Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/4OL1bjraVuQDwCi22syh6C6fNb8.roa
File: 4OL1bjraVuQDwCi22syh6C6fNb8.roa (raw, json)
Hash identifier: oXTyQKn/XNgvpPp/zAX6mYO4G/ORjT2abgxrdSUCZJ4=
Subject key identifier: E0:E2:F5:6E:3A:DA:56:E4:03:C0:28:B6:DA:CC:A1:E8:2E:9F:35:BF
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 37273473
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/4OL1bjraVuQDwCi22syh6C6fNb8.roa
Signing time: Wed 12 Jan 2022 15:25:51 +0000
ROA not before: Wed 12 Jan 2022 15:25:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201746
IP address blocks: 46.8.160.0/20 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 925316211 (0x37273473)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Jan 12 15:25:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0e2f56e3ada56e403c028b6dacca1e82e9f35bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:fd:73:2a:cd:ef:bf:9d:90:8d:ff:33:cc:cd:
7a:9a:f1:9c:c9:ff:15:cc:01:85:7c:7b:0c:44:70:
c1:c7:04:07:e2:7f:c3:61:6e:ee:82:57:af:b8:d4:
9e:ef:ff:d0:10:77:3d:c8:92:c8:79:dd:c5:32:55:
35:63:27:4e:b1:8b:c2:85:be:aa:be:27:2b:25:b4:
3a:c4:0e:a8:c0:a3:ae:6e:73:42:b9:5e:fc:18:7a:
db:71:0d:29:a6:7b:33:3a:74:b5:6e:98:ff:05:2b:
a5:26:3d:9b:49:87:0b:93:f6:c6:a6:24:85:5f:72:
04:05:36:54:a7:14:3a:da:b7:e5:94:74:88:68:9a:
06:04:ee:36:41:c2:eb:5d:98:fa:09:24:9a:30:a1:
a1:ad:b8:84:77:8e:ec:f2:c2:df:3a:3e:b4:08:de:
c2:7b:46:33:f3:7d:06:32:18:7c:26:34:90:b9:91:
97:55:74:19:80:ea:34:c3:97:2a:ac:32:f5:78:85:
2a:d4:14:ff:ea:93:ff:09:20:37:e6:ae:2d:1f:e7:
aa:a0:db:72:8d:50:02:72:52:d8:2f:e0:a0:0e:51:
b0:e2:ea:05:43:20:c5:b6:06:f7:99:64:01:7f:f1:
6b:6b:d5:6f:81:59:c0:9c:22:5a:eb:3c:0f:de:8e:
3a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:E2:F5:6E:3A:DA:56:E4:03:C0:28:B6:DA:CC:A1:E8:2E:9F:35:BF
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/4OL1bjraVuQDwCi22syh6C6fNb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.8.160.0/20
Signature Algorithm: sha256WithRSAEncryption
5e:e4:c2:d4:42:a6:ff:51:58:6e:b1:08:a1:6f:e1:3c:a3:e0:
df:cc:53:3f:35:9d:97:a7:8c:3f:a1:f5:de:4d:b0:32:75:d8:
b2:86:ea:3e:a3:16:2d:5f:11:94:d9:38:f4:7c:00:28:88:9d:
8e:33:85:ae:53:e7:8c:eb:4d:05:31:00:bb:2e:79:e3:7b:9f:
f0:17:f2:f3:b2:55:65:56:64:24:31:db:a6:59:25:98:b9:88:
e0:20:ae:4a:b0:05:0f:5d:22:c3:1b:63:f0:38:cb:c2:bc:d9:
0d:82:70:bd:e4:29:27:c9:0c:d8:a2:4e:dc:76:45:6e:6a:5e:
bb:17:ee:71:87:57:35:ad:6c:f8:17:c4:e8:d1:d0:b1:27:d2:
3f:7c:3f:07:77:0e:f3:1b:4a:b9:85:52:4c:13:05:06:4e:6c:
d3:a2:af:9b:00:98:0c:e6:43:14:1a:30:b6:86:3a:cb:a2:17:
09:07:92:4f:7b:61:0c:f1:a9:e3:62:a9:9c:d3:ac:ac:b8:dc:
eb:2d:c7:ae:94:4d:ac:96:01:06:80:34:8e:7d:ae:3f:e9:be:
91:84:23:f3:71:e7:42:cb:ef:fa:84:a1:df:32:fa:f6:8e:ae:
80:18:3b:be:65:4c:67:1a:5c:68:a1:7c:06:48:70:d3:1a:77:
8a:a2:41:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:57 2024 by rpki-client on console-fra.rpki-client.org