Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/c37c16-0603-4845-b4d4-95ddb0974e4b/1/2iWes3sjH6RESPnYTPwM0lkby_k.roa
File: 2iWes3sjH6RESPnYTPwM0lkby_k.roa (raw, json)
Hash identifier: VbfHTYQRNZEjM9lcyt5DEAyWB+8h3Z10nPftpBCkCZM=
Subject key identifier: DA:25:9E:B3:7B:23:1F:A4:44:48:F9:D8:4C:FC:0C:D2:59:1B:CB:F9
Certificate issuer: /CN=841f36fcbf7334eff6b91e80297ea5b25c4ecfd2
Certificate serial: 057A5772
Authority key identifier: 84:1F:36:FC:BF:73:34:EF:F6:B9:1E:80:29:7E:A5:B2:5C:4E:CF:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hB82_L9zNO_2uR6AKX6lslxOz9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/c37c16-0603-4845-b4d4-95ddb0974e4b/1/2iWes3sjH6RESPnYTPwM0lkby_k.roa
Signing time: Sat 01 Jan 2022 07:02:02 +0000
ROA not before: Sat 01 Jan 2022 07:02:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30781
IP address blocks: 46.183.224.0/21 maxlen: 24
185.106.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91903858 (0x57a5772)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=841f36fcbf7334eff6b91e80297ea5b25c4ecfd2
Validity
Not Before: Jan 1 07:02:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da259eb37b231fa44448f9d84cfc0cd2591bcbf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f2:c0:8d:fc:7d:a4:f3:66:b4:e4:d0:c7:61:
8c:f4:3b:aa:c9:40:b5:38:6a:a4:a1:48:8a:d4:c1:
32:c1:85:d6:18:e2:8d:36:f9:31:f1:cf:31:d6:13:
fc:10:de:74:12:eb:c3:70:bc:fe:fe:94:f9:74:a2:
7a:37:7d:1d:33:83:e2:fb:d8:44:2c:98:20:f1:e6:
f8:fd:a6:62:19:5b:94:b1:56:5e:41:b4:6e:de:00:
2d:f3:90:88:67:a0:fe:52:54:a6:c2:b5:c6:14:0a:
02:02:fc:5a:62:03:9b:26:e6:5b:c2:f7:ff:dc:8b:
f8:e7:2f:9e:14:78:8d:00:f1:a3:de:db:8a:5b:bb:
b0:7d:60:c0:8a:c7:48:7d:79:ed:eb:1e:23:49:b3:
c3:e9:2f:c4:af:ff:c5:79:85:cf:bd:f1:39:37:6c:
0b:5d:52:b6:7e:0a:3a:2f:89:d8:e8:bf:d8:00:04:
07:6c:4a:2a:0a:ea:5c:73:2d:cd:06:67:28:b7:fe:
72:b7:c8:43:76:1f:f3:83:35:92:3f:17:9b:e6:a7:
fa:5c:39:4f:ca:e6:5d:ba:1c:c3:30:53:4e:dc:6f:
b7:68:1d:28:8b:79:f9:9a:75:7a:a3:de:1f:02:97:
ba:c6:a8:f2:c3:ad:cc:f9:33:ec:0a:03:b6:55:c0:
77:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:25:9E:B3:7B:23:1F:A4:44:48:F9:D8:4C:FC:0C:D2:59:1B:CB:F9
X509v3 Authority Key Identifier:
keyid:84:1F:36:FC:BF:73:34:EF:F6:B9:1E:80:29:7E:A5:B2:5C:4E:CF:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hB82_L9zNO_2uR6AKX6lslxOz9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/c37c16-0603-4845-b4d4-95ddb0974e4b/1/2iWes3sjH6RESPnYTPwM0lkby_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/c37c16-0603-4845-b4d4-95ddb0974e4b/1/hB82_L9zNO_2uR6AKX6lslxOz9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.224.0/21
185.106.135.0/24
Signature Algorithm: sha256WithRSAEncryption
70:e5:0f:5c:ac:d6:c5:db:8e:c7:c1:a3:5b:33:2e:fa:39:95:
0f:52:5e:f5:f5:29:80:c5:35:65:09:93:15:e4:1f:49:24:db:
8f:60:f7:2c:4b:c6:db:03:bc:8b:e0:ea:66:19:50:1c:bd:d8:
22:07:60:f7:db:ce:cb:1a:f1:72:9b:ff:54:a9:bd:12:ca:ed:
43:6e:e5:49:25:0e:9b:f3:a0:52:17:12:ae:40:b4:e0:67:e6:
b4:fc:9a:ee:8c:35:5a:8c:f9:28:16:51:f0:58:61:e9:77:95:
69:da:15:6b:88:78:b4:89:b2:85:55:f5:b9:27:53:b4:f1:af:
70:c5:bd:20:5e:b0:40:28:52:ec:13:55:04:b4:f4:20:d0:29:
ff:9f:dd:f4:f1:19:d0:65:29:a2:29:1a:04:db:70:91:13:5f:
84:98:19:b1:26:af:2a:46:5d:4d:f1:d5:f1:49:19:e5:3e:d2:
3d:66:70:b1:90:27:b5:0a:10:a9:21:80:ef:10:64:54:06:c8:
88:d0:f6:e6:b0:74:26:9a:99:db:56:8a:02:fb:7e:ca:4d:87:
3f:9b:19:4b:2d:2b:b6:4e:0a:03:e8:21:f6:f3:2c:48:a0:80:
c4:73:12:46:d4:c3:86:08:bd:3b:61:00:81:f7:8c:60:0c:80:
6d:36:74:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:04 2024 by rpki-client on console-fra.rpki-client.org