Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/066dbd-b447-4b59-8936-c3bc5c521bc5/1/OlTEl7XeePVRkNJ6yVjo2UHskW8.roa
File: OlTEl7XeePVRkNJ6yVjo2UHskW8.roa (raw, json)
Hash identifier: raM0dR/FK2M4G8+erQ5GAuyMhQJupOMxd0Nnq9pCboQ=
Subject key identifier: 3A:54:C4:97:B5:DE:78:F5:51:90:D2:7A:C9:58:E8:D9:41:EC:91:6F
Certificate issuer: /CN=1d83fa89a4920ebab6a8196fa7d330744140ae75
Certificate serial: 3746750E
Authority key identifier: 1D:83:FA:89:A4:92:0E:BA:B6:A8:19:6F:A7:D3:30:74:41:40:AE:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYP6iaSSDrq2qBlvp9MwdEFArnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/066dbd-b447-4b59-8936-c3bc5c521bc5/1/OlTEl7XeePVRkNJ6yVjo2UHskW8.roa
Signing time: Sat 01 Jan 2022 06:02:50 +0000
ROA not before: Sat 01 Jan 2022 06:02:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51784
IP address blocks: 46.63.96.0/20 maxlen: 24
46.63.0.0/18 maxlen: 23
46.63.112.0/21 maxlen: 24
46.63.120.0/21 maxlen: 21
185.177.188.0/22 maxlen: 24
46.63.64.0/19 maxlen: 24
46.63.64.0/18 maxlen: 18
2a03:69e0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 927364366 (0x3746750e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d83fa89a4920ebab6a8196fa7d330744140ae75
Validity
Not Before: Jan 1 06:02:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a54c497b5de78f55190d27ac958e8d941ec916f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:97:a2:62:bb:67:4f:7a:9f:ae:2f:c8:fa:52:
17:76:46:e4:27:d1:12:1f:4d:db:c3:50:29:94:3b:
06:70:9b:8a:a5:ce:b7:e1:fb:9e:db:30:d3:e4:c2:
e3:3e:89:3a:41:55:f3:29:2e:36:ef:5d:d7:21:33:
38:53:f9:16:49:c4:d6:55:d3:36:10:27:7a:54:47:
ac:9d:34:61:cd:cf:8d:c7:71:7c:54:dc:d7:c7:2c:
57:c1:e6:b4:c7:e0:fb:52:39:a2:28:27:2e:2b:46:
a7:55:5f:b0:60:94:be:e9:6a:f7:29:94:53:3a:ec:
d3:3e:02:b3:bb:dd:7b:d6:66:31:bc:b4:9a:26:82:
7f:d0:02:eb:38:e3:73:22:3b:66:7c:04:27:5e:9a:
e3:34:9d:1b:a2:97:fd:41:da:f3:9e:15:80:c2:91:
7c:c6:ce:a6:88:de:e4:ee:56:92:3e:2c:97:c6:67:
33:44:e6:92:09:52:d6:28:00:3a:ec:b9:bd:b8:47:
ec:b1:dd:10:00:fb:7e:0e:97:f5:37:08:dd:1e:c7:
04:db:20:0f:d7:00:f1:40:53:fc:03:55:c5:d2:4a:
39:00:66:03:07:9e:0b:48:10:f6:4b:3c:ec:c1:8d:
cb:fe:a6:51:17:5d:2c:27:8f:5f:5c:d2:9b:8e:c0:
04:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:54:C4:97:B5:DE:78:F5:51:90:D2:7A:C9:58:E8:D9:41:EC:91:6F
X509v3 Authority Key Identifier:
keyid:1D:83:FA:89:A4:92:0E:BA:B6:A8:19:6F:A7:D3:30:74:41:40:AE:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYP6iaSSDrq2qBlvp9MwdEFArnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/066dbd-b447-4b59-8936-c3bc5c521bc5/1/OlTEl7XeePVRkNJ6yVjo2UHskW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/066dbd-b447-4b59-8936-c3bc5c521bc5/1/HYP6iaSSDrq2qBlvp9MwdEFArnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.63.0.0/17
185.177.188.0/22
IPv6:
2a03:69e0::/32
Signature Algorithm: sha256WithRSAEncryption
a3:f4:3b:39:88:a4:9a:c3:41:ba:05:a0:9d:94:b2:0b:9c:e1:
93:de:0b:aa:5d:af:5d:d6:f5:cc:03:b7:55:1d:3a:91:80:9e:
37:9c:f0:85:64:3d:f2:ba:8e:da:14:e4:b5:72:6e:58:00:18:
02:ca:7f:ab:8f:fc:46:2c:d1:34:6a:ab:31:85:ff:24:e4:b9:
0f:44:9c:1f:e9:1d:15:0c:f5:f3:c4:c8:fa:12:62:33:53:f0:
03:ab:ea:ac:f4:02:49:da:ba:ee:8e:1f:c1:5e:3c:0c:eb:32:
a0:90:8d:01:69:9a:bf:75:90:cf:fa:e9:9a:04:ee:02:95:f5:
22:40:71:cb:69:12:c2:65:7d:85:d7:1b:77:98:7b:50:4a:07:
5c:4f:0a:62:90:67:cc:08:e4:c8:55:0c:4b:24:66:b8:3d:8f:
72:8a:c8:69:46:0a:b3:e4:95:c4:50:97:cf:cc:4d:87:dc:8a:
37:c8:f5:cd:8f:3a:e3:dd:66:d2:12:1b:2e:91:2d:5b:c4:5a:
23:df:26:93:a6:34:bb:59:0b:9b:6e:03:3e:65:b2:4c:66:4e:
a4:a7:e4:5b:42:9d:7f:7d:ae:a4:85:22:8b:b6:1b:95:4f:0e:
22:18:62:af:75:01:ea:07:d8:ba:3c:c6:b0:9d:d6:82:3d:1a:
fb:e7:4f:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:44 2024 by rpki-client on console-ams.rpki-client.org