Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/403ec4-266e-4ea4-ba3a-4fdc48da8f33/1/wHMjKHCflbF3GhEzMIfwlAQjOgw.roa
File: wHMjKHCflbF3GhEzMIfwlAQjOgw.roa (raw, json)
Hash identifier: /gv7X9GhypzbAbllsJ6Zh1PgzwdNNAbqx13Dh4tP5jo=
Subject key identifier: C0:73:23:28:70:9F:95:B1:77:1A:11:33:30:87:F0:94:04:23:3A:0C
Certificate issuer: /CN=23d8f620999506cc86d7548ea7282bb129f02d68
Certificate serial: 034AA163
Authority key identifier: 23:D8:F6:20:99:95:06:CC:86:D7:54:8E:A7:28:2B:B1:29:F0:2D:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9j2IJmVBsyG11SOpygrsSnwLWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/403ec4-266e-4ea4-ba3a-4fdc48da8f33/1/wHMjKHCflbF3GhEzMIfwlAQjOgw.roa
Signing time: Mon 14 Feb 2022 14:12:31 +0000
ROA not before: Mon 14 Feb 2022 14:12:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 46.227.42.0/24 maxlen: 24
185.31.204.0/24 maxlen: 24
46.227.41.0/24 maxlen: 24
46.227.40.0/24 maxlen: 24
46.227.44.0/24 maxlen: 24
185.31.206.0/24 maxlen: 24
46.227.43.0/24 maxlen: 24
185.31.205.0/24 maxlen: 24
46.227.47.0/24 maxlen: 24
185.31.207.0/24 maxlen: 24
46.227.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55222627 (0x34aa163)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23d8f620999506cc86d7548ea7282bb129f02d68
Validity
Not Before: Feb 14 14:12:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0732328709f95b1771a11333087f09404233a0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b2:b8:8b:06:2d:75:e6:0b:c3:d2:51:31:74:
19:38:1f:c4:78:2d:c4:67:93:55:e4:03:a3:d4:c6:
a7:6d:cd:45:96:2c:e8:75:bc:27:90:dc:5d:68:10:
79:37:b4:ab:e8:be:fd:e1:85:e8:f6:56:c4:a5:5d:
98:6e:c8:65:a7:a7:ae:c0:ec:1c:20:e9:8d:b3:c5:
47:f7:a9:e7:1e:03:a2:cd:5d:de:b0:dd:df:bf:51:
e4:9d:60:0e:e7:9f:7f:69:ac:09:0b:45:46:1a:94:
3c:6b:f8:28:60:98:04:ef:d9:d9:46:aa:11:26:17:
d6:1b:16:14:a0:32:0a:a2:ed:81:ee:72:97:87:7a:
3e:47:ba:f9:55:3d:20:70:e1:17:4c:2f:13:31:56:
05:41:a1:28:34:76:9b:39:a9:f0:99:7f:1d:ed:69:
db:40:96:d4:04:10:e3:89:08:d4:9e:e1:fa:3b:11:
51:43:b5:08:f2:ea:2c:44:80:27:1f:32:44:e7:ea:
28:f5:6b:7c:b9:43:1f:f8:d7:23:41:df:4c:5a:7c:
a5:11:2e:1b:3a:21:b8:63:6b:2c:10:46:c3:50:15:
19:06:b2:73:76:f3:91:e3:84:67:d3:bc:bf:cd:4c:
4e:bc:ef:e6:d4:d9:86:ea:ff:3c:a3:ad:a5:2b:36:
ff:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:73:23:28:70:9F:95:B1:77:1A:11:33:30:87:F0:94:04:23:3A:0C
X509v3 Authority Key Identifier:
keyid:23:D8:F6:20:99:95:06:CC:86:D7:54:8E:A7:28:2B:B1:29:F0:2D:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9j2IJmVBsyG11SOpygrsSnwLWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/403ec4-266e-4ea4-ba3a-4fdc48da8f33/1/wHMjKHCflbF3GhEzMIfwlAQjOgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/403ec4-266e-4ea4-ba3a-4fdc48da8f33/1/I9j2IJmVBsyG11SOpygrsSnwLWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.227.40.0-46.227.45.255
46.227.47.0/24
185.31.204.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:16:43:8a:2d:2d:da:42:9a:b5:83:ff:53:02:ab:ef:03:c6:
97:c3:34:b7:43:e1:a9:06:b1:7a:c8:34:a6:3c:19:5b:cd:57:
e2:20:6a:47:1f:fe:a6:c2:c1:c9:96:af:28:cb:2f:72:fc:38:
e5:96:a3:9d:c5:a6:52:eb:43:07:07:3b:f6:b4:1e:7f:31:55:
75:70:41:29:20:70:97:d6:88:06:02:1f:c7:ee:7a:68:32:a5:
d9:e0:c9:91:bb:e4:6e:ca:3c:f8:69:fa:d0:3f:dc:50:b5:22:
e8:04:bb:eb:93:86:a6:8d:87:32:dc:07:11:44:34:f1:74:7a:
1f:23:36:00:7e:23:3e:6d:f3:6a:11:6d:31:fb:dc:09:95:61:
dd:ee:84:dd:5a:76:92:5c:e2:a3:4c:bf:6a:36:81:a7:7d:1e:
d6:7c:4d:47:0a:04:9d:4b:d1:6e:b9:c4:3b:80:30:61:20:ec:
5a:16:c7:74:f5:3f:4b:ad:d4:4b:41:08:f1:6d:0d:60:33:ff:
2c:e4:fe:a8:f7:f7:15:47:78:34:f7:ec:a5:18:38:93:80:24:
cc:49:59:1e:b8:81:dc:10:60:f3:a5:cf:00:04:75:61:a4:5f:
2d:ca:43:09:a2:12:84:11:8d:42:6d:68:6c:17:f0:d6:ed:28:
74:23:40:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:05 2023 by rpki-client on console-ams.rpki-client.org