Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/d31e5f-0f52-4623-867a-543d6182e294/1/d0SLKp_JVujHpOME6KikpeT4iKI.roa
File: d0SLKp_JVujHpOME6KikpeT4iKI.roa (raw, json)
Hash identifier: 8cYF1roKfGwWac23a9Er7knCqRm2I7zRHXho/pej7Vg=
Subject key identifier: 77:44:8B:2A:9F:C9:56:E8:C7:A4:E3:04:E8:A8:A4:A5:E4:F8:88:A2
Certificate issuer: /CN=e2b1e2e4c508c6c7a98b6598528745c813fad31d
Certificate serial: 07B89C42
Authority key identifier: E2:B1:E2:E4:C5:08:C6:C7:A9:8B:65:98:52:87:45:C8:13:FA:D3:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4rHi5MUIxsepi2WYUodFyBP60x0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/d31e5f-0f52-4623-867a-543d6182e294/1/d0SLKp_JVujHpOME6KikpeT4iKI.roa
Signing time: Sat 01 Jan 2022 07:03:28 +0000
ROA not before: Sat 01 Jan 2022 07:03:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31198
IP address blocks: 46.18.152.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129539138 (0x7b89c42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2b1e2e4c508c6c7a98b6598528745c813fad31d
Validity
Not Before: Jan 1 07:03:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77448b2a9fc956e8c7a4e304e8a8a4a5e4f888a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5a:6d:57:b5:a8:84:f2:45:a3:04:e0:24:29:
bc:0a:92:36:8e:1f:11:64:72:83:77:f7:a0:5c:6a:
dd:8f:e9:89:33:a5:73:64:cc:b2:94:f6:86:7f:9d:
bb:ec:35:6a:64:63:e3:2e:c7:c0:ae:04:1e:76:36:
9c:ee:08:66:53:82:5e:d5:38:61:dd:ed:84:de:23:
e6:6e:a8:2d:7e:8c:3c:82:39:53:8d:97:fe:1e:8b:
99:d7:eb:8a:51:d3:29:13:d1:cb:61:ba:61:a5:be:
10:9b:9b:a4:87:1e:31:26:2b:f1:fd:30:1c:76:0c:
05:8d:f6:14:27:b3:2b:23:04:62:4a:43:1d:ac:7c:
c1:1d:33:dc:af:7e:10:74:b8:73:fd:a3:6f:5f:e2:
98:b0:01:62:d4:79:0c:c5:97:4f:89:80:5e:1c:90:
5b:ba:be:f9:4d:ba:2a:16:93:3a:c8:e0:f3:dd:76:
a9:7c:12:fa:0e:b2:43:09:d0:05:bc:27:f9:b9:0f:
2c:d4:9e:c3:94:18:d1:95:f3:50:31:a5:1e:89:0c:
32:2f:51:01:83:c1:c0:a0:fb:b9:3d:2b:05:45:ca:
cb:90:dc:71:5f:25:b4:d2:f8:32:10:89:fe:68:be:
d7:12:a9:d6:13:8a:80:b1:cb:66:82:d4:29:08:6b:
ab:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:44:8B:2A:9F:C9:56:E8:C7:A4:E3:04:E8:A8:A4:A5:E4:F8:88:A2
X509v3 Authority Key Identifier:
keyid:E2:B1:E2:E4:C5:08:C6:C7:A9:8B:65:98:52:87:45:C8:13:FA:D3:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4rHi5MUIxsepi2WYUodFyBP60x0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/d31e5f-0f52-4623-867a-543d6182e294/1/d0SLKp_JVujHpOME6KikpeT4iKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/d31e5f-0f52-4623-867a-543d6182e294/1/4rHi5MUIxsepi2WYUodFyBP60x0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.18.152.0/21
Signature Algorithm: sha256WithRSAEncryption
37:d4:17:5a:fc:6d:a8:2c:19:a1:4f:87:ac:75:e6:b7:25:66:
e8:7e:1b:9a:74:cc:da:ac:97:ab:24:3e:46:f8:2b:13:af:2d:
d5:32:ec:8e:00:d0:ec:42:d8:7a:66:76:c2:5a:b9:ae:ea:94:
b6:ec:9d:50:0a:c1:46:a5:25:4e:e2:b9:f6:2a:86:19:ab:3f:
5f:7e:9e:62:dd:8a:06:83:36:9f:bb:13:76:f5:e9:e1:77:98:
e9:68:39:e2:7e:28:98:0a:84:46:fc:dc:94:9a:7b:be:30:44:
b4:02:a9:32:e7:5b:ec:14:43:95:74:61:38:58:b7:bb:04:a1:
b3:5d:f9:00:be:06:1d:50:65:0c:8b:e2:93:9c:7a:c1:93:87:
19:6d:51:db:94:4c:04:ee:40:59:e1:16:22:21:34:e7:7f:e0:
b3:37:e3:8a:c1:40:f3:1b:7f:c2:aa:00:06:c4:6c:a0:a2:c4:
dc:98:d2:27:d7:6c:b6:df:99:f4:df:f4:e3:28:5b:66:d2:c4:
bd:75:ed:94:ef:62:81:2e:cb:95:03:ac:d3:e1:c8:e1:14:fd:
d9:93:89:91:bd:0e:7e:4a:d1:0f:17:d4:e5:68:6f:90:ed:3e:
2b:3d:22:82:6d:ec:e6:2b:84:43:8f:0e:7d:78:3b:aa:0a:53:
a3:7b:07:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:05 2023 by rpki-client on console-ams.rpki-client.org