwiK_5UUh79GrZ9Jn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/46shg-B9J4ws5mgB8S4ImRQJCR0.roa
Signing time: Sat 01 Jan 2022 01:58:59 +0000
ROA not before: Sat 01 Jan 2022 01:58:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209838
IP address blocks: 213.170.200.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102124479 (0x6164bbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccbf95b47ab2b99c222bfe54521efd1ab67d267f
Validity
Not Before: Jan 1 01:58:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e3ab2183e07d278c2ce66801f12e08991409091d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f0:38:bd:e0:79:23:07:43:6c:3b:23:d8:c0:
a3:f9:84:4e:bd:a6:59:e2:2d:58:63:bd:bc:27:1e:
7a:2f:d7:10:31:c1:90:a0:5d:da:2e:6d:23:01:94:
60:00:dd:ac:7c:80:be:8a:10:fc:d8:b8:d5:38:07:
f1:30:5c:90:d3:13:d6:b3:81:c5:fc:38:b2:37:0f:
9a:fd:7b:03:a7:49:59:b7:3f:ce:97:bf:6b:9a:d4:
6a:cf:fa:ed:96:cd:b8:04:45:48:54:77:02:c4:03:
d8:6d:64:ee:1c:ab:11:2f:d5:5c:88:d0:5c:62:9e:
1f:e2:c5:1a:c6:e7:2d:f5:f2:7b:ce:46:61:09:c8:
ba:d2:3b:8b:8f:5e:86:6e:bd:c9:04:97:d7:a7:2a:
c2:d8:69:9e:f2:20:6a:ec:e3:71:4b:12:9b:9c:41:
9a:5e:ea:32:ad:09:c6:3b:85:35:1b:f4:70:3a:3b:
bd:82:d8:54:92:ff:f7:09:8c:00:7d:be:54:8c:f8:
91:ec:84:6c:0b:66:63:ad:ba:34:77:b9:bb:f7:33:
da:cc:e5:f7:0d:3f:c9:7d:c1:5f:86:52:61:bf:73:
20:12:0a:e1:24:c2:27:3e:da:68:d2:11:21:80:2b:
ca:8b:63:c0:1f:4d:6b:98:99:f4:79:6a:8e:0c:49:
0b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:AB:21:83:E0:7D:27:8C:2C:E6:68:01:F1:2E:08:99:14:09:09:1D
X509v3 Authority Key Identifier:
keyid:CC:BF:95:B4:7A:B2:B9:9C:22:2B:FE:54:52:1E:FD:1A:B6:7D:26:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zL-VtHqyuZwiK_5UUh79GrZ9Jn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/46shg-B9J4ws5mgB8S4ImRQJCR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/zL-VtHqyuZwiK_5UUh79GrZ9Jn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.170.200.0/23
Signature Algorithm: sha256WithRSAEncryption
82:7f:ae:3f:cf:27:32:8e:8a:84:08:31:a2:10:bd:c5:4f:d8:
7e:59:ee:57:ae:a1:ec:e4:0c:09:00:ac:2e:f6:32:87:f1:7a:
90:45:67:a3:72:63:a2:69:5d:f2:f5:af:7a:ad:90:60:32:ae:
ad:f8:f0:a1:ca:dc:37:25:0e:dd:c0:18:38:fc:01:2c:a3:03:
91:f5:d2:2c:e7:02:e4:b5:ed:1b:a2:56:8c:ad:b0:e4:da:69:
45:4f:76:44:50:c1:f9:65:ff:f5:93:41:52:d3:94:27:c4:fd:
5c:91:ea:25:cb:40:8e:2a:c7:64:2f:23:74:2d:db:b7:6c:01:
d6:c6:58:71:74:b8:fe:bd:b6:08:8f:6c:df:db:0c:f5:81:24:
fe:c0:c1:9e:60:a7:44:11:d9:28:0e:84:4e:dd:7c:09:e0:98:
d2:63:2e:04:f4:59:d2:7b:e0:88:56:2c:d0:fb:22:43:45:3a:
62:a8:a9:3c:5b:6c:50:c6:b1:e9:19:62:69:32:62:e8:42:9a:
6d:e5:52:c1:2c:a7:ae:3c:bf:fc:2c:e3:fd:20:92:75:50:ec:
1d:6a:c4:7f:f4:5d:c9:06:25:e0:7e:f7:f7:02:d4:31:21:5e:
7e:ab:27:83:89:d0:9d:45:c2:62:75:70:a4:37:a4:be:6d:f2:
fc:64:de:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:58 2024 by rpki-client on console-ams.rpki-client.org