Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/a1KJfSIsqvx8LsbZTnE3kDpT95g.roa
File: a1KJfSIsqvx8LsbZTnE3kDpT95g.roa (raw, json)
Hash identifier: ehHix0tNJnHj0GdarflrPkYIVh5b48RYHZBdijb6f4Q=
Subject key identifier: 6B:52:89:7D:22:2C:AA:FC:7C:2E:C6:D9:4E:71:37:90:3A:53:F7:98
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 16D4D16D
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/a1KJfSIsqvx8LsbZTnE3kDpT95g.roa
Signing time: Sat 01 Jan 2022 12:01:31 +0000
ROA not before: Sat 01 Jan 2022 12:01:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56595
IP address blocks: 46.243.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 383045997 (0x16d4d16d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 12:01:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b52897d222caafc7c2ec6d94e7137903a53f798
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:fd:84:8e:34:9b:2d:c0:da:8a:f1:45:b3:49:
1f:b6:b7:d3:96:9e:40:0d:ea:ef:b3:7f:9b:87:de:
31:8c:99:48:d4:e2:7f:68:a1:8f:c8:59:b9:ee:63:
d9:01:64:cb:8c:dc:aa:f9:6a:b9:69:e4:b0:7d:5a:
56:fb:48:ac:ad:49:bf:cf:06:b4:c2:a0:27:6c:05:
5e:4f:14:2c:c2:65:c2:48:2c:71:6c:a1:ca:f7:f6:
60:40:1a:23:ec:44:22:00:56:c9:57:ab:7c:04:41:
52:91:ce:32:c5:c6:43:dd:c9:a8:ff:a9:7f:be:49:
41:3b:63:af:cb:4f:30:e6:b3:4b:ad:94:57:3d:e4:
02:ef:82:0a:25:20:98:bd:65:bf:1c:e1:8d:81:e3:
a3:75:ff:f1:60:d4:d9:39:04:c3:f1:e1:5a:41:2b:
08:10:52:31:51:8f:fd:ca:45:c1:e1:c1:8e:d3:ed:
f4:ae:da:e2:70:88:89:b7:74:9f:96:f2:88:a7:97:
37:d2:e9:09:e4:3b:39:fa:a8:ff:a4:f0:a1:c0:6b:
9a:ef:89:0a:58:b8:66:64:aa:ae:14:46:ca:21:8e:
0b:54:2d:a4:12:11:f2:d2:cf:58:f5:41:81:e8:58:
a9:74:cd:01:59:0f:c7:40:a0:16:83:89:24:7a:2f:
35:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:52:89:7D:22:2C:AA:FC:7C:2E:C6:D9:4E:71:37:90:3A:53:F7:98
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/a1KJfSIsqvx8LsbZTnE3kDpT95g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.243.200.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:9d:1f:ae:73:f2:ef:8f:f7:31:62:65:37:a8:73:eb:6d:6a:
b6:96:30:51:c3:22:f4:ff:31:ad:49:2d:57:92:35:5f:6c:01:
2c:91:2d:49:f3:95:8c:63:79:08:71:95:5a:97:dc:a7:f8:a6:
1a:06:b7:ee:76:9e:d8:24:cf:ea:e5:19:2a:14:c2:1b:e4:42:
e4:78:71:42:03:05:91:bd:aa:6b:80:7d:20:f0:3e:c0:7d:07:
16:02:d4:88:51:89:d2:1e:d4:26:ee:59:c6:e8:79:bc:a2:c5:
95:88:a5:c8:7b:32:b3:a2:c5:c5:18:e4:2b:cb:7c:97:69:e4:
56:6f:96:80:f8:de:8f:86:fc:d3:9b:a5:68:b9:08:16:59:12:
ad:96:7e:29:6a:4d:92:ad:b5:93:0f:31:77:c7:8b:f8:3a:ab:
7d:24:85:97:87:37:18:43:7b:22:78:5a:4e:46:a5:40:13:5d:
7b:1d:d6:a0:74:59:b7:bc:53:43:36:98:dc:e7:0c:f8:fa:61:
0a:39:30:c1:40:9c:34:36:65:03:37:57:19:a7:81:cd:ea:24:
77:8d:aa:85:03:cc:26:b0:66:ee:ab:cb:03:d6:19:ef:d4:0e:
34:cc:6b:4f:a8:f3:40:d3:15:4e:fe:52:ae:0b:bc:d0:99:90:
64:da:c7:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:32 2023 by rpki-client on console-ams.rpki-client.org