Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/2fdd56-ba2c-46fb-9882-9b257f4fea8d/1/o_lTrGwoYxFg9hCilk9qnPkCr1I.roa
File: o_lTrGwoYxFg9hCilk9qnPkCr1I.roa (raw, json)
Hash identifier: 4B5AvR6d1IL/jE/IJPoQszXBKxYjt2HxXAsJ5vDwpdw=
Subject key identifier: A3:F9:53:AC:6C:28:63:11:60:F6:10:A2:96:4F:6A:9C:F9:02:AF:52
Certificate issuer: /CN=77bc534ba44e9d3cba2f2446d4a3dd6eea9b8f61
Certificate serial: F00C36
Authority key identifier: 77:BC:53:4B:A4:4E:9D:3C:BA:2F:24:46:D4:A3:DD:6E:EA:9B:8F:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d7xTS6ROnTy6LyRG1KPdbuqbj2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/2fdd56-ba2c-46fb-9882-9b257f4fea8d/1/o_lTrGwoYxFg9hCilk9qnPkCr1I.roa
Signing time: Sat 01 Jan 2022 10:54:27 +0000
ROA not before: Sat 01 Jan 2022 10:54:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210727
IP address blocks: 46.253.129.0/24 maxlen: 24
2a11:60c0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15731766 (0xf00c36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77bc534ba44e9d3cba2f2446d4a3dd6eea9b8f61
Validity
Not Before: Jan 1 10:54:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3f953ac6c28631160f610a2964f6a9cf902af52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:90:6c:59:99:ee:82:22:22:02:e4:0d:a7:f9:
39:ae:04:41:5f:4b:44:d3:ab:19:50:ff:7a:21:ac:
a3:9c:43:d8:4e:9c:b9:f4:57:47:16:f4:19:62:35:
da:cf:2a:d8:89:85:82:1e:a3:6f:d9:98:a0:86:c5:
43:e2:4b:08:99:2d:4b:5d:b5:e4:ae:0d:35:a9:33:
b7:5d:73:36:e3:a7:60:01:9f:c7:2b:a9:29:fd:c2:
ee:80:25:4a:61:1d:06:3a:ca:e7:47:44:06:0a:95:
60:df:b7:35:bb:00:78:51:25:85:46:96:65:95:f4:
db:23:12:af:d4:b4:72:22:66:7e:6f:e5:b3:de:29:
98:91:91:85:84:1c:ca:ee:df:ba:48:08:16:66:01:
c2:be:20:d2:6b:40:bb:04:b6:d4:0a:92:63:ae:0a:
06:d9:b7:ae:fb:d1:4e:ce:51:92:3c:00:19:c0:1a:
62:f5:19:9f:65:40:e5:f3:63:70:97:a4:fc:f6:17:
79:25:37:f6:17:f5:ea:a7:f4:b8:b2:e3:4d:34:14:
c6:98:99:42:2a:29:ac:87:1a:1b:15:e2:04:7e:32:
09:3e:6e:e1:96:72:b2:3d:d6:c6:6d:5e:87:5a:89:
e1:55:52:b5:7e:96:73:41:d5:29:bf:74:4b:a9:ae:
d0:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:F9:53:AC:6C:28:63:11:60:F6:10:A2:96:4F:6A:9C:F9:02:AF:52
X509v3 Authority Key Identifier:
keyid:77:BC:53:4B:A4:4E:9D:3C:BA:2F:24:46:D4:A3:DD:6E:EA:9B:8F:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7xTS6ROnTy6LyRG1KPdbuqbj2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/2fdd56-ba2c-46fb-9882-9b257f4fea8d/1/o_lTrGwoYxFg9hCilk9qnPkCr1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/2fdd56-ba2c-46fb-9882-9b257f4fea8d/1/d7xTS6ROnTy6LyRG1KPdbuqbj2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.129.0/24
IPv6:
2a11:60c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
51:1e:cf:ed:fb:fb:6a:c6:da:dc:d9:77:94:1c:48:aa:49:a0:
ee:13:84:ce:16:6f:af:78:bf:ff:a2:12:89:39:61:c8:1a:70:
76:de:fd:8e:0d:71:32:91:af:4b:33:51:3b:01:09:67:c0:c6:
ef:ea:ee:44:33:69:5e:e8:43:3e:83:29:a0:82:e5:94:42:90:
a8:12:4a:09:9a:76:54:43:69:87:f9:23:3d:7a:bf:7c:0b:32:
9f:c6:06:fe:c4:5d:52:9a:6c:75:41:e0:2a:1a:95:04:d8:ed:
ad:ca:81:04:b6:90:c9:77:bd:cb:34:85:25:06:fc:41:e2:db:
7a:75:0e:ac:46:64:e2:fd:78:e4:88:f2:d7:42:95:17:cb:da:
09:ce:9c:86:84:1f:e5:58:1c:c6:9d:db:bf:32:60:c2:49:ab:
cc:ab:2b:30:48:e5:fd:67:fd:d9:d1:a7:84:2c:e1:71:67:85:
08:85:77:cd:73:fa:2b:03:c9:0c:d1:38:d3:a4:dd:dd:40:a7:
14:68:c0:dd:6b:2e:ef:45:06:5f:bf:bc:93:11:f2:ae:5e:c5:
3d:e1:21:4a:6f:3e:11:f8:ed:ff:0a:67:54:74:23:03:97:b2:
66:38:f0:f5:e9:be:3d:4f:7c:ab:07:bb:6a:a2:0c:4d:e9:88:
9f:03:d7:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:21 2024 by rpki-client on console-fra.rpki-client.org