Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/D68tpCIROi1tsonOkm2we0NpKHo.roa
File: D68tpCIROi1tsonOkm2we0NpKHo.roa (raw, json)
Hash identifier: zaK/J9fH4Ty/vprLp4NmdSck//Mkbyxq5cELE2P9nMQ=
Subject key identifier: 0F:AF:2D:A4:22:11:3A:2D:6D:B2:89:CE:92:6D:B0:7B:43:69:28:7A
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0182C59A8A26D4D94FC7EDB87CC3CC6EAD5D
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/D68tpCIROi1tsonOkm2we0NpKHo.roa
Signing time: Mon 22 Aug 2022 12:50:15 +0000
ROA not before: Mon 22 Aug 2022 12:50:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51737
IP address blocks: 46.20.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c5:9a:8a:26:d4:d9:4f:c7:ed:b8:7c:c3:cc:6e:ad:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Aug 22 12:50:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0faf2da422113a2d6db289ce926db07b4369287a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a9:9c:6f:27:af:fa:43:5c:a0:56:b4:5d:05:
b8:33:dc:0b:62:e1:17:76:2d:eb:f9:1a:b6:5b:07:
17:1d:8c:7d:0a:29:5a:20:56:28:68:80:c2:ee:c7:
7d:5b:c5:07:5c:c1:32:5a:91:43:6b:10:f0:b9:90:
2e:ea:52:cb:f3:26:6e:c4:04:f7:7a:84:7e:50:b7:
63:5e:d2:6a:b2:1c:ce:8b:9a:5d:86:33:f5:b3:09:
23:2f:4e:12:65:cc:38:e1:92:83:2d:b1:cc:fa:2f:
5f:c3:57:25:d4:fd:6d:c7:fd:19:2d:05:e0:35:e0:
26:07:36:43:ee:49:40:27:04:70:fe:e2:b4:0a:16:
82:53:b0:e3:4e:ea:81:a1:41:06:da:63:bd:fb:03:
2f:dd:58:82:0c:21:02:da:61:b9:27:6c:af:b1:06:
71:bd:bf:d4:dd:12:0c:f7:ee:17:a1:2c:d0:a3:43:
23:18:c0:c8:ae:3e:54:dc:e0:52:46:0e:87:11:44:
c8:31:2c:a9:26:ff:12:2c:c3:00:65:00:08:47:4c:
48:83:78:d6:7e:89:35:c0:94:4d:a5:ab:bd:ca:5a:
2e:01:dc:71:e5:6f:3c:9e:76:26:09:94:4c:00:e6:
c8:9d:3b:56:1c:4f:c5:d7:a8:0b:62:06:21:6e:7a:
e4:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:AF:2D:A4:22:11:3A:2D:6D:B2:89:CE:92:6D:B0:7B:43:69:28:7A
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/D68tpCIROi1tsonOkm2we0NpKHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.20.208.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:0b:19:56:bf:97:f9:78:d1:aa:4c:cc:6b:9c:ee:b6:87:57:
96:bb:a3:51:2f:79:66:10:f2:fd:e8:84:49:4f:6c:e5:03:93:
23:50:bc:83:e0:a6:d1:90:69:b9:25:5b:08:a3:87:67:10:27:
78:17:de:4a:03:4e:62:39:d5:f1:6a:cb:08:34:b0:da:d3:12:
e7:41:03:03:24:4c:0e:80:f0:9b:45:fa:c0:f9:81:1b:1e:71:
a1:14:d5:e0:f8:f8:cc:32:54:62:09:45:35:8e:f6:64:fa:9d:
10:d1:d8:d9:4b:32:54:fa:32:05:ae:37:92:d4:2f:da:a5:cb:
66:3e:50:c2:3a:b9:70:0b:81:b9:52:52:6a:ef:d7:4a:5b:77:
f2:07:d6:8f:cb:fa:b1:d9:41:93:1d:10:42:85:7d:3d:20:1a:
e6:a6:cc:e9:ee:f6:b8:92:ea:9b:ef:dc:5e:92:87:40:84:a7:
f7:b7:88:56:e1:1f:f5:a1:7e:d2:f9:87:3b:8a:07:0b:06:d3:
e5:12:80:b5:4c:59:72:8c:a7:f7:58:1b:df:de:dc:d9:4d:9b:
8a:35:c3:67:ee:1d:85:33:aa:eb:73:01:73:c3:00:81:d6:c9:
76:75:68:be:63:0b:0a:75:b9:be:4b:88:3c:db:ca:c2:db:f1:
f1:77:1e:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org