Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/403ec4-266e-4ea4-ba3a-4fdc48da8f33/1/OfjWAvi89N840mhhNs-65MUHmo8.roa
File: OfjWAvi89N840mhhNs-65MUHmo8.roa (raw, json)
Hash identifier: 2l6IlToazjieRUVSO4b7KEbyUtYK7AES1FfxxFw44FQ=
Subject key identifier: 39:F8:D6:02:F8:BC:F4:DF:38:D2:68:61:36:CF:BA:E4:C5:07:9A:8F
Certificate issuer: /CN=23d8f620999506cc86d7548ea7282bb129f02d68
Certificate serial: 02E658EB
Authority key identifier: 23:D8:F6:20:99:95:06:CC:86:D7:54:8E:A7:28:2B:B1:29:F0:2D:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9j2IJmVBsyG11SOpygrsSnwLWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/403ec4-266e-4ea4-ba3a-4fdc48da8f33/1/OfjWAvi89N840mhhNs-65MUHmo8.roa
Signing time: Sat 01 Jan 2022 14:56:57 +0000
ROA not before: Sat 01 Jan 2022 14:56:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 46.227.40.0/24 maxlen: 24
46.227.44.0/24 maxlen: 24
185.31.204.0/24 maxlen: 24
185.31.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48650475 (0x2e658eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23d8f620999506cc86d7548ea7282bb129f02d68
Validity
Not Before: Jan 1 14:56:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39f8d602f8bcf4df38d2686136cfbae4c5079a8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f2:f2:9c:78:ba:0b:76:b1:4a:04:3e:bf:c9:
c8:e4:af:1c:3a:c3:0d:aa:01:5f:06:b2:87:dd:99:
3e:51:00:37:b9:b2:d6:d8:c3:97:d4:41:3d:66:fd:
c1:0a:7c:05:ed:13:f9:58:c5:df:12:3b:5c:56:dd:
0c:63:41:49:e7:1f:1d:4c:ad:a7:32:96:61:b3:1f:
4e:c2:6e:44:29:48:2c:4b:75:e5:db:6b:bd:b4:c7:
7b:0f:e0:e3:a3:42:cf:85:c6:bf:f1:4b:9c:be:ab:
47:14:dc:25:b2:20:45:e7:71:d9:44:bf:b2:a3:13:
50:1c:15:c2:16:80:64:88:23:8a:3d:4d:8f:d2:ef:
9c:0b:cd:68:d9:d6:62:40:d3:64:c7:21:cf:05:69:
2e:0a:4c:54:be:da:51:18:ca:64:e7:70:d2:c3:a0:
0f:a4:6c:cf:ee:fa:1f:4c:ad:84:2f:36:30:c1:5a:
b6:02:87:6b:62:4a:dd:a2:e1:3e:3f:6a:3a:19:22:
86:26:60:e2:bd:45:ae:04:44:a9:fa:39:98:ae:e5:
71:fa:97:c9:92:d2:29:95:13:bd:6f:36:06:04:c5:
ea:37:61:d0:df:e5:82:c7:ee:62:6b:e7:2c:01:3b:
92:9c:7d:cb:87:5c:9b:d5:2f:89:f6:11:4c:57:dd:
d5:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:F8:D6:02:F8:BC:F4:DF:38:D2:68:61:36:CF:BA:E4:C5:07:9A:8F
X509v3 Authority Key Identifier:
keyid:23:D8:F6:20:99:95:06:CC:86:D7:54:8E:A7:28:2B:B1:29:F0:2D:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9j2IJmVBsyG11SOpygrsSnwLWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/403ec4-266e-4ea4-ba3a-4fdc48da8f33/1/OfjWAvi89N840mhhNs-65MUHmo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/403ec4-266e-4ea4-ba3a-4fdc48da8f33/1/I9j2IJmVBsyG11SOpygrsSnwLWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.227.40.0/24
46.227.44.0/24
185.31.204.0/24
185.31.207.0/24
Signature Algorithm: sha256WithRSAEncryption
81:5c:0b:39:d7:29:26:e3:dd:d3:cd:a5:97:f4:c3:81:de:f2:
f8:e8:72:b8:11:05:19:0b:c5:df:6a:55:8f:64:b3:66:de:fd:
2b:f0:53:06:49:1c:88:50:2f:95:5b:dd:2b:dd:0e:78:23:37:
2a:2e:51:cb:d3:ed:0b:aa:db:ea:cf:b4:44:80:59:ff:4d:4c:
15:20:f1:e6:ae:23:b7:f9:92:3d:62:56:e7:fd:e5:56:97:17:
20:d9:45:e5:5c:ac:b8:bc:03:cf:1f:48:a4:55:27:02:7e:12:
a0:0a:76:15:b6:19:05:c2:35:b7:bc:ac:78:2a:d4:73:26:d8:
94:7f:e9:7a:e1:2d:bc:20:f0:ac:c1:1b:b0:3b:bf:77:95:3a:
ac:b0:4e:fc:a9:15:c7:05:ed:73:50:20:8f:26:e2:a6:85:38:
07:4f:02:49:b2:8a:fc:f3:0b:14:a0:09:bf:3b:1a:a7:5b:57:
5c:38:ea:d3:c9:93:21:97:f5:ff:e4:2c:c1:a2:96:a7:51:07:
3f:e4:d4:e2:f7:5f:48:50:13:40:a3:38:01:9c:52:34:d0:fe:
1e:28:f1:b3:e8:8a:e5:d9:ac:b2:51:05:b3:28:1c:5c:95:05:
2e:2d:4f:c4:0b:ed:59:f0:de:ab:6c:bd:88:57:4a:91:fc:00:
ae:c9:6f:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:25 2023 by rpki-client on console-fra.rpki-client.org