Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/09da87-a2b2-429b-be96-cd009b300a6c/1/5UoIZSqePEPDFlb3YObM6152byU.roa
File: 5UoIZSqePEPDFlb3YObM6152byU.roa (raw, json)
Hash identifier: A/ApvOnheexH2e75CLTBu1HDtukAwGBMwn17b6imozw=
Subject key identifier: E5:4A:08:65:2A:9E:3C:43:C3:16:56:F7:60:E6:CC:EB:5E:76:6F:25
Certificate issuer: /CN=4d98fe502ac16e957cc33ebc2ec1be83bbed7cc4
Certificate serial: 16B2D4A1
Authority key identifier: 4D:98:FE:50:2A:C1:6E:95:7C:C3:3E:BC:2E:C1:BE:83:BB:ED:7C:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TZj-UCrBbpV8wz68LsG-g7vtfMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/09da87-a2b2-429b-be96-cd009b300a6c/1/5UoIZSqePEPDFlb3YObM6152byU.roa
Signing time: Sat 01 Jan 2022 04:01:10 +0000
ROA not before: Sat 01 Jan 2022 04:01:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 185.46.40.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 380818593 (0x16b2d4a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d98fe502ac16e957cc33ebc2ec1be83bbed7cc4
Validity
Not Before: Jan 1 04:01:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e54a08652a9e3c43c31656f760e6cceb5e766f25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f5:f0:40:95:44:69:ce:9d:bd:3b:a8:2b:79:
19:44:2e:58:f5:bb:0f:1d:49:be:7a:a5:d6:b4:f8:
42:ca:4f:41:4f:e9:fd:04:4a:21:e0:c4:db:27:4f:
38:79:26:73:4a:6d:a4:55:fa:6f:f3:55:63:14:6b:
12:7a:59:b5:75:7a:f6:b9:10:5f:e9:dd:24:8b:12:
b7:ce:f9:72:ca:2d:5d:fa:6d:55:26:a6:f9:bd:e5:
05:31:50:4a:04:51:b0:97:30:61:88:03:9b:77:4e:
7f:e9:50:dc:2c:88:98:a3:a4:bc:16:93:ad:cc:9c:
e9:55:4d:09:30:5e:6e:10:73:03:12:d2:fc:bc:be:
22:70:09:f0:b9:a9:3f:b4:eb:a3:a8:1b:33:1e:db:
81:55:a8:46:61:11:6c:f1:88:cf:32:b3:1b:83:01:
5b:2e:68:4f:f7:c8:20:67:84:0a:d3:a4:30:90:2b:
0f:90:17:f1:37:1a:97:78:d8:0b:b8:c4:eb:d0:87:
3f:b8:c3:75:f0:38:1d:5d:e8:68:80:9b:84:19:cd:
62:8d:58:b7:f0:56:44:53:40:71:7b:86:3a:05:ce:
90:e5:b6:ae:dd:92:be:37:3d:b4:59:d0:1f:cb:27:
fc:68:a6:5b:3f:b3:db:38:8b:16:c9:36:84:34:44:
de:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:4A:08:65:2A:9E:3C:43:C3:16:56:F7:60:E6:CC:EB:5E:76:6F:25
X509v3 Authority Key Identifier:
keyid:4D:98:FE:50:2A:C1:6E:95:7C:C3:3E:BC:2E:C1:BE:83:BB:ED:7C:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TZj-UCrBbpV8wz68LsG-g7vtfMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/09da87-a2b2-429b-be96-cd009b300a6c/1/5UoIZSqePEPDFlb3YObM6152byU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/09da87-a2b2-429b-be96-cd009b300a6c/1/TZj-UCrBbpV8wz68LsG-g7vtfMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.40.0/22
Signature Algorithm: sha256WithRSAEncryption
40:b0:99:85:2f:96:2c:d6:7e:cc:11:37:d3:eb:df:dd:3e:0a:
f6:49:4e:0f:8a:40:a5:49:12:23:85:84:d1:97:73:29:d8:99:
0e:14:20:59:04:06:77:1a:b4:03:50:02:6f:a4:c1:8e:d3:f2:
55:20:85:d2:5e:98:38:1e:0c:7d:b9:33:ee:67:78:18:63:a4:
30:5b:65:bf:da:9b:f6:09:29:f6:32:cb:75:59:fe:d8:1e:24:
6f:8d:fc:9d:06:30:60:99:6e:12:15:c5:d6:f8:d0:a8:d6:0a:
24:87:14:fc:9c:8c:9f:6b:92:ed:e1:d4:fe:89:62:94:67:14:
e1:3a:20:00:5c:fc:cb:f4:d7:fb:a8:7a:6f:14:4f:f5:36:8e:
05:22:30:56:63:df:1f:93:f1:44:7c:f9:3e:e0:db:a5:8b:10:
70:59:c6:5a:82:e6:c4:1b:9f:a7:c3:6a:d6:5f:84:ee:2a:07:
e8:fb:f5:62:f0:8f:74:a1:72:47:c5:65:04:f9:69:8f:e0:8f:
e7:8a:6f:01:03:7c:f8:df:17:06:04:97:33:f7:a2:f4:18:04:
1a:de:6c:9d:9b:10:bf:03:a5:a5:27:80:b5:9c:0e:28:6c:75:
bd:52:d0:14:5a:3d:0d:71:34:5c:bb:a7:e0:7a:0b:ec:d3:95:
5d:90:48:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:12 2024 by rpki-client on console-fra.rpki-client.org