Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/gbeRObx1zRNj3bt-hubxYFv8F0w.roa
File: gbeRObx1zRNj3bt-hubxYFv8F0w.roa (raw, json)
Hash identifier: PCilQKl0ZS31suvuOC19QtuyGp4UX8otYydoyA9eLZ4=
Subject key identifier: 81:B7:91:39:BC:75:CD:13:63:DD:BB:7E:86:E6:F1:60:5B:FC:17:4C
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 1387C329
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/gbeRObx1zRNj3bt-hubxYFv8F0w.roa
Signing time: Wed 26 Jan 2022 12:07:52 +0000
ROA not before: Wed 26 Jan 2022 12:07:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8220
IP address blocks: 46.249.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 327664425 (0x1387c329)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 26 12:07:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81b79139bc75cd1363ddbb7e86e6f1605bfc174c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a2:40:0e:ab:86:03:cc:2c:c2:79:53:49:86:
9b:cf:2a:aa:72:d6:b2:c1:61:3f:d7:33:b3:1e:01:
8d:8c:f8:1e:47:b7:a6:19:0d:26:f8:68:54:ee:12:
c8:66:d2:aa:f6:83:46:ca:a7:e6:e7:55:40:77:0f:
b7:e1:5c:b2:de:ec:93:e9:9f:32:45:79:39:59:e4:
71:eb:22:8e:68:87:bf:91:74:8a:67:70:3f:a8:55:
47:4f:28:c5:7b:63:86:7f:83:34:7d:2a:04:6c:77:
ed:e8:67:23:4c:99:bf:01:21:a3:b6:cf:c2:38:e2:
e5:f6:aa:20:1a:c3:4c:0f:3a:73:b3:42:ff:02:f6:
08:0f:c3:53:a1:7c:37:45:47:53:fe:b3:44:ba:85:
8c:fa:c9:aa:39:2e:aa:51:9d:4b:41:27:3f:a0:4e:
9e:26:a6:3e:5f:25:b4:7f:71:0d:36:1c:47:90:a5:
50:cf:0c:4d:dc:3e:1c:b1:1f:42:31:5f:1f:13:4d:
5a:82:2e:74:c9:28:90:75:3d:c6:30:4c:3b:41:e9:
c3:4f:29:4f:eb:88:6f:d8:ad:f6:ce:27:8a:b8:d0:
c2:bc:b0:aa:45:65:34:ad:11:dd:43:a6:21:04:93:
13:fb:cd:52:b6:75:8e:a1:19:a2:29:9f:c1:eb:f2:
2a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:B7:91:39:BC:75:CD:13:63:DD:BB:7E:86:E6:F1:60:5B:FC:17:4C
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/gbeRObx1zRNj3bt-hubxYFv8F0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.249.97.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:bb:7e:8d:42:c2:18:8e:e6:fd:1c:ae:28:94:75:cc:8f:69:
fb:0c:78:57:08:ff:8a:bd:e6:48:5b:d5:75:07:c6:22:c4:8d:
23:7b:57:02:d5:69:4b:81:1b:d8:8a:63:c2:39:96:40:b9:07:
f2:91:11:c8:e6:88:35:d8:d8:35:a1:97:e0:43:2b:0c:4f:6d:
00:86:65:52:99:c9:aa:33:bf:76:30:33:14:25:a3:c0:2f:2a:
b8:1a:35:2a:99:1d:72:f5:cf:fe:e4:a1:65:ff:ac:88:47:f2:
ef:0e:18:3a:8f:1e:6e:ee:50:8e:5d:a0:13:df:95:bc:78:69:
38:27:01:13:0b:f5:a5:1c:d0:da:54:5e:79:63:05:f5:65:0c:
b7:48:33:a3:79:a7:01:bd:60:5b:89:7b:8d:38:e8:6f:6c:bf:
b5:75:d9:67:61:9b:25:a6:4b:66:5c:47:b5:1e:6c:23:6c:77:
05:a6:d1:f7:33:65:ba:d1:6a:5a:4f:f8:56:bf:01:fe:4b:7e:
87:30:12:ad:d7:7f:45:5a:01:5d:6c:23:4a:1c:d8:ce:36:5c:
32:c5:ec:74:22:0b:28:da:5c:41:c4:7f:93:3b:65:5f:b3:c6:
d3:76:50:53:d9:0c:a0:1e:00:88:91:fe:bb:36:62:53:2a:b6:
e6:c7:0b:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:45 2023 by rpki-client on console-fra.rpki-client.org