Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/2h_yGrS8vQwWMC1n3BxF_KJ34h0.roa
File: 2h_yGrS8vQwWMC1n3BxF_KJ34h0.roa (raw, json)
Hash identifier: 8gk4BfaMpOfX1yeUKjOqNxGFNKIbnNQuSFDwpjTNFuE=
Subject key identifier: DA:1F:F2:1A:B4:BC:BD:0C:16:30:2D:67:DC:1C:45:FC:A2:77:E2:1D
Certificate issuer: /CN=68d24addcc3d5b77a099a907122252a47c8f6310
Certificate serial: 0465FAB4
Authority key identifier: 68:D2:4A:DD:CC:3D:5B:77:A0:99:A9:07:12:22:52:A4:7C:8F:63:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNJK3cw9W3egmakHEiJSpHyPYxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/2h_yGrS8vQwWMC1n3BxF_KJ34h0.roa
Signing time: Mon 14 Mar 2022 22:31:00 +0000
ROA not before: Mon 14 Mar 2022 22:31:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12912
IP address blocks: 46.205.192.0/20 maxlen: 20
178.183.0.0/18 maxlen: 18
178.183.224.0/19 maxlen: 19
46.205.208.0/20 maxlen: 20
178.183.32.0/24 maxlen: 24
213.158.192.0/19 maxlen: 19
46.205.240.0/21 maxlen: 21
62.152.128.0/19 maxlen: 19
2001:1b80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73792180 (0x465fab4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d24addcc3d5b77a099a907122252a47c8f6310
Validity
Not Before: Mar 14 22:31:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da1ff21ab4bcbd0c16302d67dc1c45fca277e21d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:16:37:9b:9a:84:bf:b7:d8:3c:90:3d:8d:6d:
60:b2:bb:83:87:96:97:9a:01:1b:da:60:ad:a4:e2:
71:fd:84:e3:3f:58:b5:0d:76:81:03:5c:b5:9b:15:
1e:d3:74:6a:e6:4b:9b:36:98:56:1b:39:60:67:37:
31:6b:d8:4e:99:c7:bf:6d:49:ef:92:d4:c9:72:09:
16:20:6d:42:54:34:56:c9:b4:34:e3:da:a7:21:28:
5b:8e:30:94:81:da:10:57:9c:97:94:9b:d1:20:e2:
99:2b:ec:65:31:3f:79:25:41:1c:f1:e0:b7:77:27:
78:de:27:7f:f6:b4:98:9c:9a:ae:d6:e2:49:02:7e:
11:fa:eb:cc:67:80:d3:c8:b7:fd:0e:29:8e:d3:79:
15:f1:7a:18:28:8a:fc:77:2b:e7:c5:78:1e:54:ce:
d7:a0:74:32:54:72:ac:6f:a1:b4:3f:14:a3:9e:cc:
7e:ca:52:a4:ff:db:89:20:23:50:cd:f1:e6:f2:20:
24:89:63:be:db:4c:b6:46:2c:30:c2:35:c3:33:79:
66:dc:0f:d9:03:5e:64:2d:1d:bb:ef:25:78:2f:86:
30:fe:a9:34:08:ba:2c:37:51:49:ab:7c:62:42:ba:
4b:df:b8:cd:ba:a1:88:b7:89:a2:f8:d2:73:ca:a5:
1b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:1F:F2:1A:B4:BC:BD:0C:16:30:2D:67:DC:1C:45:FC:A2:77:E2:1D
X509v3 Authority Key Identifier:
keyid:68:D2:4A:DD:CC:3D:5B:77:A0:99:A9:07:12:22:52:A4:7C:8F:63:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNJK3cw9W3egmakHEiJSpHyPYxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/2h_yGrS8vQwWMC1n3BxF_KJ34h0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/aNJK3cw9W3egmakHEiJSpHyPYxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.205.192.0/19
46.205.240.0/21
62.152.128.0/19
178.183.0.0/18
178.183.224.0/19
213.158.192.0/19
IPv6:
2001:1b80::/29
Signature Algorithm: sha256WithRSAEncryption
75:70:ea:c8:7a:53:06:8d:a1:90:e6:8e:0e:62:dc:e4:9e:cc:
4f:ce:b8:b8:87:5f:5f:dd:f1:40:35:35:7a:07:81:9e:9b:9d:
a2:7b:97:3e:74:2e:14:1c:0a:30:b2:b4:0a:a6:fd:9e:50:23:
e3:83:88:fa:a2:4b:bc:cb:8e:b3:b9:10:00:41:d0:59:42:ed:
76:10:a8:95:c7:ca:aa:90:cc:c7:db:f3:de:88:2c:ad:0d:5a:
5d:0f:b4:c2:2b:d4:3c:cd:f9:3e:b5:46:c0:c6:01:c8:62:69:
07:f1:10:9e:1f:18:86:1d:7f:84:6c:95:63:33:4c:10:54:e2:
6e:07:94:e5:bb:3a:a6:49:45:73:c8:a4:cc:fc:b6:aa:d6:29:
fc:c2:7c:7c:47:5e:6c:ec:b9:16:db:00:38:4c:e6:57:04:05:
7a:f6:ab:6d:fa:16:9d:2d:49:18:43:b2:8b:59:5d:f3:b4:49:
5a:d3:db:9e:c5:1f:81:77:be:c0:3e:88:43:3a:93:8c:86:99:
dc:75:5a:9f:ee:be:4f:41:77:a5:90:8c:d0:6a:ab:f2:b5:d6:
f4:3e:40:9f:ff:b1:0d:db:19:6e:00:7f:bd:9a:2b:ec:ec:c7:
56:e9:d6:a0:e7:38:2e:2a:1b:14:44:fe:92:2b:d8:6c:06:7b:
f3:90:40:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:01 2023 by rpki-client on console-fra.rpki-client.org