Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/b84195-cd46-49cb-85f8-6eb43b556e13/1/2xpc1Iiv3vxq0c-kz1IQ_ClI9X0.roa
File: 2xpc1Iiv3vxq0c-kz1IQ_ClI9X0.roa (raw, json)
Hash identifier: 9cHQb3+hbDb3jZPjv9wwTe7Vq4bjJaHP6Exhj2Sk4eM=
Subject key identifier: DB:1A:5C:D4:88:AF:DE:FC:6A:D1:CF:A4:CF:52:10:FC:29:48:F5:7D
Certificate issuer: /CN=355608d078d6f31cf79be78736bf884606a17da4
Certificate serial: 353FD384
Authority key identifier: 35:56:08:D0:78:D6:F3:1C:F7:9B:E7:87:36:BF:88:46:06:A1:7D:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NVYI0HjW8xz3m-eHNr-IRgahfaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/b84195-cd46-49cb-85f8-6eb43b556e13/1/2xpc1Iiv3vxq0c-kz1IQ_ClI9X0.roa
Signing time: Sat 01 Jan 2022 14:54:56 +0000
ROA not before: Sat 01 Jan 2022 14:54:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48426
IP address blocks: 91.209.154.0/24 maxlen: 24
46.183.49.0/24 maxlen: 24
46.183.50.0/23 maxlen: 23
46.183.52.0/24 maxlen: 24
2a00:4040::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 893375364 (0x353fd384)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=355608d078d6f31cf79be78736bf884606a17da4
Validity
Not Before: Jan 1 14:54:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db1a5cd488afdefc6ad1cfa4cf5210fc2948f57d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c8:51:6d:a1:94:74:41:e3:ea:f2:a1:7e:fb:
61:71:62:7d:64:e1:c9:6f:a1:87:df:9f:21:7e:a4:
6e:19:e6:46:dc:9b:14:d9:8f:dc:c5:3d:85:1f:f5:
b5:be:b2:af:46:75:79:64:7c:c6:ff:5a:2a:8a:d8:
43:02:50:76:56:f9:18:b9:40:ef:00:86:0f:46:e8:
4e:80:47:94:5f:bf:ad:5e:79:3c:00:ca:06:43:ef:
a9:c6:90:06:6c:40:bd:5e:a4:fb:4f:87:b7:dc:4c:
47:22:76:1f:20:6f:c9:17:a4:f1:aa:5c:05:5f:b1:
a9:16:83:31:9c:0d:d3:80:af:1f:8f:82:3d:2f:a9:
04:df:49:1a:3f:69:e3:f2:90:c9:65:9f:23:2e:a7:
52:c0:d1:92:6b:d1:e2:f1:ff:a4:a5:d7:b7:13:72:
79:ed:6b:48:bf:3e:ff:28:64:3c:7a:44:f7:8e:6c:
0e:7d:6f:e6:87:ab:9a:4f:2a:66:e1:ef:ad:2f:86:
01:e7:cf:77:db:3b:f4:41:a9:2b:57:7a:6b:8c:70:
6e:8f:b8:b9:0e:b7:2e:30:3f:90:e9:52:dd:d8:84:
13:9a:80:33:7d:7f:eb:75:d6:be:03:d7:9a:80:fc:
e4:88:06:a9:f1:4f:56:18:f4:26:9b:d4:cd:69:5e:
73:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:1A:5C:D4:88:AF:DE:FC:6A:D1:CF:A4:CF:52:10:FC:29:48:F5:7D
X509v3 Authority Key Identifier:
keyid:35:56:08:D0:78:D6:F3:1C:F7:9B:E7:87:36:BF:88:46:06:A1:7D:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NVYI0HjW8xz3m-eHNr-IRgahfaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/b84195-cd46-49cb-85f8-6eb43b556e13/1/2xpc1Iiv3vxq0c-kz1IQ_ClI9X0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/b84195-cd46-49cb-85f8-6eb43b556e13/1/NVYI0HjW8xz3m-eHNr-IRgahfaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.49.0-46.183.52.255
91.209.154.0/24
IPv6:
2a00:4040::/48
Signature Algorithm: sha256WithRSAEncryption
1d:89:fb:82:f8:78:a9:b6:63:40:eb:f4:16:81:3b:b9:48:ff:
48:e0:ca:46:d8:ec:35:21:be:4a:b8:72:e8:2f:26:5d:73:2f:
27:53:01:db:30:f3:65:fa:25:30:15:25:a7:78:64:40:b6:fb:
db:3f:a3:8f:ae:09:2c:2e:be:03:8a:4b:5d:43:cf:19:b5:e5:
3a:c5:86:7f:12:db:56:0e:96:ad:52:88:49:c2:71:a3:e7:7b:
8b:2c:3e:6e:fe:01:67:40:b7:84:bc:99:d7:bc:7d:72:51:ab:
30:54:11:e5:22:ff:b0:d1:f9:69:21:66:0a:19:bd:4a:f2:aa:
e1:fc:2f:a1:f7:92:f4:22:27:92:c5:3a:86:42:d9:9d:f5:73:
1c:89:f5:a8:e3:a9:aa:b2:9b:1c:2c:9e:c9:ef:d3:14:7e:5b:
5c:f7:83:62:1a:4b:22:3b:da:08:0c:60:ee:9e:33:8c:79:49:
eb:54:e1:bd:3a:8d:86:be:1d:14:c3:eb:09:ef:9e:59:71:e2:
22:11:f3:83:5f:a4:3c:c4:a0:a2:a8:ca:53:43:43:8a:a0:a8:
88:e2:d9:4b:79:b7:32:d6:ff:0e:57:fb:ad:69:d5:45:db:7a:
f3:ca:05:68:ca:84:20:a3:a2:f5:3d:b2:85:15:b4:18:dc:78:
53:d9:e4:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:24 2024 by rpki-client on console-ams.rpki-client.org