Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/c42ae7-5f64-4039-a051-403b857bf8b7/1/e0y2iIUL2or2dcn4O12iyYkbsXo.roa
File: e0y2iIUL2or2dcn4O12iyYkbsXo.roa (raw, json)
Hash identifier: 6XvSynvyx+Nda45IvIleH6+d92jAEwdSXluiNN4tP9o=
Subject key identifier: 7B:4C:B6:88:85:0B:DA:8A:F6:75:C9:F8:3B:5D:A2:C9:89:1B:B1:7A
Certificate issuer: /CN=c4232bd5238dc4010d1c52929ddea4f23c042574
Certificate serial: 01061D09
Authority key identifier: C4:23:2B:D5:23:8D:C4:01:0D:1C:52:92:9D:DE:A4:F2:3C:04:25:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xCMr1SONxAENHFKSnd6k8jwEJXQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/c42ae7-5f64-4039-a051-403b857bf8b7/1/e0y2iIUL2or2dcn4O12iyYkbsXo.roa
Signing time: Sat 01 Jan 2022 13:06:20 +0000
ROA not before: Sat 01 Jan 2022 13:06:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 46.254.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17177865 (0x1061d09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4232bd5238dc4010d1c52929ddea4f23c042574
Validity
Not Before: Jan 1 13:06:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b4cb688850bda8af675c9f83b5da2c9891bb17a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:25:ae:93:6a:05:30:07:85:d5:3c:64:55:93:
93:28:d7:9c:99:58:41:b8:4a:8d:bd:51:62:9b:9a:
f9:de:25:20:ad:fd:0f:c5:32:c4:43:d5:1e:6c:4d:
9a:56:11:d3:59:52:a2:e6:9e:6b:ba:20:05:bf:09:
cf:dc:1c:ce:65:f3:2b:38:bf:5d:6c:fa:b5:79:83:
84:7b:12:2e:4d:ab:88:6c:0e:3a:a0:cc:ae:78:d1:
46:99:16:cc:37:c3:81:3b:15:bd:45:ec:65:b0:fb:
6b:99:70:50:af:56:91:c2:60:3b:35:42:d2:ea:4a:
00:a1:17:75:e1:24:f5:50:7c:fc:5d:fd:53:00:6c:
b2:66:1c:02:93:36:ec:09:63:fa:91:1c:4f:7d:67:
84:b1:59:ab:23:d3:a0:60:77:92:67:18:35:77:c9:
7f:1c:00:e7:1e:7d:13:67:6e:65:ff:e8:a4:e6:21:
e9:0d:9b:c5:ff:83:dd:dd:95:cf:28:fe:e2:7d:6c:
3d:c6:f7:44:6d:0c:6b:ed:73:71:56:e1:6b:4b:ee:
48:1c:60:6c:9a:00:92:c7:24:33:b4:f4:ac:bc:1e:
59:a5:b5:0b:2e:c5:59:92:78:36:02:c4:79:1b:bb:
2a:dc:df:8c:06:23:83:12:ff:d9:d1:12:8d:a8:05:
58:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:4C:B6:88:85:0B:DA:8A:F6:75:C9:F8:3B:5D:A2:C9:89:1B:B1:7A
X509v3 Authority Key Identifier:
keyid:C4:23:2B:D5:23:8D:C4:01:0D:1C:52:92:9D:DE:A4:F2:3C:04:25:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCMr1SONxAENHFKSnd6k8jwEJXQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c42ae7-5f64-4039-a051-403b857bf8b7/1/e0y2iIUL2or2dcn4O12iyYkbsXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c42ae7-5f64-4039-a051-403b857bf8b7/1/xCMr1SONxAENHFKSnd6k8jwEJXQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.254.108.0/24
Signature Algorithm: sha256WithRSAEncryption
25:e7:21:25:88:a8:a8:2d:bd:be:09:d8:a4:8c:7d:85:86:bd:
bc:c7:86:18:cc:14:62:36:f8:cf:b5:08:0c:fb:94:88:71:70:
90:e4:88:eb:58:94:3e:ca:6f:ce:71:1f:e7:09:d0:37:ca:8b:
6f:db:38:2a:28:06:b8:7c:7a:a2:26:69:db:00:43:42:39:4c:
91:53:cf:c1:47:81:91:ad:a5:2d:5c:5a:dd:96:38:4b:c0:0c:
4e:04:f1:b6:5d:3f:a2:a6:3f:da:27:25:bc:bf:73:d6:9a:f0:
f5:11:25:9c:7e:a6:b1:ac:a7:0a:77:10:e6:dd:d1:67:ba:b2:
e9:63:bd:94:52:d8:32:de:07:c7:8f:2a:e4:b2:ff:0e:b5:b8:
8c:24:24:ff:12:05:fd:04:cf:78:ef:bb:6d:61:53:2a:4b:ef:
83:6f:3a:88:27:68:c9:ba:2e:ce:8f:7b:b5:eb:26:ae:91:2e:
9f:f8:f6:36:40:b2:f9:57:3d:71:8a:d8:55:b8:ac:55:37:93:
d5:f7:96:03:6f:e5:a3:ca:bd:35:5c:eb:93:68:14:99:91:d5:
93:07:63:3a:84:cc:82:c1:97:ca:4c:ad:04:cb:e6:7d:0a:d0:
07:b7:d6:9c:78:e0:b2:39:31:a8:93:79:68:f9:7a:97:ec:2e:
a2:b2:e5:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:27 2023 by rpki-client on console-fra.rpki-client.org