Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/udPu5fh0upE4PKBdsT3iFOBEdSU.roa
File: udPu5fh0upE4PKBdsT3iFOBEdSU.roa (raw, json)
Hash identifier: mYbmrQ8XiP0LjDIC3vzKT0/wxU3P2bl0ApHeUZ+8hHg=
Subject key identifier: B9:D3:EE:E5:F8:74:BA:91:38:3C:A0:5D:B1:3D:E2:14:E0:44:75:25
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 38EE76B3
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/udPu5fh0upE4PKBdsT3iFOBEdSU.roa
Signing time: Sat 01 Jan 2022 12:56:54 +0000
ROA not before: Sat 01 Jan 2022 12:56:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48434
IP address blocks: 46.38.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 955152051 (0x38ee76b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Jan 1 12:56:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b9d3eee5f874ba91383ca05db13de214e0447525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ac:df:f3:00:d6:aa:48:8c:b5:3b:20:fd:e0:
c4:48:e2:08:51:76:0a:45:ff:54:f1:18:8d:8a:1f:
bb:70:95:2c:3a:09:bd:b3:98:fe:6d:ca:b1:55:63:
79:83:d8:d4:fc:a7:35:53:4f:a8:06:ed:5e:10:c4:
04:77:6a:94:0b:4f:a5:e6:19:dd:d8:9f:86:29:66:
39:6d:d9:b8:30:1b:85:6b:59:7a:7c:c6:4f:a1:3a:
34:fe:93:61:b3:71:59:79:6c:0c:c4:d7:e7:17:2b:
52:b7:64:51:42:a8:67:4a:5a:be:c0:8e:7a:d5:62:
a3:29:06:a1:1d:b1:72:a0:e6:6c:df:77:a9:ff:35:
05:eb:d6:e5:e7:3d:46:d3:a3:8f:5d:3f:6c:8e:b8:
2d:24:93:92:d5:db:b9:1c:cd:78:d4:6b:4d:09:57:
ce:42:a9:52:eb:1f:1b:d4:c6:b8:06:1e:e9:90:72:
08:35:82:67:e0:42:20:39:f1:2e:05:ec:55:84:9f:
07:78:38:ff:4a:bf:61:6e:2c:b8:49:1f:c2:ab:53:
23:6f:b9:e5:c6:b6:03:65:3c:af:b5:e5:2d:52:52:
10:66:92:39:47:c3:5a:b0:4e:a9:9c:8e:ee:da:11:
69:49:96:49:2a:1e:ad:74:bb:70:04:63:23:ab:e3:
d6:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:D3:EE:E5:F8:74:BA:91:38:3C:A0:5D:B1:3D:E2:14:E0:44:75:25
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/udPu5fh0upE4PKBdsT3iFOBEdSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.159.0/24
Signature Algorithm: sha256WithRSAEncryption
08:0f:a2:74:51:f2:ce:8f:4c:84:88:2f:c3:18:a9:c9:9e:6b:
4d:2e:25:39:85:fd:ba:51:77:27:dc:31:19:54:80:11:35:1c:
62:3a:2d:48:a7:d4:1a:b8:4d:89:58:2a:ff:bd:2a:90:5f:ea:
1d:35:1c:44:b4:57:ab:b0:26:23:3e:06:cd:53:73:c0:cc:46:
ab:b9:f9:50:b8:07:36:e6:d4:42:24:05:89:68:99:21:0b:c8:
b2:6a:b7:37:1c:a1:fc:dd:39:3d:df:37:d4:f8:da:13:6d:2e:
10:20:a8:2b:81:61:75:73:0e:7f:cf:57:b6:e6:3a:c3:e3:76:
9f:e7:b7:9a:61:85:8a:f2:0a:15:73:4b:17:d1:cb:57:df:70:
c2:01:a4:1c:aa:78:7e:a9:25:73:f4:9d:58:5f:5d:82:58:bf:
60:aa:60:52:4f:fa:f7:30:c7:60:85:a7:f0:2e:b6:22:60:1f:
55:58:21:bb:f1:60:52:da:69:05:8f:32:06:06:ed:10:84:86:
14:45:d1:90:4a:3c:4b:7b:67:fb:2a:4c:d7:c0:41:84:5a:35:
a5:cb:6b:06:33:39:0c:8d:28:9b:6b:10:b3:e7:dd:61:be:49:
ed:4c:7b:2d:b0:04:2f:49:b1:39:ba:41:f6:04:fb:78:ff:2b:
75:3e:e9:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:58 2023 by rpki-client on console-fra.rpki-client.org