Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/AvZ0mbcE2PuIB_wahvbkjCgyhP4.roa
File: AvZ0mbcE2PuIB_wahvbkjCgyhP4.roa (raw, json)
Hash identifier: YqBH4B6sTinU6y/2FagLQhRpfmD96ZgSBR0eyETQ0RA=
Subject key identifier: 02:F6:74:99:B7:04:D8:FB:88:07:FC:1A:86:F6:E4:8C:28:32:84:FE
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 3707A77D
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/AvZ0mbcE2PuIB_wahvbkjCgyhP4.roa
Signing time: Sat 01 Jan 2022 11:00:22 +0000
ROA not before: Sat 01 Jan 2022 11:00:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60592
IP address blocks: 46.8.8.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 923248509 (0x3707a77d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Jan 1 11:00:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02f67499b704d8fb8807fc1a86f6e48c283284fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:88:b7:e4:b5:7a:ea:bb:1e:86:b6:24:12:27:
c4:09:ea:c9:43:24:4e:f7:74:4c:db:74:dc:68:f0:
cf:d9:e9:34:b5:fa:9d:75:4b:e4:a7:73:a9:0e:7c:
70:4d:87:62:3d:d9:31:b3:99:f4:30:61:c5:28:1e:
fc:23:96:de:94:7d:ed:43:81:37:80:a6:a8:44:65:
d0:17:ca:01:a3:a3:2c:39:c4:ed:fd:16:7f:a3:9a:
3c:f7:a0:de:6f:1b:20:23:8b:ac:07:f7:ec:d9:ef:
a6:b0:ff:e6:50:b9:73:cc:94:92:23:0d:d0:37:1e:
aa:1e:83:4e:44:fa:65:01:c4:fe:44:7d:e7:fe:5a:
90:fb:15:d8:24:a0:ab:a0:2c:a7:35:fe:60:86:6a:
4f:39:34:0d:2a:56:e6:5a:e4:40:28:85:6f:a9:95:
15:5f:22:e8:52:0e:01:3b:7b:47:10:7b:da:c0:b5:
59:22:e8:d2:11:ea:78:62:44:78:e2:5d:95:cf:e2:
6b:68:9f:6f:0e:3d:58:41:12:2a:c7:64:3f:0d:26:
24:5c:35:50:3a:9b:62:ad:d7:8a:90:35:2e:dd:7e:
7f:93:72:40:e4:5e:e0:7a:83:a4:8a:f8:0e:66:1a:
22:b4:0b:2c:a3:8d:30:fc:59:b4:44:53:d3:f3:d8:
23:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F6:74:99:B7:04:D8:FB:88:07:FC:1A:86:F6:E4:8C:28:32:84:FE
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/AvZ0mbcE2PuIB_wahvbkjCgyhP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.8.8.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:e4:93:77:88:18:79:c1:16:4a:01:92:28:c3:67:60:df:44:
fa:61:41:df:d5:b3:75:10:39:6f:23:25:08:83:55:5a:1f:20:
14:06:5c:ba:08:38:08:15:7c:5a:8f:43:d0:13:20:53:db:e5:
9b:bd:1f:ea:df:40:ed:36:bb:a6:af:ee:ff:0d:47:8f:2d:13:
dd:2b:e8:25:83:8c:f4:e9:45:ca:c3:7c:2a:13:21:a4:de:e9:
5c:bf:15:41:2e:fe:a3:8e:7d:80:10:91:4a:16:c0:0d:9f:84:
46:6f:d5:1a:28:8c:70:49:a6:e8:b4:bb:c3:2e:27:ec:6a:6a:
70:9b:a3:0a:da:35:85:e8:95:25:ef:ad:4b:92:5e:bf:e0:0d:
8b:94:ec:5a:c1:67:67:89:09:0c:71:e6:4a:30:09:62:90:07:
ec:da:3a:f1:48:bd:74:01:a7:9a:b3:26:49:ad:83:89:2f:ac:
c2:83:4c:b8:7b:95:9e:f0:8d:aa:b7:1a:5e:23:8b:13:b6:a7:
e2:b0:88:1a:bf:07:85:66:a0:93:ff:90:e5:67:4a:a2:11:d0:
a1:fe:b7:42:ed:da:0e:c9:02:c1:1c:a2:3f:af:99:0f:b0:b7:
28:2f:f4:af:7d:e2:a3:c3:e9:9b:c4:a2:cf:57:f9:12:b1:de:
26:24:38:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:57 2024 by rpki-client on console-fra.rpki-client.org