Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/e99b35-8cf6-4934-a591-9930f2194a0e/1/Cn_P0BJ--qdLaCwylTmrqJAiqXk.roa
File: Cn_P0BJ--qdLaCwylTmrqJAiqXk.roa (raw, json)
Hash identifier: MB23FdGpru5hqVMHJMOS5+AT9R96TGXF+8HW8SFuNNo=
Subject key identifier: 0A:7F:CF:D0:12:7E:FA:A7:4B:68:2C:32:95:39:AB:A8:90:22:A9:79
Certificate issuer: /CN=c41c7221ede3af5ee92e3206af2f18bd010d5dd9
Certificate serial: 057FC9B2
Authority key identifier: C4:1C:72:21:ED:E3:AF:5E:E9:2E:32:06:AF:2F:18:BD:01:0D:5D:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBxyIe3jr17pLjIGry8YvQENXdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/e99b35-8cf6-4934-a591-9930f2194a0e/1/Cn_P0BJ--qdLaCwylTmrqJAiqXk.roa
Signing time: Sat 01 Jan 2022 10:58:05 +0000
ROA not before: Sat 01 Jan 2022 10:58:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28785
IP address blocks: 46.20.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92260786 (0x57fc9b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c41c7221ede3af5ee92e3206af2f18bd010d5dd9
Validity
Not Before: Jan 1 10:58:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a7fcfd0127efaa74b682c329539aba89022a979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b9:0c:19:58:28:b3:d3:a8:77:82:ae:e0:d8:
e8:5b:55:40:5e:3c:a8:17:e2:de:2c:32:e3:69:28:
5e:48:44:e2:41:c3:e3:bf:1a:c5:c3:42:72:fd:0f:
99:66:a1:96:6d:16:47:31:87:19:92:12:d2:ee:e5:
cd:10:85:19:05:62:55:24:60:20:94:ad:85:26:63:
99:83:8d:ca:2c:1f:3a:1a:84:35:9d:9c:43:59:bb:
a7:36:81:6e:2e:6b:b6:73:01:aa:92:a8:80:25:b5:
1d:b6:1e:b7:33:76:17:6a:ec:43:45:59:4a:b4:62:
9f:c7:34:f7:0d:b9:42:98:4f:98:a1:df:26:de:e5:
db:83:d0:f2:23:87:e1:69:01:6a:dc:a9:2e:9a:f8:
85:db:fa:f6:04:b5:5b:0f:19:6b:2f:e4:af:a7:c5:
55:d2:41:5e:89:9b:a9:55:bc:8c:1b:41:55:bb:60:
50:5b:2a:48:fd:ca:76:19:fc:b8:71:af:ad:15:60:
ec:1a:b6:87:e8:0e:35:65:13:74:3d:84:b6:74:ae:
56:03:20:74:bc:66:ba:85:fc:d6:5f:36:23:5a:f5:
f2:68:54:51:51:d1:9f:d7:9f:4f:85:2a:87:45:e8:
fb:a1:4b:84:57:55:2e:3d:39:91:80:6f:70:10:f3:
71:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:7F:CF:D0:12:7E:FA:A7:4B:68:2C:32:95:39:AB:A8:90:22:A9:79
X509v3 Authority Key Identifier:
keyid:C4:1C:72:21:ED:E3:AF:5E:E9:2E:32:06:AF:2F:18:BD:01:0D:5D:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBxyIe3jr17pLjIGry8YvQENXdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e99b35-8cf6-4934-a591-9930f2194a0e/1/Cn_P0BJ--qdLaCwylTmrqJAiqXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e99b35-8cf6-4934-a591-9930f2194a0e/1/xBxyIe3jr17pLjIGry8YvQENXdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.20.49.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:94:cd:a0:8a:2b:f8:4e:f7:bc:98:1c:80:e1:b8:d5:7f:79:
78:67:94:d4:fc:36:1c:54:dc:15:83:75:ea:e2:92:47:d5:30:
b9:67:c3:0a:c6:da:69:4b:fa:30:81:43:76:7f:d1:63:c4:c0:
ea:33:7a:4a:46:0a:2d:5b:d8:26:88:c5:fd:1d:db:c2:e3:c6:
c7:fe:d5:ec:14:cb:58:61:fa:1c:b0:73:52:a0:25:40:3e:dd:
f0:d1:b4:a6:b9:8d:d2:e2:6a:ea:f7:fc:7a:35:4a:dd:5f:7e:
ab:3b:36:a3:99:17:c4:1c:56:d4:69:81:20:6c:d7:50:eb:26:
99:91:ce:b2:10:27:0a:bb:1a:75:61:b7:19:6f:68:59:c4:be:
85:05:0d:75:90:ca:e6:e4:93:13:96:ff:8d:d6:1b:41:e3:47:
3c:46:09:30:5c:ec:08:11:63:92:90:b3:fe:fe:88:7f:78:6c:
76:d8:66:13:93:db:14:23:63:2a:d0:d8:1c:1b:44:ff:8b:98:
dc:bd:48:24:b0:51:a1:ef:89:cc:8e:5b:18:94:6e:a8:4a:39:
c6:35:60:5d:9a:6b:dc:0d:b1:1a:32:59:99:f8:66:d9:e7:dd:
66:d8:17:62:28:20:ee:3a:1d:21:53:7f:24:df:44:05:69:03:
ab:ab:4f:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:26 2024 by rpki-client on console-ams.rpki-client.org