Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/hdrko6YnhmRzKPeLmqTiiIEUxU0.roa
File: hdrko6YnhmRzKPeLmqTiiIEUxU0.roa (raw, json)
Hash identifier: oChl/5ZksPbRouWD2a/eD04DI9Z72DZEszXtEYUI8oY=
Subject key identifier: 85:DA:E4:A3:A6:27:86:64:73:28:F7:8B:9A:A4:E2:88:81:14:C5:4D
Certificate issuer: /CN=28526132c4fcf6b4cdff740255602ccf9dcb042f
Certificate serial: 381E14DD
Authority key identifier: 28:52:61:32:C4:FC:F6:B4:CD:FF:74:02:55:60:2C:CF:9D:CB:04:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KFJhMsT89rTN_3QCVWAsz53LBC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/hdrko6YnhmRzKPeLmqTiiIEUxU0.roa
Signing time: Sat 01 Jan 2022 08:56:28 +0000
ROA not before: Sat 01 Jan 2022 08:56:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47337
IP address blocks: 46.16.152.0/21 maxlen: 24
2a02:2520::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 941495517 (0x381e14dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28526132c4fcf6b4cdff740255602ccf9dcb042f
Validity
Not Before: Jan 1 08:56:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85dae4a3a62786647328f78b9aa4e2888114c54d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:44:43:06:18:e2:9a:5f:e9:83:5a:01:ec:65:
ee:47:e9:19:bd:85:1a:7c:31:d1:fd:b6:43:95:8e:
9c:b9:22:dc:aa:43:c3:a4:80:12:8f:bf:85:ba:ed:
35:29:78:e8:08:17:01:1a:9b:d2:49:ca:63:24:72:
36:9e:a7:6d:d7:13:ee:06:eb:91:a9:6d:81:e2:c4:
03:4e:c9:a9:29:5f:44:89:5b:1f:fc:4d:78:19:19:
17:11:0e:fe:62:bc:1c:f1:a9:02:6b:86:78:13:f3:
3f:ca:cb:44:ed:be:0a:c1:59:2a:aa:5a:0c:ee:4c:
7e:1c:8b:d3:83:ca:24:29:61:1b:af:03:b7:c5:6a:
48:e6:8a:e7:54:7b:dd:2c:33:c3:ce:64:86:9a:b9:
c6:33:b8:d4:6d:74:02:07:04:50:c4:c1:ee:fa:6b:
7d:d8:ea:67:36:3e:00:14:bf:e4:8d:c6:1c:47:72:
cf:92:06:71:e5:3d:b6:bb:0d:a0:87:28:e3:ce:dc:
70:20:39:08:77:76:e4:9d:5f:68:6d:46:da:97:e5:
2c:74:10:2f:21:8e:32:3e:21:76:bb:42:90:32:b9:
2e:d1:b4:e3:a2:10:81:9c:a3:0a:b9:dd:44:e7:87:
dc:bd:b0:4a:d7:e0:fe:d6:8d:80:84:1a:88:68:e3:
a2:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:DA:E4:A3:A6:27:86:64:73:28:F7:8B:9A:A4:E2:88:81:14:C5:4D
X509v3 Authority Key Identifier:
keyid:28:52:61:32:C4:FC:F6:B4:CD:FF:74:02:55:60:2C:CF:9D:CB:04:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KFJhMsT89rTN_3QCVWAsz53LBC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/hdrko6YnhmRzKPeLmqTiiIEUxU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.16.152.0/21
IPv6:
2a02:2520::/32
Signature Algorithm: sha256WithRSAEncryption
32:5b:0c:2f:f3:d7:da:ee:61:95:ea:58:b2:82:48:8e:39:ed:
5e:64:e5:e7:bb:58:ae:f2:2e:67:be:59:7a:25:89:20:05:6e:
36:2a:43:3b:93:4f:12:df:ea:b8:78:68:25:20:9d:f3:63:6c:
f9:50:f4:93:9c:20:e1:f3:c9:3f:6b:f8:97:38:b8:e0:45:42:
24:11:6d:ea:f0:05:48:e7:42:37:c0:8c:f7:54:c0:24:17:6e:
31:38:4f:74:33:51:5f:78:f5:85:48:a3:bc:a9:ee:51:c8:33:
a4:cb:e9:1f:a5:43:d1:70:31:f3:25:36:ab:75:03:a6:18:1d:
22:1a:b7:82:c4:0a:16:93:f2:55:b7:00:53:06:d3:d3:1b:cc:
31:91:9c:5c:40:a8:b8:d5:7a:91:37:af:73:49:f0:01:e4:88:
3f:72:1f:3d:97:6e:e5:1f:30:5f:27:3c:e5:1d:1d:9a:ba:19:
23:6b:fb:44:db:b2:00:80:57:c5:4f:42:76:94:f0:26:ee:53:
a2:3c:2c:43:2c:99:7f:f1:d2:db:60:c7:11:f9:ea:86:fd:96:
09:29:e2:9d:ab:7e:5b:dd:be:fd:b0:95:c1:10:da:73:05:2e:
31:ac:96:51:ad:1f:74:8a:1e:bf:3b:64:55:05:44:af:00:da:
f3:d9:21:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:41 2024 by rpki-client on console-ams.rpki-client.org