Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/sfq1BKbbIrcTwmdnHJHqDkOTSCY.roa
File: sfq1BKbbIrcTwmdnHJHqDkOTSCY.roa (raw, json)
Hash identifier: Pzwop7awHUlxo6/+wq8aDA/3xovPUFtJDs1vOSWYBsc=
Subject key identifier: B1:FA:B5:04:A6:DB:22:B7:13:C2:67:67:1C:91:EA:0E:43:93:48:26
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 1B6FC7A3
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/sfq1BKbbIrcTwmdnHJHqDkOTSCY.roa
Signing time: Sat 01 Jan 2022 10:02:44 +0000
ROA not before: Sat 01 Jan 2022 10:02:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60097
IP address blocks: 46.107.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 460310435 (0x1b6fc7a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 1 10:02:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1fab504a6db22b713c267671c91ea0e43934826
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e9:53:67:58:d9:7e:a3:aa:fc:73:de:6b:cc:
e2:f9:fe:aa:46:7e:33:0e:4f:c1:38:69:98:de:b1:
c6:46:d1:cd:dc:de:f9:7f:86:0d:92:7e:e4:da:d7:
1e:aa:a6:5c:61:b9:ee:0d:57:b4:ed:6b:0f:17:34:
e7:a7:26:1f:db:b5:0a:57:b5:fb:2b:f7:91:8b:7e:
7a:ac:e0:bd:f0:63:a5:6f:08:dc:4c:88:14:f6:94:
c5:ba:75:ee:4f:86:1c:42:39:93:29:62:3e:ad:06:
65:a1:bd:71:66:67:d0:82:7f:b2:04:a8:cb:64:5e:
4a:bb:6e:e1:53:c6:f4:8b:40:2d:02:4f:ab:57:a9:
64:9f:b8:44:ba:b3:83:22:ca:b7:93:81:c3:b4:65:
67:54:22:69:d0:66:64:fe:58:64:a3:ca:fe:67:1e:
4e:2a:3d:62:e6:78:03:4e:a8:b8:fb:e5:04:b1:03:
00:2f:77:ef:74:4f:1a:b8:5f:36:cd:ba:ee:65:07:
49:bb:86:fb:16:bd:3a:f9:cb:7d:41:fd:d9:bf:1d:
6c:c7:06:2b:09:7b:c9:02:c1:8c:18:c8:a2:a4:96:
db:29:1e:39:95:44:de:d5:62:29:a6:52:5d:b9:56:
c4:e7:83:53:6a:32:95:b0:a2:6a:9d:e4:61:86:7c:
62:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:FA:B5:04:A6:DB:22:B7:13:C2:67:67:1C:91:EA:0E:43:93:48:26
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/sfq1BKbbIrcTwmdnHJHqDkOTSCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.107.239.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:b7:e8:f5:c2:94:9e:eb:39:2b:12:50:ab:9d:17:70:e0:39:
18:74:5e:be:ac:e0:25:74:33:46:3e:5a:f3:e7:39:54:33:51:
a6:b4:23:26:52:ef:4a:31:3b:aa:ca:77:0a:72:cd:70:3f:bd:
d1:17:31:b5:18:e2:2c:0a:1a:ff:16:06:69:85:1d:6d:55:7e:
2b:d5:8b:0a:2f:86:2e:df:f6:76:3d:64:3b:f3:51:f5:b8:7d:
27:91:4a:50:e4:29:8d:51:bf:c1:c0:7b:7d:5f:d3:90:ad:c4:
0e:93:64:e9:06:31:a9:8a:7b:8f:42:0d:70:10:5d:7a:d3:9f:
c1:ae:72:47:45:14:5e:14:9c:8e:c2:97:24:44:06:31:72:50:
f9:25:f1:bd:5b:b1:5a:7f:fa:d6:86:0c:eb:41:2d:8c:b3:dd:
59:4b:0f:ba:0f:cd:97:df:ac:2a:6a:a8:2f:41:00:88:93:0b:
3a:65:27:81:a0:37:61:7b:41:a7:94:b8:ed:fd:bb:2c:d1:85:
3d:5b:52:7d:fc:40:bc:20:e2:b7:da:2c:18:2d:1f:35:b8:80:
9d:7e:65:61:50:03:40:cc:e5:d2:33:b4:7a:0d:b0:2c:aa:04:
87:5d:82:2d:d2:e0:9a:b6:fc:38:b8:40:ff:a4:bb:d2:75:32:
c0:b6:8b:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:47 2024 by rpki-client on console-fra.rpki-client.org