Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/nRp0uRR9AYdIUrClezjB5L9q1CA.roa
File: nRp0uRR9AYdIUrClezjB5L9q1CA.roa (raw, json)
Hash identifier: Sh5FXE2nRuQ3n6fNlNWVf2/tE56GP0IDUamsiovarTQ=
Subject key identifier: 9D:1A:74:B9:14:7D:01:87:48:52:B0:A5:7B:38:C1:E4:BF:6A:D4:20
Certificate issuer: /CN=6f3030a4b67f95c2fed902d56657faa2494b5129
Certificate serial: 0D8D2362
Authority key identifier: 6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/nRp0uRR9AYdIUrClezjB5L9q1CA.roa
Signing time: Sat 01 Jan 2022 15:01:07 +0000
ROA not before: Sat 01 Jan 2022 15:01:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59628
IP address blocks: 46.100.144.0/21 maxlen: 21
91.92.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227353442 (0xd8d2362)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f3030a4b67f95c2fed902d56657faa2494b5129
Validity
Not Before: Jan 1 15:01:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d1a74b9147d01874852b0a57b38c1e4bf6ad420
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:42:fe:6a:e3:af:4d:01:58:8b:f0:e3:84:68:
90:1d:6c:7f:b4:a4:5d:6e:ea:74:72:41:f8:2a:90:
49:2e:ff:f9:26:b1:4b:a6:2b:ec:c6:ce:eb:b6:cf:
62:95:a1:b3:b0:72:e2:a1:77:06:f5:0e:4f:dc:23:
8f:b1:64:4e:05:67:c9:a6:4b:b4:15:13:39:c1:af:
a6:44:9d:fb:40:16:1b:6c:cb:17:0c:f6:ee:88:39:
62:f8:07:5e:00:73:b3:c5:4c:41:9b:c8:9a:3e:8d:
09:31:06:0f:6a:68:9d:b8:22:bc:40:e9:9d:cd:3e:
f2:7c:0c:c9:0c:be:13:34:60:72:83:71:08:83:b5:
d7:9e:82:d7:16:08:76:e1:c5:e6:ec:7f:a8:ba:11:
c2:49:17:fb:6c:d1:08:22:e0:f1:fc:ef:bd:ae:c2:
96:64:31:69:03:fe:20:02:68:7a:e1:d9:a3:e0:2f:
2b:34:16:d2:a4:e0:ad:d8:d5:5c:93:8a:14:8e:60:
f9:b2:9b:24:d8:a5:b1:66:16:9c:cc:73:28:74:f5:
4a:77:c2:07:c5:da:89:90:8d:b4:e3:8d:13:2a:a2:
88:d2:80:61:47:91:61:f7:67:23:72:0a:c2:43:98:
77:09:cc:c2:ef:88:98:88:45:bf:ad:5d:a2:7f:fa:
ae:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:1A:74:B9:14:7D:01:87:48:52:B0:A5:7B:38:C1:E4:BF:6A:D4:20
X509v3 Authority Key Identifier:
keyid:6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/nRp0uRR9AYdIUrClezjB5L9q1CA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.100.144.0/21
91.92.172.0/22
Signature Algorithm: sha256WithRSAEncryption
02:5a:8e:ac:3f:40:d0:31:f3:75:dc:f5:ad:fa:aa:7a:ca:f8:
e4:29:c4:dc:98:23:2c:6f:21:de:0f:92:1c:b7:a9:b7:12:d8:
32:84:06:bd:3a:be:03:cd:ed:8f:4d:91:8c:24:41:4a:5e:fe:
77:99:e4:58:43:55:97:6a:6b:69:c0:43:6a:7e:49:7e:0b:64:
59:95:55:7d:f4:04:c3:ce:aa:26:d8:bc:98:a9:2d:52:97:d2:
e9:26:d5:98:25:24:53:d2:c9:83:5f:6a:c5:84:61:be:1d:a5:
a8:ae:62:e0:77:b1:93:7a:56:b2:53:ae:dc:0e:39:f2:e5:6a:
42:62:1a:5c:54:81:d5:57:d2:f9:ec:16:e1:5f:82:02:0d:fe:
f2:e5:06:96:00:a6:54:6c:b9:70:c9:9e:cb:92:9f:95:25:77:
a7:ab:e0:c1:3d:a7:6d:e6:07:92:cf:46:84:b6:ff:f1:fc:b5:
87:44:32:c4:8d:ee:df:91:b9:9c:7b:23:80:1f:d9:84:02:37:
b6:24:a4:07:52:99:26:3a:1f:40:35:7e:bc:8e:55:c9:59:c6:
59:35:25:c6:77:72:dc:8d:1a:12:1f:4b:4e:a0:7c:cf:23:a1:
fc:3f:23:08:82:a0:54:f4:a0:40:2b:2e:bd:22:bc:17:a4:08:
b8:c9:e9:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:57 2024 by rpki-client on console-ams.rpki-client.org