Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/e5d869-30bc-4465-bd6f-4773b6669716/1/cDWAt3c3FCdly-zEyBmgwwurrC0.roa
File: cDWAt3c3FCdly-zEyBmgwwurrC0.roa (raw, json)
Hash identifier: y2mvwxXo1gpvoSpLCk5u4fSf1Ej8ufyyAYQpP6OL7Cg=
Subject key identifier: 70:35:80:B7:77:37:14:27:65:CB:EC:C4:C8:19:A0:C3:0B:AB:AC:2D
Certificate issuer: /CN=68c6adf8eecabc1052e1f783d3bce4a1c5db5410
Certificate serial: 023476
Authority key identifier: 68:C6:AD:F8:EE:CA:BC:10:52:E1:F7:83:D3:BC:E4:A1:C5:DB:54:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMat-O7KvBBS4feD07zkocXbVBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/e5d869-30bc-4465-bd6f-4773b6669716/1/cDWAt3c3FCdly-zEyBmgwwurrC0.roa
Signing time: Tue 22 Feb 2022 11:35:42 +0000
ROA not before: Tue 22 Feb 2022 11:35:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 46.18.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144502 (0x23476)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c6adf8eecabc1052e1f783d3bce4a1c5db5410
Validity
Not Before: Feb 22 11:35:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=703580b77737142765cbecc4c819a0c30babac2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:9c:92:b8:d7:8d:ea:81:94:33:ce:e5:cb:a7:
94:a2:e1:c4:8f:aa:4e:5b:db:54:5e:64:6b:a6:be:
bc:80:16:93:b4:3b:69:e9:53:cf:ac:2a:b8:10:57:
cf:10:1f:03:e0:7e:0c:a5:3d:aa:a4:21:5a:07:b8:
28:b1:1e:b4:4c:72:ef:12:48:5a:7b:03:12:e7:79:
21:19:71:d7:fb:fe:f9:fc:06:a0:ac:2a:f4:3e:af:
ed:3a:5a:da:e4:31:a7:60:44:5f:b6:07:d3:38:36:
db:21:60:8a:08:f9:14:46:80:18:49:95:19:b8:9b:
fc:74:0d:8f:07:b2:3f:1a:4c:ad:60:0b:35:86:92:
89:2d:73:06:17:16:b3:41:98:17:62:e9:50:97:d5:
0b:cb:91:67:31:2a:82:bd:e2:77:69:8b:12:40:93:
ac:ce:f6:89:3c:c7:0f:60:1e:e1:f8:82:41:67:af:
1f:f9:c0:98:72:e7:ae:f8:02:74:59:5f:31:59:f4:
11:3c:4f:22:d8:6e:74:63:f2:43:72:92:00:6e:cd:
05:74:69:7a:21:90:5a:74:ce:be:52:de:35:59:7c:
1e:41:b6:8a:e7:87:61:09:29:2a:88:5a:ea:52:7e:
9d:86:89:56:6a:81:de:55:89:74:23:12:2b:b9:5c:
bc:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:35:80:B7:77:37:14:27:65:CB:EC:C4:C8:19:A0:C3:0B:AB:AC:2D
X509v3 Authority Key Identifier:
keyid:68:C6:AD:F8:EE:CA:BC:10:52:E1:F7:83:D3:BC:E4:A1:C5:DB:54:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMat-O7KvBBS4feD07zkocXbVBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/e5d869-30bc-4465-bd6f-4773b6669716/1/cDWAt3c3FCdly-zEyBmgwwurrC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/e5d869-30bc-4465-bd6f-4773b6669716/1/aMat-O7KvBBS4feD07zkocXbVBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.18.245.0/24
Signature Algorithm: sha256WithRSAEncryption
65:0b:54:cf:51:6b:5c:2e:98:37:24:43:18:28:f1:81:7b:9c:
30:67:d1:4c:aa:5b:5e:2a:25:49:ea:5a:1d:13:2f:25:86:9d:
a8:02:46:6c:b1:ef:e4:bd:94:ef:2b:a6:ff:ec:47:1f:6f:36:
ab:6e:53:25:32:27:d1:a2:eb:cd:c7:fb:33:d4:45:ef:3f:50:
52:96:4d:9a:fa:bb:38:86:a7:c5:48:4b:e1:83:e1:f5:a1:e4:
77:6b:69:90:03:3e:b1:ab:ea:8c:fc:9c:c0:bb:bb:a9:d1:52:
d9:e5:79:2b:31:9d:c4:c2:dc:cf:fd:00:88:5e:c0:71:ff:0c:
bf:db:50:d7:2c:8a:8d:a6:7b:46:7e:1d:6d:0a:60:83:b5:bd:
25:82:19:2c:35:fa:bd:7e:2f:e1:29:e7:8f:eb:09:4e:64:b6:
b8:de:9c:d8:ba:eb:d9:22:d3:e9:15:6e:96:a0:4f:80:e1:78:
8e:30:16:2f:d5:53:2e:65:b5:57:cb:83:a9:0b:ee:8e:29:43:
86:6e:8a:3b:93:65:32:72:d0:96:4c:1b:d5:9c:0c:b9:65:fb:
81:66:1f:b0:69:87:79:b9:e3:ba:91:db:e7:8c:c7:1c:fc:b6:
6e:0f:dd:ca:00:3b:c7:d6:fd:84:98:a4:6f:30:b2:ac:bb:0b:
1c:a7:f2:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:13 2023 by rpki-client on console-fra.rpki-client.org