Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/7f997c-07cf-44c2-bdf0-66a329b6afad/1/KWqZQuUjKAFYW1odmdFjOjheB-c.roa
File: KWqZQuUjKAFYW1odmdFjOjheB-c.roa (raw, json)
Hash identifier: ZSj1hW4Y+jnTFUEJtd1GSeVLRocQHSmtGt1bqKFpr5I=
Subject key identifier: 29:6A:99:42:E5:23:28:01:58:5B:5A:1D:99:D1:63:3A:38:5E:07:E7
Certificate issuer: /CN=6d7701d5850491f50299ef93f2d7409b78cd6c96
Certificate serial: 04BFC94F
Authority key identifier: 6D:77:01:D5:85:04:91:F5:02:99:EF:93:F2:D7:40:9B:78:CD:6C:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXcB1YUEkfUCme-T8tdAm3jNbJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/7f997c-07cf-44c2-bdf0-66a329b6afad/1/KWqZQuUjKAFYW1odmdFjOjheB-c.roa
Signing time: Sat 01 Jan 2022 09:57:50 +0000
ROA not before: Sat 01 Jan 2022 09:57:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45014
IP address blocks: 46.175.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79677775 (0x4bfc94f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d7701d5850491f50299ef93f2d7409b78cd6c96
Validity
Not Before: Jan 1 09:57:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=296a9942e5232801585b5a1d99d1633a385e07e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c1:dc:e4:0a:74:47:45:16:61:57:9c:f6:da:
eb:3e:26:ea:bf:d1:5c:27:ad:99:f2:2a:ad:b2:49:
a4:a0:76:04:f6:e4:85:c8:4c:22:b7:e1:b2:bd:eb:
5b:05:f3:f9:ae:0e:ba:ad:43:14:5a:92:d6:04:8d:
52:dc:7b:6f:04:1c:4e:2d:50:22:fd:97:b3:f7:29:
df:78:f1:a8:79:30:bd:cc:a1:e9:35:0b:9e:4c:83:
5a:ba:36:88:01:0d:3d:94:02:23:ce:25:cc:58:d2:
63:18:f8:87:24:19:3b:e7:df:94:7d:5d:c8:8b:d8:
94:93:e2:de:b9:7e:57:00:08:96:68:74:35:2e:67:
30:18:56:a5:87:b5:1b:1c:f5:5a:42:80:f4:2c:b7:
77:dd:90:a8:87:b0:20:91:8b:75:fc:b3:f2:37:05:
d1:5f:40:46:a3:02:47:13:b3:4c:0d:02:17:92:4b:
03:50:33:f6:43:09:15:41:0f:c6:03:5a:f2:ad:fb:
a0:31:7a:a4:90:62:bf:a4:aa:bc:36:6b:35:75:b1:
d2:b3:13:bc:04:06:7a:ab:ab:13:de:4d:78:83:c0:
10:40:8f:5a:5e:69:fb:71:64:66:12:eb:a9:ab:8a:
86:b0:75:ca:ce:d7:88:27:e4:de:4d:4b:c2:cb:d4:
81:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:6A:99:42:E5:23:28:01:58:5B:5A:1D:99:D1:63:3A:38:5E:07:E7
X509v3 Authority Key Identifier:
keyid:6D:77:01:D5:85:04:91:F5:02:99:EF:93:F2:D7:40:9B:78:CD:6C:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXcB1YUEkfUCme-T8tdAm3jNbJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/7f997c-07cf-44c2-bdf0-66a329b6afad/1/KWqZQuUjKAFYW1odmdFjOjheB-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/7f997c-07cf-44c2-bdf0-66a329b6afad/1/bXcB1YUEkfUCme-T8tdAm3jNbJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.175.13.0/24
Signature Algorithm: sha256WithRSAEncryption
32:00:46:6c:d4:1f:0b:da:0b:76:0f:01:00:a4:a5:71:a2:72:
67:1a:25:8f:07:f4:7f:91:41:ea:95:3f:cb:57:53:d1:fb:71:
85:98:43:f1:43:27:0f:d3:5e:5f:e3:df:27:f0:e9:bb:09:77:
5d:54:2f:07:ee:76:09:08:ee:16:0c:ef:5f:3b:7d:22:c6:25:
df:a4:84:5c:82:29:4e:ba:bd:41:6f:bc:2c:01:3f:50:86:f4:
8a:70:7a:41:17:64:85:91:d2:35:f3:32:48:64:c2:fc:b8:95:
c4:f2:02:f5:bf:15:b9:02:a6:33:98:66:0e:13:58:c1:74:6b:
42:08:8a:92:bc:72:a3:86:ed:1e:1c:06:7d:0f:27:c2:29:10:
c8:d2:d3:98:42:df:14:09:6e:09:ba:02:6d:e1:0b:43:e1:b4:
01:7b:f2:bf:8e:c5:b0:b9:9e:c7:41:4f:3a:ec:be:f1:3d:ad:
6e:95:7a:2c:40:80:ca:67:19:29:26:3e:a3:0f:77:09:bf:7a:
bd:24:d7:e1:1a:18:f0:f2:83:e3:56:3f:92:17:88:d9:99:83:
f0:4f:91:87:70:e2:22:fd:1a:a2:6f:b2:79:27:12:d0:09:9e:
ce:34:92:a2:f8:9f:26:4a:18:28:43:ef:aa:ad:71:4d:58:35:
cf:59:56:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:27 2024 by rpki-client on console-fra.rpki-client.org