Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/2NI6gRxC0TY8oCYnacB0Wij8My0.roa
File: 2NI6gRxC0TY8oCYnacB0Wij8My0.roa (raw, json)
Hash identifier: vi8AWTdq5UwtsZZl3U7Y1VdQcN8heXJbGSnpe3RUX3A=
Subject key identifier: D8:D2:3A:81:1C:42:D1:36:3C:A0:26:27:69:C0:74:5A:28:FC:33:2D
Certificate issuer: /CN=5853e65a3087b4ca85c8802b60ff0f02b4106d97
Certificate serial: 1C70B79C
Authority key identifier: 58:53:E6:5A:30:87:B4:CA:85:C8:80:2B:60:FF:0F:02:B4:10:6D:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WFPmWjCHtMqFyIArYP8PArQQbZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/2NI6gRxC0TY8oCYnacB0Wij8My0.roa
Signing time: Sat 01 Jan 2022 06:53:19 +0000
ROA not before: Sat 01 Jan 2022 06:53:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44417
IP address blocks: 46.166.192.0/21 maxlen: 21
46.166.200.0/21 maxlen: 21
2a04:3800::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 477149084 (0x1c70b79c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5853e65a3087b4ca85c8802b60ff0f02b4106d97
Validity
Not Before: Jan 1 06:53:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d8d23a811c42d1363ca0262769c0745a28fc332d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:83:e6:7a:97:b9:2e:a9:49:0f:9d:83:ba:3d:
49:bf:e3:ab:06:50:9a:fc:ac:00:50:b7:59:3a:9c:
64:1c:89:5c:09:31:66:92:6b:e7:75:d0:dd:86:20:
25:67:37:c0:a1:15:b9:62:2b:01:6e:eb:d9:8e:4e:
3a:6f:da:00:c9:a5:34:67:c2:90:28:b1:0a:5c:15:
bb:e3:33:a0:0a:ec:bf:6d:6e:8f:3c:1b:3d:63:0e:
bd:ed:0a:d2:f7:07:86:02:50:9d:b4:2f:e7:77:eb:
43:6d:8b:02:a3:43:0d:d8:d4:bc:c7:07:e8:29:ad:
39:bc:38:61:1e:ca:2c:45:c2:d1:b9:1f:5a:9a:3b:
15:66:4d:23:86:51:7a:39:d3:9c:6c:71:5f:16:27:
c3:2f:ac:ef:cb:53:aa:5b:62:f3:03:19:64:73:f3:
11:8f:4f:ee:fb:d9:98:dc:91:99:37:2e:6f:7a:c6:
00:83:55:51:e4:39:04:5d:c3:6e:e8:24:0e:e9:cd:
ec:ef:ac:70:2b:c3:a7:08:1d:99:2e:a7:b9:a9:ab:
53:24:d7:54:cd:18:d0:ea:93:79:e4:8a:b7:f7:96:
14:ad:f8:ce:ee:a9:41:22:c8:e7:18:31:33:3a:c8:
9f:81:47:04:6c:8e:a5:e5:27:21:29:4c:ee:3c:cd:
b3:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:D2:3A:81:1C:42:D1:36:3C:A0:26:27:69:C0:74:5A:28:FC:33:2D
X509v3 Authority Key Identifier:
keyid:58:53:E6:5A:30:87:B4:CA:85:C8:80:2B:60:FF:0F:02:B4:10:6D:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WFPmWjCHtMqFyIArYP8PArQQbZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/2NI6gRxC0TY8oCYnacB0Wij8My0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/WFPmWjCHtMqFyIArYP8PArQQbZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.166.192.0/20
IPv6:
2a04:3800::/48
Signature Algorithm: sha256WithRSAEncryption
2b:39:6c:77:a4:22:bc:2e:bb:45:7e:44:5c:90:05:e8:81:8f:
77:01:1b:f3:ab:8d:e2:3b:c8:06:ce:f0:59:f3:5e:a7:1d:90:
af:6b:18:ff:9d:e8:9e:53:67:28:a5:5a:2c:2f:e2:fc:98:1e:
cb:23:31:b5:7a:cf:b2:ad:b9:55:44:a3:e2:ec:d3:1d:6c:7b:
a8:8b:83:ea:b2:7c:00:3a:41:ed:3d:21:cf:94:f4:c6:df:2d:
41:e7:00:1b:64:a3:30:e5:6a:f5:50:7b:5e:4b:0d:fd:b6:8b:
e6:a6:cb:51:cc:69:9a:ee:20:53:2f:9b:5b:2b:30:8a:20:9c:
1f:00:2c:f3:03:2e:a2:f4:0a:cb:fe:a4:37:b6:4d:3d:ed:63:
9a:58:25:2e:03:f9:1f:fd:66:76:23:26:e2:53:ff:c2:b9:5f:
e5:ae:0d:84:de:f6:50:41:41:4d:a9:9c:5f:8a:9c:3e:1c:f3:
32:2d:d8:34:d2:55:7f:fd:ff:5c:f6:53:a9:d8:64:3a:8a:a3:
79:11:df:d5:c4:a4:1c:6b:44:6f:76:b5:ab:4d:3b:ca:d1:2d:
da:df:6f:ad:4a:48:c4:45:2f:ff:93:50:fa:b7:b2:83:aa:20:
74:49:d3:09:90:b7:ac:11:9a:6e:43:cf:5e:75:64:46:9a:bd:
80:40:62:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:43 2023 by rpki-client on console-ams.rpki-client.org