Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/4ff06f-e97f-4c5a-9da7-7ee090504fba/1/wR5GaSg6rh5bCui7QCnpVZdYvG4.roa
File: wR5GaSg6rh5bCui7QCnpVZdYvG4.roa (raw, json)
Hash identifier: 50w/HixiVJXy+RE6W+DGNam2Tnqp3oJqxAuYHij2kVY=
Subject key identifier: C1:1E:46:69:28:3A:AE:1E:5B:0A:E8:BB:40:29:E9:55:97:58:BC:6E
Certificate issuer: /CN=a7f00d1bffff3a53e94f867d743d031b922db5b1
Certificate serial: 018217273B1CEC169E700C475B500328A2F7
Authority key identifier: A7:F0:0D:1B:FF:FF:3A:53:E9:4F:86:7D:74:3D:03:1B:92:2D:B5:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p_ANG___OlPpT4Z9dD0DG5IttbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/4ff06f-e97f-4c5a-9da7-7ee090504fba/1/wR5GaSg6rh5bCui7QCnpVZdYvG4.roa
Signing time: Tue 19 Jul 2022 15:50:23 +0000
ROA not before: Tue 19 Jul 2022 15:50:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201924
IP address blocks: 46.29.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:17:27:3b:1c:ec:16:9e:70:0c:47:5b:50:03:28:a2:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7f00d1bffff3a53e94f867d743d031b922db5b1
Validity
Not Before: Jul 19 15:50:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c11e4669283aae1e5b0ae8bb4029e9559758bc6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:18:6e:9b:32:53:e0:fb:e9:a7:98:80:a6:c6:
b7:2c:1f:b0:2a:84:58:bb:bd:de:37:ea:7a:57:2c:
85:9a:85:37:c4:02:ad:e8:a4:d1:74:f0:23:f4:40:
3a:f4:bc:35:38:26:e9:25:eb:1e:72:32:6c:6f:c4:
a2:9f:08:5a:ed:ec:bc:4b:d8:e5:bc:e5:ab:68:78:
4e:fb:e9:9a:55:85:9c:6d:91:7f:88:6e:6f:ad:e1:
30:3a:1e:9a:07:62:77:e2:17:7c:bd:a9:8f:af:20:
54:e4:4c:95:b9:d0:9e:70:63:7a:6a:87:e9:5d:a6:
41:50:0f:6d:f0:1e:91:ca:3c:90:e5:51:14:7a:0d:
76:5c:92:ac:be:df:63:d9:4a:ee:43:de:6c:2c:8c:
a4:56:9e:96:60:38:b5:41:5f:d6:fd:48:3e:7f:00:
ef:a1:03:68:2b:59:5e:1d:f4:6d:e2:2f:61:8c:58:
90:75:57:ad:d5:d2:ba:01:3b:63:48:cb:59:1f:bb:
96:e2:30:31:44:5e:36:f6:9d:9e:8a:6f:07:84:7b:
62:1a:2c:eb:e1:5a:3f:a2:8c:36:18:fa:e7:ee:5f:
46:db:7a:f5:1b:48:e3:2f:4e:6b:2b:2a:b7:6e:a8:
ae:38:1b:e8:f6:ba:d3:f9:42:77:1e:f3:fb:4e:24:
87:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:1E:46:69:28:3A:AE:1E:5B:0A:E8:BB:40:29:E9:55:97:58:BC:6E
X509v3 Authority Key Identifier:
keyid:A7:F0:0D:1B:FF:FF:3A:53:E9:4F:86:7D:74:3D:03:1B:92:2D:B5:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p_ANG___OlPpT4Z9dD0DG5IttbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/4ff06f-e97f-4c5a-9da7-7ee090504fba/1/wR5GaSg6rh5bCui7QCnpVZdYvG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/4ff06f-e97f-4c5a-9da7-7ee090504fba/1/p_ANG___OlPpT4Z9dD0DG5IttbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.29.2.0/24
Signature Algorithm: sha256WithRSAEncryption
57:be:2a:2c:ba:af:24:8b:e8:22:d4:62:2c:20:16:ee:15:53:
57:ca:cb:f7:e9:cf:d0:09:e1:fc:9f:fb:93:86:a2:de:90:c6:
c1:2d:44:a1:54:9f:99:95:67:a3:b7:b6:a3:1c:78:29:90:db:
2e:20:63:42:89:06:e6:26:be:75:e5:41:df:3b:e5:d0:8f:e0:
5f:8a:88:97:6b:0f:8b:b7:76:45:b6:bf:9f:e2:8a:0f:d8:b6:
8b:b6:f8:fe:06:13:f0:34:16:e4:ea:fa:b6:71:9b:c2:4e:22:
a4:c6:de:e8:e5:e0:b9:28:46:f0:74:80:76:a9:cd:a7:e9:69:
c6:7e:fd:e4:0e:74:3e:7f:7e:fe:7c:01:38:44:0e:a6:e8:aa:
c2:9f:a3:5e:e9:0a:9c:32:f6:a1:a9:f7:8d:fd:35:6d:7a:fb:
80:b3:ad:e2:2b:df:98:5e:45:a1:f3:5b:e1:6b:8d:f7:c1:0e:
f3:72:74:68:89:31:83:b5:9b:d5:81:37:1a:2d:54:60:6e:bb:
ac:17:a4:d4:5f:23:51:fc:ef:4a:a8:1e:02:d5:50:53:36:30:
d0:48:c0:fb:45:11:d4:4e:e4:9e:05:a0:f1:02:66:50:be:5a:
68:c9:85:32:9d:f0:ec:7f:51:7d:60:7b:0f:9d:3e:df:90:f8:
82:85:e9:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:09 2024 by rpki-client on console-ams.rpki-client.org