Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/42d821-74af-4ced-94ea-027b58e6fdc5/1/e0zmMhcak5l5nBTOfeSRZTSpsp4.roa
File: e0zmMhcak5l5nBTOfeSRZTSpsp4.roa (raw, json)
Hash identifier: qyOGOHLu9t4R6B1GvGVvdEEmvwFYDbfu1uPR417hYoo=
Subject key identifier: 7B:4C:E6:32:17:1A:93:99:79:9C:14:CE:7D:E4:91:65:34:A9:B2:9E
Certificate issuer: /CN=bef2158a0f2a42617a821a0b4fcc9c9a93f4246d
Certificate serial: 07CA2761
Authority key identifier: BE:F2:15:8A:0F:2A:42:61:7A:82:1A:0B:4F:CC:9C:9A:93:F4:24:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vvIVig8qQmF6ghoLT8ycmpP0JG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/42d821-74af-4ced-94ea-027b58e6fdc5/1/e0zmMhcak5l5nBTOfeSRZTSpsp4.roa
Signing time: Sat 01 Jan 2022 01:54:55 +0000
ROA not before: Sat 01 Jan 2022 01:54:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49283
IP address blocks: 46.182.160.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130688865 (0x7ca2761)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bef2158a0f2a42617a821a0b4fcc9c9a93f4246d
Validity
Not Before: Jan 1 01:54:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b4ce632171a9399799c14ce7de4916534a9b29e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:0e:46:02:19:bf:06:f0:71:1a:b1:9e:e4:d9:
cf:14:97:72:c0:69:4f:14:60:1e:b2:1c:1b:02:41:
5f:cf:01:8e:84:93:f6:f1:ae:d9:25:12:2e:dc:0c:
26:0e:c5:8d:80:90:6b:72:c8:88:52:af:22:83:d1:
da:9f:23:0c:5e:90:88:d7:06:20:62:90:4e:db:f2:
30:c8:1d:7f:1e:0b:54:2a:5f:23:ea:0a:98:97:f2:
81:c4:ae:e1:6c:a0:f5:52:54:32:55:4b:60:45:d6:
44:b0:dc:bd:b9:ab:7d:44:75:a0:11:75:43:de:e7:
ca:76:bf:df:dd:a2:5a:51:4b:2e:9b:8f:da:58:c3:
4a:89:a8:3f:bb:db:21:d5:d1:12:8e:12:71:44:22:
ed:9c:63:aa:d1:5c:16:fd:b2:a3:70:24:15:1f:19:
ab:d7:d5:95:8d:d8:78:af:85:21:77:3c:f7:1f:0c:
47:5b:7e:23:5b:ef:6c:20:71:10:0b:61:f2:e0:e3:
f2:56:bf:bf:69:62:b1:65:b6:cf:c9:dd:7e:e7:cf:
ed:3e:3c:80:ff:c7:f3:70:40:43:83:4d:c3:c1:2b:
e0:99:9d:e5:2e:5d:89:66:25:77:03:c0:2e:66:66:
10:1a:70:f3:a0:1b:2a:3f:81:c9:f7:12:41:f9:85:
c8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:4C:E6:32:17:1A:93:99:79:9C:14:CE:7D:E4:91:65:34:A9:B2:9E
X509v3 Authority Key Identifier:
keyid:BE:F2:15:8A:0F:2A:42:61:7A:82:1A:0B:4F:CC:9C:9A:93:F4:24:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vvIVig8qQmF6ghoLT8ycmpP0JG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/42d821-74af-4ced-94ea-027b58e6fdc5/1/e0zmMhcak5l5nBTOfeSRZTSpsp4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/42d821-74af-4ced-94ea-027b58e6fdc5/1/vvIVig8qQmF6ghoLT8ycmpP0JG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.182.160.0/21
Signature Algorithm: sha256WithRSAEncryption
2c:87:52:45:a4:eb:58:f8:c9:19:6c:b4:4a:db:fe:92:b7:23:
20:c6:6a:97:25:27:62:e1:5a:6d:1d:99:32:08:fa:48:4a:bd:
ce:83:a4:6b:8c:df:51:ac:6e:3a:95:71:02:8e:38:e4:c9:da:
78:b5:fb:2b:ca:5a:51:a5:0e:af:04:0b:f0:40:dd:1a:65:8a:
5f:55:44:de:f5:d2:3d:c3:a6:4c:9d:95:7f:82:76:b8:4a:16:
54:4a:ea:9e:7c:d5:fc:c6:f6:46:07:c8:3a:2b:2b:43:6a:59:
af:84:59:f4:57:4d:a5:07:da:6c:c4:1b:3c:6a:0d:b2:c7:c9:
5b:b6:63:2a:3e:fc:54:92:6a:2e:7c:89:da:43:ff:8b:e5:22:
e8:4a:d8:68:df:b8:1d:4b:f8:89:85:3b:5a:49:c3:88:a1:59:
69:8c:80:75:9b:5e:d5:d7:44:93:77:01:08:12:de:7a:6a:82:
e8:22:f9:d0:41:43:a1:e8:81:e4:65:da:b4:d3:1e:c3:5e:e3:
50:6b:f8:58:28:4d:1d:44:5d:14:64:12:fe:e5:a8:71:8f:56:
ac:7d:43:d7:c5:76:f3:c5:49:cf:88:57:3f:90:c0:10:a7:be:
b8:e1:17:54:61:f7:27:78:9a:42:0a:5d:b4:8c:df:8c:d2:74:
c5:27:cd:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:21 2024 by rpki-client on console-fra.rpki-client.org