Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/6dc978-bfd6-41ec-8a3a-c03017e98c53/1/egckuYLUJizRDYBXYinntl8WOBw.roa
File: egckuYLUJizRDYBXYinntl8WOBw.roa (raw, json)
Hash identifier: x8rSg15bMVibCGXpDxCTaIKA+YitjzUibe5pDmGiZl4=
Subject key identifier: 7A:07:24:B9:82:D4:26:2C:D1:0D:80:57:62:29:E7:B6:5F:16:38:1C
Certificate issuer: /CN=80e48485ce9b0e425640804edc0ed2ba6b8f4b8f
Certificate serial: 02A617B3
Authority key identifier: 80:E4:84:85:CE:9B:0E:42:56:40:80:4E:DC:0E:D2:BA:6B:8F:4B:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gOSEhc6bDkJWQIBO3A7SumuPS48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/6dc978-bfd6-41ec-8a3a-c03017e98c53/1/egckuYLUJizRDYBXYinntl8WOBw.roa
Signing time: Thu 19 May 2022 20:01:30 +0000
ROA not before: Thu 19 May 2022 20:01:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398465
IP address blocks: 46.254.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44439475 (0x2a617b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80e48485ce9b0e425640804edc0ed2ba6b8f4b8f
Validity
Not Before: May 19 20:01:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a0724b982d4262cd10d80576229e7b65f16381c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:43:22:c2:fe:fc:7c:42:2b:9f:4a:ab:e4:0c:
b6:69:c8:8d:de:d9:ef:4c:99:e6:71:ae:3a:86:2d:
8d:12:8f:54:71:ed:f4:54:50:67:45:b2:56:08:2d:
a6:f8:bc:2e:3f:1e:f5:56:44:3e:d1:5c:ea:71:d8:
9c:21:2f:8e:8b:97:64:0d:2f:a3:1e:a6:50:6e:2f:
91:5a:77:eb:c0:1b:d4:e7:f0:13:7c:13:7a:ac:fa:
4b:0d:32:00:54:21:c1:04:b5:40:3d:6d:39:98:d3:
37:15:fb:59:3a:62:5e:73:b1:3f:5d:aa:97:d5:65:
cb:2d:c9:a6:05:ab:b3:0b:4b:91:29:d5:a0:b3:62:
82:4b:45:99:60:43:c0:b5:62:b1:1a:16:4c:9a:ef:
47:39:5c:21:59:19:8b:f5:7f:8f:87:66:27:10:82:
6e:f2:af:24:e7:1c:97:0b:0e:98:a2:03:c2:55:f8:
eb:0f:99:f9:41:66:4d:87:82:09:7e:94:d1:31:16:
83:3b:89:7f:e6:9d:06:13:47:c9:d6:77:aa:71:86:
f6:26:70:86:3b:a7:00:a2:07:b5:89:ca:39:11:19:
93:b4:98:76:58:93:b9:f3:23:cd:76:6b:ff:cb:1d:
f6:02:d1:3a:76:5f:53:c4:e2:c2:ff:6c:91:12:31:
29:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:07:24:B9:82:D4:26:2C:D1:0D:80:57:62:29:E7:B6:5F:16:38:1C
X509v3 Authority Key Identifier:
keyid:80:E4:84:85:CE:9B:0E:42:56:40:80:4E:DC:0E:D2:BA:6B:8F:4B:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gOSEhc6bDkJWQIBO3A7SumuPS48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/6dc978-bfd6-41ec-8a3a-c03017e98c53/1/egckuYLUJizRDYBXYinntl8WOBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/6dc978-bfd6-41ec-8a3a-c03017e98c53/1/gOSEhc6bDkJWQIBO3A7SumuPS48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.254.106.0/24
Signature Algorithm: sha256WithRSAEncryption
85:18:a7:9b:b3:e9:19:fa:d4:6e:1b:ce:e4:93:f7:8c:30:5e:
d5:bb:a1:53:30:d4:ac:36:06:9a:8a:c0:18:40:f0:45:a8:d9:
c7:21:a9:fc:f5:27:fa:ed:f2:c7:74:66:a9:03:d5:28:63:84:
36:ab:a7:1e:db:5f:39:7b:cb:d0:6f:58:05:18:0d:42:a3:bb:
ca:05:1f:05:e5:65:77:ad:23:28:81:b3:87:44:dd:ae:63:dc:
70:16:67:60:77:06:3b:98:38:da:76:f3:ab:0c:5f:60:f4:db:
02:cf:95:31:cd:8e:d8:a8:ad:c2:ab:15:6d:3e:cc:8a:46:c5:
f9:96:69:a5:72:0e:8d:65:32:ba:66:0f:08:24:5e:67:dc:5d:
00:de:a1:55:92:3a:35:aa:46:25:fb:a4:4b:f5:3a:b5:f3:6a:
94:95:f0:2c:c4:e0:38:76:a5:bf:bc:4d:9f:93:2c:dd:56:4b:
9b:4f:3f:49:ac:fd:48:f0:23:34:1b:c1:36:42:02:c4:97:d5:
cf:db:7b:3e:82:c3:79:f4:e1:c7:c3:3a:a5:05:f0:2f:06:58:
9e:d3:b1:93:88:84:25:3c:64:45:3c:ad:05:98:bd:a6:ba:b9:
87:95:7c:50:46:48:10:78:a9:ea:a5:53:73:99:20:52:05:af:
8a:72:0d:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:17 2023 by rpki-client on console-fra.rpki-client.org