Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/xkCDwBoDBF-F0bgeY7Up_mvPoG0.roa
File: xkCDwBoDBF-F0bgeY7Up_mvPoG0.roa (raw, json)
Hash identifier: q92UccEIolwCGEzpV+vuMk3Cc/qc/rADs3t4BDfmsYU=
Subject key identifier: C6:40:83:C0:1A:03:04:5F:85:D1:B8:1E:63:B5:29:FE:6B:CF:A0:6D
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 38F20E92
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/xkCDwBoDBF-F0bgeY7Up_mvPoG0.roa
Signing time: Sat 01 Jan 2022 12:56:57 +0000
ROA not before: Sat 01 Jan 2022 12:56:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211705
IP address blocks: 46.38.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 955387538 (0x38f20e92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Jan 1 12:56:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c64083c01a03045f85d1b81e63b529fe6bcfa06d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:27:45:65:86:18:f1:41:f8:78:c9:bc:3b:bc:
3a:c9:11:7f:57:36:6a:45:d9:1f:c8:c2:f6:73:c7:
2e:d2:c1:43:6e:6f:7c:1d:8d:ae:91:a3:0d:49:c3:
da:29:c5:51:00:ac:4b:99:9b:74:65:c8:d2:24:65:
92:fa:fd:f3:59:f3:14:ac:e2:1c:eb:78:a2:1e:67:
24:dc:4d:0f:cd:ee:fe:63:92:eb:31:5a:24:09:4b:
44:ec:d2:57:eb:0f:4c:50:71:f7:08:2e:46:cb:97:
43:5a:cd:09:e2:91:b3:97:33:f3:22:52:22:e1:18:
d7:59:7e:95:d2:17:6b:e6:54:a0:55:d1:49:dc:57:
9c:91:31:f2:aa:61:0d:e0:c5:c7:0f:3d:8c:e1:28:
58:c6:43:96:93:4e:52:86:96:59:09:bb:db:68:a4:
51:95:4f:16:8b:9d:2e:82:4d:ca:4c:65:c7:9b:0d:
b0:ae:91:b2:1c:6e:3c:59:59:01:65:83:6d:2c:ea:
9e:18:2e:af:94:03:54:43:6a:78:d1:fc:bf:9d:56:
1d:62:42:d8:1b:50:53:4c:bc:a3:84:5d:ad:f2:b8:
60:a8:92:96:fa:e8:31:7b:d2:a9:e2:fe:62:7d:c8:
e4:fa:70:6d:98:e7:52:de:c4:f6:49:23:2e:48:e8:
5d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:40:83:C0:1A:03:04:5F:85:D1:B8:1E:63:B5:29:FE:6B:CF:A0:6D
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/xkCDwBoDBF-F0bgeY7Up_mvPoG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.159.0/24
Signature Algorithm: sha256WithRSAEncryption
87:79:e3:87:d7:18:ea:c5:78:b8:9c:69:bb:c0:a3:ed:a9:90:
c4:96:44:2f:65:c9:a3:25:44:c7:9d:f2:ca:3b:5b:db:51:c1:
54:90:02:2c:da:29:c0:1d:16:f0:61:c7:54:27:2b:20:bc:65:
c0:2c:bf:e7:76:03:b3:8e:3f:4d:f7:96:c3:5f:54:7a:af:56:
77:d6:69:17:8a:78:65:fb:c3:ac:1f:1e:97:15:6f:ff:b6:8d:
00:29:b7:7c:83:c4:14:ab:35:f0:3f:73:72:b4:44:5e:d5:bb:
05:b1:cf:0a:5c:09:64:d5:05:db:c6:5a:95:1d:e2:84:ad:4b:
41:b6:8f:f9:2b:6a:18:04:27:1e:ef:0e:52:dd:c1:47:c4:63:
6a:f1:c8:2c:32:18:76:45:68:49:27:9b:1c:a0:04:29:24:42:
e9:66:20:c1:fb:3b:27:af:92:02:cc:6f:d1:7b:d2:53:65:a1:
2d:97:7a:24:31:e4:b1:6b:53:63:3e:55:4b:7a:21:59:e3:96:
61:21:1d:90:69:98:7a:da:81:db:4a:fb:ec:65:9c:ff:de:00:
77:a7:7c:d8:cf:24:f2:b5:b0:81:3d:8c:9c:65:15:5a:1a:1b:
66:94:1c:17:41:50:b6:79:69:4c:59:2b:56:80:86:20:51:39:
c1:46:eb:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:40 2023 by rpki-client on console-ams.rpki-client.org