Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/ac017c-ff29-43cf-a3d6-29f1beb2f282/1/E4-XyojDXF2CqAjcYDj-9EcCALU.roa
File: E4-XyojDXF2CqAjcYDj-9EcCALU.roa (raw, json)
Hash identifier: MOSNYK8hxpf8sj2uvvkX6hhzGWkMKXJCp3F24vwZkbY=
Subject key identifier: 13:8F:97:CA:88:C3:5C:5D:82:A8:08:DC:60:38:FE:F4:47:02:00:B5
Certificate issuer: /CN=ed6da9e41686d21c12799c8e84b274aa8241508c
Certificate serial: 38954DD1
Authority key identifier: ED:6D:A9:E4:16:86:D2:1C:12:79:9C:8E:84:B2:74:AA:82:41:50:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7W2p5BaG0hwSeZyOhLJ0qoJBUIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/ac017c-ff29-43cf-a3d6-29f1beb2f282/1/E4-XyojDXF2CqAjcYDj-9EcCALU.roa
Signing time: Sat 01 Jan 2022 10:05:25 +0000
ROA not before: Sat 01 Jan 2022 10:05:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61962
IP address blocks: 46.143.244.0/24 maxlen: 24
46.143.244.0/23 maxlen: 23
46.143.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 949308881 (0x38954dd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed6da9e41686d21c12799c8e84b274aa8241508c
Validity
Not Before: Jan 1 10:05:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=138f97ca88c35c5d82a808dc6038fef4470200b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:70:fd:bd:1f:4c:06:ff:a8:36:67:a4:3d:e4:
06:7b:64:c3:41:06:d3:b4:06:e5:44:ad:af:3a:1e:
f6:0a:30:1a:05:f5:d3:6d:27:b5:3b:de:90:ee:aa:
61:c7:fa:38:70:d0:d1:4a:74:8d:cd:bc:32:81:0e:
8a:6f:ad:e4:3d:58:28:f0:ab:b6:62:57:08:d6:0f:
24:c7:4f:22:e6:21:c3:fb:39:6d:f1:4b:99:09:f4:
19:5f:cd:2f:72:a7:4f:83:93:b0:71:e0:74:f2:00:
3d:e2:fb:3d:72:6a:22:5c:56:69:90:b8:a0:2a:9f:
e3:92:47:fa:19:73:bf:8d:a6:21:bf:df:d4:e8:56:
4d:cc:a4:39:06:b6:a3:61:4b:95:06:0b:9c:70:d3:
7a:70:43:51:11:cf:be:a1:11:db:32:2a:32:38:6f:
62:84:c4:08:ed:3e:e6:00:6d:07:4c:70:52:ac:ba:
09:1c:22:21:a4:0c:43:fe:fa:d2:bb:4c:35:66:1a:
23:39:f6:ca:95:a2:bb:31:20:53:d3:25:81:40:f2:
e0:d3:dd:d1:f4:5d:01:62:13:29:ea:c4:a5:6b:de:
6a:49:86:d9:cf:23:31:db:00:9e:d3:65:6e:fc:45:
46:09:b3:84:8b:14:70:57:f4:91:c6:f5:cb:63:1b:
c9:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:8F:97:CA:88:C3:5C:5D:82:A8:08:DC:60:38:FE:F4:47:02:00:B5
X509v3 Authority Key Identifier:
keyid:ED:6D:A9:E4:16:86:D2:1C:12:79:9C:8E:84:B2:74:AA:82:41:50:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7W2p5BaG0hwSeZyOhLJ0qoJBUIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/ac017c-ff29-43cf-a3d6-29f1beb2f282/1/E4-XyojDXF2CqAjcYDj-9EcCALU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/ac017c-ff29-43cf-a3d6-29f1beb2f282/1/7W2p5BaG0hwSeZyOhLJ0qoJBUIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.143.244.0/23
Signature Algorithm: sha256WithRSAEncryption
69:ce:ec:9b:11:7f:f2:49:6a:52:09:70:6e:1b:94:61:66:10:
f5:a7:da:f9:d6:3f:44:f4:79:89:7c:7b:16:93:e2:63:9d:c2:
da:1b:ac:9d:64:61:61:43:61:d3:41:fa:85:f5:97:1b:28:e8:
66:99:b2:d8:00:b1:e1:f0:7f:d1:3d:f1:c7:b6:34:c4:fb:40:
22:32:22:7d:b8:5e:36:67:85:61:c4:f6:e8:f0:f9:fc:96:9d:
75:9d:5c:6c:61:60:d5:89:d1:ff:20:c9:97:f3:7f:41:66:d0:
69:6a:72:14:f8:ac:53:9f:29:9c:8c:63:44:80:be:33:27:46:
3d:2b:7f:d7:37:72:b0:15:38:59:ea:69:82:c7:de:27:46:a1:
46:68:69:9a:93:17:de:33:4a:81:87:39:16:b0:db:28:db:7f:
ed:9c:81:08:01:ef:0b:9f:54:d9:f2:79:34:58:6d:e7:dc:97:
9c:16:12:e1:3e:e3:89:c2:86:65:74:7d:21:3c:07:7c:73:e8:
b0:82:72:a7:a6:63:18:e8:1f:4f:d2:01:83:f5:f9:c1:8c:cd:
de:33:5b:91:35:31:34:ee:3c:83:3c:46:1a:fd:f9:13:37:85:
ee:8d:51:fd:51:bc:05:14:40:9a:fc:1c:ed:47:f1:58:c3:04:
2f:76:3c:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:50 2023 by rpki-client on console-fra.rpki-client.org