Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/c144dc-f562-4a3e-b6ca-c162ddfdee73/1/FUBClnhNHYBr9J4yoUPy2Xl2Fa4.roa
File: FUBClnhNHYBr9J4yoUPy2Xl2Fa4.roa (raw, json)
Hash identifier: /Bj3JMzBdiAAX3bqcUB0EyOR+G+CX66jkKSURcNXoMw=
Subject key identifier: 15:40:42:96:78:4D:1D:80:6B:F4:9E:32:A1:43:F2:D9:79:76:15:AE
Certificate issuer: /CN=59ce1cc57acd4d8181ed305385dee78db175e221
Certificate serial: 05D9337C
Authority key identifier: 59:CE:1C:C5:7A:CD:4D:81:81:ED:30:53:85:DE:E7:8D:B1:75:E2:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wc4cxXrNTYGB7TBThd7njbF14iE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/c144dc-f562-4a3e-b6ca-c162ddfdee73/1/FUBClnhNHYBr9J4yoUPy2Xl2Fa4.roa
Signing time: Sat 01 Jan 2022 12:04:35 +0000
ROA not before: Sat 01 Jan 2022 12:04:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205254
IP address blocks: 185.255.44.0/24 maxlen: 24
185.255.46.0/24 maxlen: 24
185.255.45.0/24 maxlen: 24
185.255.47.0/24 maxlen: 24
46.161.192.0/24 maxlen: 24
46.161.198.0/24 maxlen: 24
46.161.197.0/24 maxlen: 24
46.161.193.0/24 maxlen: 24
46.161.199.0/24 maxlen: 24
46.161.194.0/24 maxlen: 24
46.161.196.0/24 maxlen: 24
46.161.195.0/24 maxlen: 24
2a0c:58c0::/29 maxlen: 29
2a0c:58c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98120572 (0x5d9337c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59ce1cc57acd4d8181ed305385dee78db175e221
Validity
Not Before: Jan 1 12:04:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=15404296784d1d806bf49e32a143f2d9797615ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:95:89:1a:2f:01:59:2e:e3:c9:01:53:56:d9:
af:45:e0:d4:6c:49:5b:b3:ce:f7:08:15:bf:d7:5c:
76:4f:c6:38:f9:7f:cb:88:24:24:0f:e9:5f:bc:83:
20:33:d7:c3:93:6b:08:db:3a:d6:45:4c:88:7e:fd:
64:c5:ef:b4:16:33:26:bf:8b:9e:d5:21:90:16:8b:
1c:8f:7e:f1:c7:2f:78:af:4d:bc:81:4e:0e:3b:76:
8b:9f:70:bc:ac:f4:e2:02:29:b9:6f:07:64:b2:9a:
8d:44:07:8a:4d:7f:d5:88:0a:90:06:8e:f7:95:8c:
8d:7f:02:6e:1e:1d:59:86:30:99:7f:c6:0f:34:82:
6f:2c:22:28:94:2d:3d:2d:45:ea:18:89:13:a2:8e:
73:54:b6:e8:d9:f2:72:0d:cc:8f:50:f6:d7:b7:2d:
77:09:58:e8:f4:36:a0:11:69:11:d3:15:6f:82:2e:
3e:29:09:36:63:7e:85:ef:9b:69:98:d1:41:1f:d2:
0e:f1:84:29:f5:ca:48:b4:fa:3c:58:0b:44:3c:79:
74:a1:f0:5d:b0:c2:d7:6c:2c:1e:6d:e7:8c:e5:eb:
84:c7:15:ee:db:ba:2e:8b:27:08:2b:9f:b1:26:dd:
73:28:6e:34:6f:01:8f:58:fa:57:00:ef:df:f0:8e:
72:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:40:42:96:78:4D:1D:80:6B:F4:9E:32:A1:43:F2:D9:79:76:15:AE
X509v3 Authority Key Identifier:
keyid:59:CE:1C:C5:7A:CD:4D:81:81:ED:30:53:85:DE:E7:8D:B1:75:E2:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wc4cxXrNTYGB7TBThd7njbF14iE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/c144dc-f562-4a3e-b6ca-c162ddfdee73/1/FUBClnhNHYBr9J4yoUPy2Xl2Fa4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/c144dc-f562-4a3e-b6ca-c162ddfdee73/1/Wc4cxXrNTYGB7TBThd7njbF14iE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.161.192.0/21
185.255.44.0/22
IPv6:
2a0c:58c0::/29
Signature Algorithm: sha256WithRSAEncryption
93:bc:a2:e5:a7:c7:e8:cc:4a:66:ea:12:8a:0d:55:5d:51:b5:
60:5d:6e:31:06:2b:8b:be:ad:c5:24:69:db:ef:da:c1:02:fa:
7c:08:29:e6:bc:98:2b:67:80:fc:65:41:74:61:88:34:81:82:
eb:44:9f:14:ea:4b:66:6c:1f:da:aa:12:0d:8c:94:f5:bc:68:
80:a8:56:dc:0e:0a:09:69:58:67:93:a8:d1:71:ce:19:73:3b:
bb:78:8b:6e:3f:8e:de:04:dd:df:6f:26:aa:7d:63:82:0d:a4:
44:27:2a:09:ec:a1:3c:cd:06:4a:b9:c3:49:80:53:67:ea:85:
22:8e:f0:31:84:49:c1:4c:90:ef:29:30:28:fe:6b:cc:df:d7:
17:f8:60:83:84:03:5a:1b:69:22:e6:16:b1:56:5d:8d:95:e9:
4e:9a:2d:3c:6a:3c:15:08:34:75:25:3a:3a:19:ec:45:d4:80:
31:b6:24:a5:97:8c:e0:e5:92:e3:8f:ab:b7:7e:aa:f0:3d:c6:
d3:a7:27:d1:a7:4d:45:a8:0b:80:2e:ce:0b:67:6d:1e:64:a6:
5f:79:18:62:d7:10:6f:52:38:3c:0b:e7:44:11:81:1e:cd:04:
1f:e6:6d:b5:47:f5:35:c8:8b:49:3c:ef:05:fb:ea:bf:e7:28:
36:8b:45:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:27 2024 by rpki-client on console-fra.rpki-client.org