Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/xrc4D7dgE6WdlD1yYNSTLOJSQTk.roa
File: xrc4D7dgE6WdlD1yYNSTLOJSQTk.roa (raw, json)
Hash identifier: UWTKmCXzyx5GCalpvmBdJVhw+e0zE0Phrl84vOl4Z0Q=
Subject key identifier: C6:B7:38:0F:B7:60:13:A5:9D:94:3D:72:60:D4:93:2C:E2:52:41:39
Certificate issuer: /CN=84f824d32df1a5113d82101345d785a38addbde5
Certificate serial: 06CA7D69
Authority key identifier: 84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/xrc4D7dgE6WdlD1yYNSTLOJSQTk.roa
Signing time: Sat 01 Jan 2022 05:58:46 +0000
ROA not before: Sat 01 Jan 2022 05:58:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 46.102.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113933673 (0x6ca7d69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f824d32df1a5113d82101345d785a38addbde5
Validity
Not Before: Jan 1 05:58:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6b7380fb76013a59d943d7260d4932ce2524139
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:6d:73:69:ae:c8:ba:f9:db:b1:8d:cb:be:db:
5a:81:82:8d:05:65:c6:fa:6f:93:8a:4c:d6:87:c8:
c2:98:5f:98:c2:c9:cf:af:7e:dd:41:c3:fc:d6:3f:
ce:15:17:33:11:71:92:47:62:3d:e8:39:15:4a:f6:
35:6c:06:e7:34:61:9b:94:8a:01:34:52:12:a8:c9:
0f:bb:e7:7b:ae:61:54:7c:4a:03:a8:21:e7:be:68:
4b:1f:30:48:82:88:78:3b:f9:ea:1e:a6:36:04:3c:
c2:6e:ec:d5:dd:b5:bd:58:f4:0c:ff:48:91:84:69:
35:64:b4:79:21:c1:cb:49:30:91:42:f7:62:ff:9b:
3a:a1:06:63:ab:5f:b7:37:0c:60:8d:a2:6f:eb:6a:
83:d3:5a:89:b5:c3:0b:c4:f9:20:ce:b9:30:e1:55:
58:6b:95:21:57:ca:b7:9f:0f:54:35:b4:51:88:ed:
06:62:f4:2b:4a:20:20:56:f6:fd:ef:ac:93:36:21:
d2:b0:06:e4:ac:d1:59:32:18:34:9c:8c:35:84:3d:
71:05:67:cb:7d:4f:7e:a8:d1:71:3e:2c:7a:0e:a7:
93:36:c1:02:c3:dd:01:5e:1d:a8:cf:d6:af:0c:d5:
83:6e:49:d2:0d:37:eb:61:da:4e:44:0d:eb:6d:c8:
14:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:B7:38:0F:B7:60:13:A5:9D:94:3D:72:60:D4:93:2C:E2:52:41:39
X509v3 Authority Key Identifier:
keyid:84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/xrc4D7dgE6WdlD1yYNSTLOJSQTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/hPgk0y3xpRE9ghATRdeFo4rdveU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.180.0/24
Signature Algorithm: sha256WithRSAEncryption
57:fa:0b:09:d1:a8:f6:31:d5:ec:92:04:15:4b:00:41:f3:19:
bc:44:35:45:31:d5:2a:cb:aa:5d:0f:fe:a6:13:f3:ae:54:d2:
37:3a:7c:2c:a1:c3:b2:1f:c2:f6:f2:44:ae:40:db:76:c1:7e:
be:00:57:cf:36:47:35:2b:06:ee:eb:45:a7:de:95:c5:ca:93:
54:ca:73:bf:62:65:3a:b7:29:a6:8d:37:09:61:fe:29:6d:95:
0a:b3:46:d3:4c:9f:04:11:8e:37:fe:b3:77:96:88:a7:eb:ea:
de:d8:80:8d:4d:a0:b3:5d:e0:a8:a5:79:f5:ea:65:20:18:55:
d1:29:64:1a:a7:20:d1:89:4d:a8:d9:36:4a:38:a8:26:95:e7:
83:ac:19:2b:1d:de:c4:52:4c:f4:f7:77:8a:ff:f6:c4:d8:3a:
5c:27:d2:43:a7:ab:64:00:6d:3c:44:22:11:74:1e:a9:6e:99:
e3:28:84:cb:aa:2a:e5:43:ed:24:98:99:bc:cf:3c:28:cf:a5:
93:96:78:a6:a3:85:f6:19:8b:83:0f:24:01:39:7c:2b:96:90:
35:01:2f:2c:3c:48:33:1e:ae:9d:41:6b:1d:ef:51:96:21:44:
bc:f7:c5:59:57:89:70:c7:ad:e1:d3:a3:5f:29:2e:72:3e:78:
12:06:f6:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:35 2023 by rpki-client on console-fra.rpki-client.org