Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/717555-354f-4b37-8a6a-0940436691bd/1/xuM2--8NWfeRXcnGmoaiaHMgl5c.roa
File: xuM2--8NWfeRXcnGmoaiaHMgl5c.roa (raw, json)
Hash identifier: 5lEEgGdLbvuqyLEelbzM2tjSnXXecBZMdKtYWZmQxhE=
Subject key identifier: C6:E3:36:FB:EF:0D:59:F7:91:5D:C9:C6:9A:86:A2:68:73:20:97:97
Certificate issuer: /CN=7699c189027e25ecc53f98b52ea65ae725d2a730
Certificate serial: 02A71C51
Authority key identifier: 76:99:C1:89:02:7E:25:EC:C5:3F:98:B5:2E:A6:5A:E7:25:D2:A7:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dpnBiQJ-JezFP5i1LqZa5yXSpzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/717555-354f-4b37-8a6a-0940436691bd/1/xuM2--8NWfeRXcnGmoaiaHMgl5c.roa
Signing time: Sat 01 Jan 2022 12:54:43 +0000
ROA not before: Sat 01 Jan 2022 12:54:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60126
IP address blocks: 185.46.234.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44506193 (0x2a71c51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7699c189027e25ecc53f98b52ea65ae725d2a730
Validity
Not Before: Jan 1 12:54:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6e336fbef0d59f7915dc9c69a86a26873209797
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:70:6b:ec:ca:de:10:b7:3e:e2:6c:f5:32:80:
f2:0b:ce:15:3e:2a:f2:6b:47:7c:1e:78:77:1e:08:
35:1d:25:0e:1d:4d:fb:6e:04:38:c9:79:f2:43:2a:
b1:dd:1b:b7:ab:d4:79:51:d4:68:b2:ae:09:13:ed:
05:fe:cb:db:83:a4:bb:30:fa:35:0e:89:a9:60:79:
b1:ab:bc:f7:d7:bb:d3:fd:da:cf:55:0b:52:d2:d3:
98:d2:cd:b1:a8:b3:f7:64:ad:7c:7d:ef:a1:b1:3e:
37:9b:81:93:a0:2b:a4:f6:76:e5:d0:01:be:79:26:
c9:53:88:81:4d:98:01:78:0a:35:d6:65:89:39:26:
c9:b1:e6:e0:a4:ed:bd:c7:b0:c5:d4:c1:d1:dc:8f:
a0:a9:c0:5b:fd:0c:79:fc:40:e4:c3:25:ac:b6:6e:
66:8a:77:dc:65:49:d0:df:0e:d4:46:a0:4d:97:4f:
57:2b:1f:90:5f:45:a3:9d:64:90:81:89:f8:24:31:
4b:6b:70:ec:3e:55:de:4c:dc:86:83:21:ef:1e:bc:
5e:7f:57:18:1b:f8:3c:3e:24:5c:92:00:e7:95:c2:
f5:7d:8a:e8:a8:1e:95:83:b3:a5:98:69:d2:b8:2c:
c2:ce:a5:3b:f3:b2:0f:a4:57:1d:bb:f0:4d:1b:a1:
6d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:E3:36:FB:EF:0D:59:F7:91:5D:C9:C6:9A:86:A2:68:73:20:97:97
X509v3 Authority Key Identifier:
keyid:76:99:C1:89:02:7E:25:EC:C5:3F:98:B5:2E:A6:5A:E7:25:D2:A7:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dpnBiQJ-JezFP5i1LqZa5yXSpzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/717555-354f-4b37-8a6a-0940436691bd/1/xuM2--8NWfeRXcnGmoaiaHMgl5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/717555-354f-4b37-8a6a-0940436691bd/1/dpnBiQJ-JezFP5i1LqZa5yXSpzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.234.0/23
Signature Algorithm: sha256WithRSAEncryption
01:a3:2b:ff:59:0e:38:0b:f2:96:5b:da:8f:53:15:7f:ce:b5:
05:4d:e2:3c:f9:02:87:76:66:ff:a6:e8:ef:14:f0:47:82:25:
55:df:4b:42:0e:16:7f:f0:4c:1c:61:9c:87:0f:f7:2e:61:b3:
bf:b6:da:ed:a3:76:38:fa:fd:17:60:63:71:fc:47:1f:45:b9:
d1:ca:78:2c:b8:af:2a:69:ae:ae:1e:0d:e2:79:fd:e1:fc:6d:
0c:21:fd:29:c0:fe:9d:ca:39:9f:6f:40:b5:b4:11:6d:3e:2e:
6d:8c:91:8d:db:c5:49:20:8a:df:ca:ed:90:40:52:75:e2:c9:
7b:cf:3a:7a:b2:aa:cc:3d:ba:d0:95:1f:31:89:e0:41:56:75:
9a:40:8f:d9:67:fc:9d:10:8d:fc:ab:f7:82:18:7c:03:ac:78:
f2:b1:17:f0:1a:34:26:c7:8d:af:7e:f2:99:ee:c4:e0:9b:f3:
41:2d:6c:6c:9c:bb:76:08:76:a6:d5:24:c9:5b:6e:b9:6c:a1:
d4:c0:36:ea:e8:b0:6b:b3:b4:27:f8:35:dd:6f:80:5f:34:90:
bf:11:67:7a:49:4a:77:32:1b:3f:4a:f0:43:64:5e:59:8e:23:
d2:91:bf:29:d8:58:b1:02:90:df:74:87:d7:9e:c8:47:f6:f1:
ae:a4:0f:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:03 2023 by rpki-client on console-fra.rpki-client.org