Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/0301d4-4805-405c-a6e0-a42e1f1f4798/1/pLbJSFUPSMhTvgYZiHm-CSM1cbo.roa
File: pLbJSFUPSMhTvgYZiHm-CSM1cbo.roa (raw, json)
Hash identifier: gna3rdD3plXozbh8u1hBfZyve4AwdbXhRZ9uMjXClRQ=
Subject key identifier: A4:B6:C9:48:55:0F:48:C8:53:BE:06:19:88:79:BE:09:23:35:71:BA
Certificate issuer: /CN=a9b5ffd24d2eb5d5c1e1cfe78b003c4bab5a2f13
Certificate serial: 01852E9308CF047624F7D87AC69B16EEC69A
Authority key identifier: A9:B5:FF:D2:4D:2E:B5:D5:C1:E1:CF:E7:8B:00:3C:4B:AB:5A:2F:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qbX_0k0utdXB4c_niwA8S6taLxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/0301d4-4805-405c-a6e0-a42e1f1f4798/1/pLbJSFUPSMhTvgYZiHm-CSM1cbo.roa
Signing time: Tue 20 Dec 2022 08:07:46 +0000
ROA not before: Tue 20 Dec 2022 08:07:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50414
IP address blocks: 212.46.55.0/24 maxlen: 24
2a12:bc0:2::/48 maxlen: 48
2a12:bc0::/48 maxlen: 48
2a12:bc0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2e:93:08:cf:04:76:24:f7:d8:7a:c6:9b:16:ee:c6:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9b5ffd24d2eb5d5c1e1cfe78b003c4bab5a2f13
Validity
Not Before: Dec 20 08:07:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4b6c948550f48c853be06198879be09233571ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9d:4c:cd:92:da:3e:30:83:df:eb:15:d0:bc:
21:65:55:68:c3:77:9c:26:79:d3:3a:89:5f:38:54:
d8:ef:65:b5:c3:ce:9c:9d:c0:80:8d:cc:9a:05:ec:
7f:74:75:a7:c1:0f:03:b9:11:8a:f9:58:2b:6a:9d:
7b:36:e6:1c:8c:bc:5c:2d:93:0e:4a:be:43:21:e7:
42:0f:e8:d6:49:b9:bf:c1:ff:f2:bb:6f:78:07:af:
58:4d:ff:50:a8:41:43:2b:72:ec:67:2c:60:cb:bf:
f7:ba:0c:4c:14:07:ae:c5:b3:c4:ee:75:8a:82:f0:
f2:21:a8:65:b3:17:bf:ca:34:64:70:a2:b9:d8:ff:
30:c9:71:f0:9e:5f:34:3e:9e:12:55:79:81:6b:85:
0e:e6:02:a2:7b:8d:4d:e6:40:f5:8c:17:18:43:c5:
da:06:fa:a7:f3:74:ea:9e:04:a4:c8:e8:19:ad:68:
52:73:ce:55:5c:af:39:53:e0:a4:24:dc:5d:99:41:
29:ab:f4:e5:c0:bc:b0:bd:4c:f8:8b:5b:15:96:20:
05:94:85:eb:ca:61:b6:d3:7d:cb:fb:9c:70:a3:c3:
df:99:da:81:86:45:e8:27:de:ef:68:92:25:05:58:
4e:e1:22:9d:46:e0:f9:c7:86:67:33:3a:82:c2:f0:
e3:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:B6:C9:48:55:0F:48:C8:53:BE:06:19:88:79:BE:09:23:35:71:BA
X509v3 Authority Key Identifier:
keyid:A9:B5:FF:D2:4D:2E:B5:D5:C1:E1:CF:E7:8B:00:3C:4B:AB:5A:2F:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qbX_0k0utdXB4c_niwA8S6taLxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/0301d4-4805-405c-a6e0-a42e1f1f4798/1/pLbJSFUPSMhTvgYZiHm-CSM1cbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/0301d4-4805-405c-a6e0-a42e1f1f4798/1/qbX_0k0utdXB4c_niwA8S6taLxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.46.55.0/24
IPv6:
2a12:bc0::-2a12:bc0:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
66:c5:4c:25:71:d3:74:9c:33:3c:64:2e:9e:c2:6b:7b:00:eb:
34:5d:13:8f:f0:3b:76:b1:a1:84:a8:32:77:83:e6:cf:dd:f1:
a3:57:50:03:e3:95:75:99:bf:05:22:81:f6:92:a7:1d:e9:94:
5c:f6:56:f0:b6:f5:5d:53:9e:18:6d:d5:59:78:9d:67:93:a6:
c6:e2:28:cf:93:c1:cc:d8:77:5e:1b:1c:9a:f1:31:d0:b4:cc:
0d:73:33:df:bd:73:bc:42:c4:6f:11:d6:1f:7a:76:86:c9:bc:
44:73:8f:2b:ce:ce:46:dd:cf:a6:bb:94:84:ce:1e:d5:5c:d9:
f6:e5:e5:af:c7:3c:42:db:c1:8d:b0:77:5e:d5:12:76:02:f7:
77:60:73:f8:94:e2:c3:4b:86:48:8c:fa:63:2e:31:da:4d:ee:
3d:f0:73:56:3b:b8:c1:1d:33:4d:53:a7:84:08:10:94:6a:a4:
a0:86:d7:57:7f:b0:64:e0:17:f7:37:f5:2c:9e:4f:81:48:78:
25:8f:f5:02:2e:bb:78:a7:d3:0b:36:70:83:7d:b9:e7:82:ce:
8d:1f:1c:a7:87:4d:64:f0:9f:d4:f4:82:0f:ff:0d:ed:ca:f1:
5c:56:27:a5:af:23:9f:e5:68:1e:29:3c:14:de:4e:56:ea:6c:
1b:6d:e7:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:21 2023 by rpki-client on console-ams.rpki-client.org