Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/5OZQHaj4WQvhGC2jjPlkiEuGj1g.roa
File: 5OZQHaj4WQvhGC2jjPlkiEuGj1g.roa (raw, json)
Hash identifier: Ls9bU0u+FsBWXGYG5N2ea2PVQTwONShMfhPmiWFtrNc=
Subject key identifier: E4:E6:50:1D:A8:F8:59:0B:E1:18:2D:A3:8C:F9:64:88:4B:86:8F:58
Certificate issuer: /CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Certificate serial: 08E61F64
Authority key identifier: EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/5OZQHaj4WQvhGC2jjPlkiEuGj1g.roa
Signing time: Sat 01 Jan 2022 08:05:14 +0000
ROA not before: Sat 01 Jan 2022 08:05:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21230
IP address blocks: 46.35.160.0/21 maxlen: 24
46.35.168.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149299044 (0x8e61f64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Validity
Not Before: Jan 1 08:05:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4e6501da8f8590be1182da38cf964884b868f58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1c:02:e5:2f:f4:90:20:ba:63:41:c9:3f:d0:
1e:84:f6:70:ee:05:8e:c6:4a:6d:3b:87:c8:c9:89:
da:e3:84:ed:83:6c:fd:9f:bc:8f:45:05:79:69:6f:
c4:da:19:0c:c3:11:2d:e7:3e:37:80:ad:01:fd:72:
11:49:b6:91:63:98:c9:6d:d5:f5:4b:4d:e6:03:d1:
dc:fa:da:43:e6:aa:82:da:ad:a7:7c:18:7c:17:41:
c8:39:0f:a7:ea:cb:73:ee:f8:c9:64:76:2e:09:fe:
18:4a:e3:51:b1:08:f4:aa:c4:1f:97:aa:71:36:41:
aa:2f:e2:09:b9:ba:6a:d6:bf:ad:6a:bd:dd:e1:02:
e5:40:1e:09:89:bf:de:6b:a1:57:d2:3b:7b:95:13:
52:aa:41:2b:0a:af:09:8b:c8:0f:6d:4d:c2:60:96:
76:dc:0d:54:b7:73:a0:22:88:9d:97:36:d0:bf:d3:
ee:41:dd:43:ae:d3:2e:84:b8:20:82:22:b9:ea:d8:
ad:5a:c9:81:93:63:c8:28:69:fe:79:1a:24:9e:3c:
c4:e9:a6:ea:0e:47:da:85:64:a8:8c:30:b0:43:c7:
d5:66:91:26:8f:b7:82:c8:fc:da:06:4e:3a:46:9b:
d6:17:db:4a:69:cc:17:42:2a:ac:8b:ed:23:cd:68:
7d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:E6:50:1D:A8:F8:59:0B:E1:18:2D:A3:8C:F9:64:88:4B:86:8F:58
X509v3 Authority Key Identifier:
keyid:EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/5OZQHaj4WQvhGC2jjPlkiEuGj1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.35.160.0-46.35.169.255
Signature Algorithm: sha256WithRSAEncryption
3d:f7:38:65:18:bf:3f:27:6e:71:1c:66:c3:df:21:75:9f:f4:
ce:37:f9:9d:4a:02:56:a0:dc:f5:15:3b:e3:c8:05:75:41:70:
50:f4:03:56:6f:56:ff:2e:86:10:16:2e:8c:24:6e:9a:19:f3:
85:21:05:0c:ce:8a:51:0d:5f:bb:cf:07:a6:68:61:76:68:65:
f0:08:b0:00:fc:b5:3b:a5:9e:59:cd:3a:61:8c:46:5b:da:93:
9e:9a:25:11:41:01:a2:b2:ce:62:82:23:f3:ec:82:30:30:8e:
11:50:9e:97:41:8b:ff:8f:f4:ef:b9:17:22:4e:e4:73:ea:68:
a1:5f:7b:85:16:5a:45:db:06:22:8e:03:d3:c9:2a:08:02:b1:
0c:97:38:ea:05:ed:fb:cb:f9:3e:bf:46:db:58:9b:a3:32:36:
0e:9a:3a:6a:8d:d3:f8:14:d6:1a:26:13:17:4b:67:3f:dc:71:
92:dc:1d:ce:d3:15:00:d3:0d:4f:c8:79:bb:3a:3a:89:9a:d9:
e4:33:17:95:8d:ad:e6:97:3d:4f:3d:ff:b0:67:0f:76:42:64:
b8:aa:f4:07:8b:ff:3c:6e:02:dc:8e:7c:2f:cc:32:67:1c:83:
62:04:57:ec:5a:f0:21:12:d4:b4:e4:89:2c:16:f0:a8:51:de:
b7:fc:67:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:37 2023 by rpki-client on console-ams.rpki-client.org