Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/PoGzwrmFdjftC2pxMVZO7hV7kkY.roa
File: PoGzwrmFdjftC2pxMVZO7hV7kkY.roa (raw, json)
Hash identifier: ZeIN+gA1QKzWcC+Xki2sxy6v6I+4B6rGIiw37hpc5GQ=
Subject key identifier: 3E:81:B3:C2:B9:85:76:37:ED:0B:6A:71:31:56:4E:EE:15:7B:92:46
Certificate issuer: /CN=84f824d32df1a5113d82101345d785a38addbde5
Certificate serial: 06CD9426
Authority key identifier: 84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/PoGzwrmFdjftC2pxMVZO7hV7kkY.roa
Signing time: Sat 01 Jan 2022 05:58:48 +0000
ROA not before: Sat 01 Jan 2022 05:58:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203120
IP address blocks: 46.102.180.0/24 maxlen: 24
185.80.112.0/23 maxlen: 24
185.80.114.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114136102 (0x6cd9426)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f824d32df1a5113d82101345d785a38addbde5
Validity
Not Before: Jan 1 05:58:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e81b3c2b9857637ed0b6a7131564eee157b9246
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:70:a3:8f:21:26:62:81:1b:c4:fd:3a:e7:ac:
45:17:f1:c9:f3:b7:6d:d8:0f:94:2e:f2:03:61:ab:
b2:94:96:54:7e:07:ca:ef:b3:33:3b:2b:64:10:73:
00:2a:77:3d:4e:78:3f:52:8e:13:c4:93:6f:da:9f:
cd:e9:62:62:c7:39:a4:a1:c9:6d:f8:18:1e:ff:d6:
93:86:53:f4:bb:1f:3f:1f:b0:7e:50:3e:19:87:b5:
58:b2:f3:ab:c7:9b:92:17:38:6b:40:47:05:14:8c:
d2:ee:e8:60:ad:54:b3:e6:fe:20:fb:c7:3b:6c:e0:
03:0a:1d:21:4f:8b:72:3b:06:a3:7e:c4:60:88:72:
88:57:3a:4d:d4:91:b7:86:f6:44:db:13:e5:95:61:
35:9e:0e:a8:67:f1:68:ba:bb:73:15:42:34:22:86:
00:be:f4:0c:e6:94:3d:84:ca:b3:16:0f:08:a6:5f:
1f:e8:75:b3:0d:39:86:2f:61:ca:5d:95:d2:9d:5b:
54:f8:45:57:1a:1d:cf:d5:41:85:e1:33:40:4b:3d:
6f:61:6f:bb:3f:a4:24:f2:27:32:d3:70:b4:4d:7b:
bd:46:25:b0:17:33:f8:7d:bc:9c:bb:fb:4e:8c:f2:
b8:c5:8e:07:05:d7:45:0b:af:aa:74:51:81:29:80:
19:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:81:B3:C2:B9:85:76:37:ED:0B:6A:71:31:56:4E:EE:15:7B:92:46
X509v3 Authority Key Identifier:
keyid:84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/PoGzwrmFdjftC2pxMVZO7hV7kkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/hPgk0y3xpRE9ghATRdeFo4rdveU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.180.0/24
185.80.112.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:ff:85:f3:6b:d7:44:89:5a:8f:bb:d2:8c:d5:0e:44:5f:13:
a3:92:43:80:e3:78:4d:7f:c6:6d:84:04:51:83:e3:23:f4:0d:
96:7e:c5:c9:f2:2a:e9:cb:de:c0:75:bc:18:37:5a:46:0f:a5:
18:d6:b5:f7:38:ab:26:cf:f1:59:a5:f1:28:9b:25:da:80:2c:
74:bd:3a:72:9d:81:85:8c:1e:02:70:d7:b7:b2:66:92:89:b6:
f3:05:1b:34:bd:b8:bf:09:1d:ad:07:5b:d8:e1:f2:31:c2:68:
08:d2:5d:73:37:c9:18:70:2a:84:ec:d1:bd:93:a4:be:a4:00:
59:71:4e:19:db:81:bf:3e:24:66:91:ed:7e:b8:6a:f4:10:6c:
95:53:f3:28:d9:7a:62:3d:33:99:72:19:56:33:20:c1:a3:66:
ed:50:70:42:bd:8b:a2:04:bc:85:b0:2b:85:91:cd:7a:e4:5e:
2d:de:f2:27:3e:2a:82:db:5f:50:03:83:cb:0c:a5:fd:a0:a7:
18:e1:7c:de:81:c0:2c:f7:2d:df:75:60:45:77:f7:a7:69:4a:
40:07:39:93:6a:9b:6d:33:6f:9f:07:7c:38:5f:35:67:51:2f:
e3:a5:e7:30:35:06:b7:61:27:8c:67:52:86:aa:78:3d:07:52:
8f:c4:68:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:57 2024 by rpki-client on console-fra.rpki-client.org