Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/ac017c-ff29-43cf-a3d6-29f1beb2f282/1/tUlbzVZ62nOBwZdRpVRzXdZ841E.roa
File: tUlbzVZ62nOBwZdRpVRzXdZ841E.roa (raw, json)
Hash identifier: iha6D+NgQpgPFcJOtOnAhIpKnDxvD5oiHcMn5ZRWq74=
Subject key identifier: B5:49:5B:CD:56:7A:DA:73:81:C1:97:51:A5:54:73:5D:D6:7C:E3:51
Certificate issuer: /CN=ed6da9e41686d21c12799c8e84b274aa8241508c
Certificate serial: 0185496BD4789AC37AD76891B44800AFC2F7
Authority key identifier: ED:6D:A9:E4:16:86:D2:1C:12:79:9C:8E:84:B2:74:AA:82:41:50:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7W2p5BaG0hwSeZyOhLJ0qoJBUIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/ac017c-ff29-43cf-a3d6-29f1beb2f282/1/tUlbzVZ62nOBwZdRpVRzXdZ841E.roa
Signing time: Sun 25 Dec 2022 13:14:41 +0000
ROA not before: Sun 25 Dec 2022 13:14:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57405
IP address blocks: 46.143.224.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:49:6b:d4:78:9a:c3:7a:d7:68:91:b4:48:00:af:c2:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed6da9e41686d21c12799c8e84b274aa8241508c
Validity
Not Before: Dec 25 13:14:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5495bcd567ada7381c19751a554735dd67ce351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c0:b2:e3:f9:a0:5a:97:f2:69:81:fc:12:dc:
3a:30:fe:8c:9b:c9:92:4d:4c:8b:f7:c8:fe:ac:83:
79:59:a5:75:18:f4:50:c8:d1:d4:aa:69:e1:2c:85:
55:0c:15:49:af:40:54:e4:d8:d5:2b:22:de:49:c3:
9a:e7:e5:3f:84:d0:fa:48:99:0e:95:6a:98:f7:03:
f3:ce:51:19:67:04:78:6f:7f:92:56:be:15:1e:b7:
82:e7:f1:16:1c:43:8d:99:45:d3:d3:53:9c:5a:b4:
fd:24:4e:fc:3d:cf:14:e5:38:06:b6:25:88:e4:62:
02:38:0d:3d:c9:a1:1f:34:c2:14:6d:5d:97:21:b8:
58:c4:7c:a0:c3:5c:47:96:a4:f0:87:a3:fc:95:dc:
2a:48:bc:33:ed:87:07:5a:30:ee:84:2b:78:4d:d7:
45:e4:be:1a:42:56:cb:6d:3f:e6:6e:78:aa:c4:2b:
71:1e:90:68:4c:b0:71:a1:1a:13:f5:0b:6d:23:10:
93:ba:16:c1:91:76:29:5e:3d:8e:bb:38:7f:58:d1:
4f:50:27:58:9b:6b:ae:76:27:1e:0c:0d:56:3b:0f:
74:c0:9f:c6:53:9d:2d:99:43:79:83:d2:71:c6:f4:
5e:df:b1:d5:5e:20:38:5f:e0:c1:74:19:c1:db:53:
ec:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:49:5B:CD:56:7A:DA:73:81:C1:97:51:A5:54:73:5D:D6:7C:E3:51
X509v3 Authority Key Identifier:
keyid:ED:6D:A9:E4:16:86:D2:1C:12:79:9C:8E:84:B2:74:AA:82:41:50:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7W2p5BaG0hwSeZyOhLJ0qoJBUIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/ac017c-ff29-43cf-a3d6-29f1beb2f282/1/tUlbzVZ62nOBwZdRpVRzXdZ841E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/ac017c-ff29-43cf-a3d6-29f1beb2f282/1/7W2p5BaG0hwSeZyOhLJ0qoJBUIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.143.224.0/20
Signature Algorithm: sha256WithRSAEncryption
93:6d:45:ad:56:27:3f:08:ef:5c:3a:98:c8:2a:0e:5a:bd:a4:
87:5a:48:33:cd:73:c4:15:17:31:63:e9:2e:bc:fa:df:da:0b:
dc:a3:d1:7e:f9:33:36:a0:fe:61:ec:0b:13:d2:65:af:cb:85:
15:3b:d0:62:19:62:72:f5:e2:9f:59:b7:df:69:d4:9b:0d:d5:
73:3d:71:15:c7:9e:77:b9:34:cd:4c:11:13:c7:1f:da:ff:bf:
4d:0f:95:df:2b:c6:2d:eb:ae:ff:99:27:bf:2e:ea:6f:12:af:
10:2d:9e:7f:52:27:73:4c:53:9f:a0:68:fc:e8:d0:88:51:60:
3c:3e:7d:c0:46:ae:36:68:ee:ea:3a:a2:48:2f:01:26:fe:00:
cc:91:22:39:0f:e4:7f:5d:0a:82:e6:70:a2:d2:0a:71:55:13:
32:3a:df:d7:dd:fe:db:a3:3b:ea:e7:30:c2:96:09:aa:b5:13:
78:0e:b4:c8:bf:ce:7e:1c:dc:f4:09:7f:c5:0b:31:b8:73:de:
04:ab:73:15:9f:30:c5:bf:89:44:ea:41:d7:a1:76:e2:8d:b0:
75:82:60:3f:8e:64:25:44:d0:ff:20:78:f8:13:a1:e1:a1:52:
84:f5:84:fa:0c:7a:68:87:97:10:c6:27:f5:5e:4b:20:9c:37:
df:e4:ff:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:29 2023 by rpki-client on console-ams.rpki-client.org