Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/656JRYw6oLr_p64M3CqNysRCAgI.roa
File: 656JRYw6oLr_p64M3CqNysRCAgI.roa (raw, json)
Hash identifier: IaWvxDefbqFH18LOgvVrIIahjyRedCMxn2zXo57mOZo=
Subject key identifier: EB:9E:89:45:8C:3A:A0:BA:FF:A7:AE:0C:DC:2A:8D:CA:C4:42:02:02
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 0182355CB09160BECC522C54036B51716D47
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/656JRYw6oLr_p64M3CqNysRCAgI.roa
Signing time: Mon 25 Jul 2022 12:37:23 +0000
ROA not before: Mon 25 Jul 2022 12:37:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48434
IP address blocks: 212.16.71.0/24 maxlen: 24
46.38.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:35:5c:b0:91:60:be:cc:52:2c:54:03:6b:51:71:6d:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Jul 25 12:37:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb9e89458c3aa0baffa7ae0cdc2a8dcac4420202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:7a:42:71:38:2d:86:96:17:92:c3:26:fc:d9:
a4:2c:81:e3:eb:00:fc:bf:20:a1:2a:3b:83:33:22:
29:39:e3:3a:6e:1b:2a:c8:b6:06:74:6a:d1:4d:96:
38:43:53:79:8a:d2:c8:bd:1f:3d:8e:6f:54:3d:32:
2b:83:28:89:cf:06:4a:55:ab:d8:b5:42:69:42:ac:
6a:86:ff:16:51:f6:be:7f:89:43:ec:4d:bf:6e:48:
b1:b8:b2:90:34:d4:74:ad:b3:a0:f1:26:18:9f:05:
47:45:0e:f6:4e:9b:93:8b:d2:05:87:3d:34:dd:a2:
96:55:0c:c3:d5:d4:f5:0c:ae:5b:8d:ca:42:72:ad:
bb:c2:71:0f:74:a1:d9:58:f3:ac:92:a7:1a:a1:77:
71:6a:93:2b:3c:f8:ff:a1:68:2d:3e:6b:d1:11:80:
5f:64:4d:13:2c:65:38:b9:97:29:59:20:8f:bd:d4:
bc:34:29:6c:9a:2e:1f:05:ed:84:3f:b9:69:36:36:
99:e1:15:14:9d:59:d9:9f:d6:53:11:bc:ed:12:ac:
5f:45:08:42:b8:be:a2:f6:ea:8c:86:25:69:9f:05:
03:9b:c0:2d:ae:09:e9:76:7f:cf:18:31:3f:76:34:
c4:89:a0:25:a2:1d:23:77:b0:8c:fa:77:77:10:cd:
63:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:9E:89:45:8C:3A:A0:BA:FF:A7:AE:0C:DC:2A:8D:CA:C4:42:02:02
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/656JRYw6oLr_p64M3CqNysRCAgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.159.0/24
212.16.71.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:04:67:d0:39:5d:32:96:5c:8e:3e:71:be:e4:74:2c:d0:94:
bb:e3:bf:fc:fe:23:de:d3:57:33:86:ae:d2:8d:17:a0:07:27:
ce:51:c6:04:9f:41:25:1b:d1:37:57:87:ec:28:ec:36:ee:14:
bb:cc:62:25:2c:02:c0:d1:5e:a3:ce:73:31:bd:9c:79:63:7a:
9d:fe:1b:fa:a3:9e:32:47:c3:15:00:5a:95:eb:4d:1d:b7:1c:
a3:c2:d6:ae:ad:fa:5a:56:c0:2b:9e:50:f3:35:12:ce:26:17:
9b:e6:3c:b8:f5:2d:1d:d5:ad:35:da:5d:db:5b:3f:06:31:d3:
55:e6:14:42:94:5d:67:0c:49:46:26:19:0d:80:cf:26:42:54:
1a:6f:f2:b4:30:43:5e:f9:ca:1c:c9:b1:e1:32:9d:f4:01:d0:
95:6d:70:19:57:db:1f:c6:74:c7:70:56:a4:2e:61:bd:0a:95:
c5:07:18:a5:a3:f5:f3:fb:68:6c:ce:5d:9f:fc:7d:5d:ce:91:
6e:22:a7:58:e9:39:53:d2:36:0b:ca:2c:cc:42:3a:a6:c4:bd:
f0:7a:33:9c:db:7a:68:1b:b5:39:92:5a:c1:93:42:d8:1c:53:
7b:22:b8:90:b3:78:3e:dc:a1:10:fb:36:bf:41:ef:8f:09:98:
8d:a4:80:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:58 2023 by rpki-client on console-fra.rpki-client.org