Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/RVFL46Dz5bCZkMDeGbR8vcyy-QQ.roa
File: RVFL46Dz5bCZkMDeGbR8vcyy-QQ.roa (raw, json)
Hash identifier: Y278k8VpvHIKwfbKhHq2J+CsTbJ5OcP8smOG7AY1bEk=
Subject key identifier: 45:51:4B:E3:A0:F3:E5:B0:99:90:C0:DE:19:B4:7C:BD:CC:B2:F9:04
Certificate issuer: /CN=85f4ee14f6d38a7cf071279dff7b391702e37135
Certificate serial: 0184EE7784AE05E139836867967456F83C96
Authority key identifier: 85:F4:EE:14:F6:D3:8A:7C:F0:71:27:9D:FF:7B:39:17:02:E3:71:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfTuFPbTinzwcSed_3s5FwLjcTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/RVFL46Dz5bCZkMDeGbR8vcyy-QQ.roa
Signing time: Wed 07 Dec 2022 21:22:00 +0000
ROA not before: Wed 07 Dec 2022 21:22:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48659
IP address blocks: 185.146.226.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ee:77:84:ae:05:e1:39:83:68:67:96:74:56:f8:3c:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85f4ee14f6d38a7cf071279dff7b391702e37135
Validity
Not Before: Dec 7 21:22:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45514be3a0f3e5b09990c0de19b47cbdccb2f904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:23:f4:a6:7f:9c:d7:e2:fc:82:3c:d2:c0:14:
35:20:74:f5:d1:ea:37:e9:6e:02:f0:8c:e8:14:78:
17:ca:ff:e4:c1:3a:e4:47:3a:eb:4c:77:8b:33:93:
ca:3d:3b:dc:60:a5:50:bb:7b:f0:38:28:28:e4:47:
35:28:c9:36:5d:53:da:38:83:8b:af:ac:6f:10:72:
e9:7a:e3:0b:46:45:3c:76:ef:9d:5a:01:52:a0:ee:
82:3a:93:f9:76:d2:7e:16:32:51:e3:e3:76:62:51:
88:c9:64:34:a1:48:25:96:ad:03:6c:45:48:e8:14:
2c:70:2d:9d:fb:80:66:93:2c:83:f3:63:a3:51:27:
d8:a3:87:d0:6a:e1:61:f9:b7:19:04:de:05:c8:eb:
27:20:5d:e2:df:fd:77:07:eb:6f:2c:c3:7a:86:5a:
2a:17:fb:ce:f2:9a:90:93:2f:66:db:f7:7e:2e:02:
ba:e9:20:e2:6c:85:25:f7:de:c2:99:57:b8:2a:98:
a9:5a:6c:4c:ba:46:9b:f7:9f:11:bb:85:2a:6f:73:
ad:94:cf:fd:f5:ac:3e:22:d1:93:e3:f7:5e:a2:c8:
31:2c:f3:da:46:39:31:69:39:da:3d:5d:5e:d6:22:
47:92:23:8b:52:9c:c3:fd:17:19:d4:ac:bf:63:4b:
14:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:51:4B:E3:A0:F3:E5:B0:99:90:C0:DE:19:B4:7C:BD:CC:B2:F9:04
X509v3 Authority Key Identifier:
keyid:85:F4:EE:14:F6:D3:8A:7C:F0:71:27:9D:FF:7B:39:17:02:E3:71:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfTuFPbTinzwcSed_3s5FwLjcTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/RVFL46Dz5bCZkMDeGbR8vcyy-QQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.146.226.0/24
Signature Algorithm: sha256WithRSAEncryption
76:fc:a9:30:bb:90:68:9a:dc:3e:81:91:6a:53:58:5e:e4:91:
05:68:34:0e:eb:7e:21:bd:60:dd:c0:a0:8e:50:9e:63:1a:80:
4c:aa:89:4c:17:8d:b5:02:b2:39:e2:09:34:84:8c:8e:70:cf:
a5:1b:75:7e:36:5e:00:72:2b:e3:17:52:ee:f6:ca:c9:15:5b:
cf:0e:f6:76:41:75:1f:84:25:a6:7f:8f:16:29:4d:28:4f:fb:
89:c5:26:69:e2:0e:d9:61:40:a2:21:b0:12:64:38:e0:63:fc:
e8:54:42:de:7e:35:fc:c4:62:ae:d5:51:e8:0f:fa:12:4b:40:
8b:db:f7:6e:86:47:bf:8b:a5:52:3a:9a:7d:12:9e:5f:45:6d:
a9:f8:3e:8f:d3:ce:5d:f2:33:96:54:5f:e9:36:c2:69:e1:3d:
94:5e:6e:d0:35:8e:88:0a:3c:22:df:20:23:68:69:87:2c:d5:
ff:4d:b6:e7:f7:8c:8c:af:34:ae:96:6c:80:10:6b:9d:d2:9e:
fa:50:e3:7e:49:26:f4:db:5b:46:e2:ac:67:ac:b9:a2:2e:d9:
91:61:21:b2:75:12:88:f4:db:b4:33:88:19:d3:b7:61:93:f6:
80:4b:9c:e6:4d:8b:d6:aa:7a:ff:ef:b1:5b:c6:69:4e:49:04:
2d:de:48:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:03 2024 by rpki-client on console-fra.rpki-client.org