Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/WsS8Z0MwgaS9BlwZ__r2U8YkPcE.roa
File: WsS8Z0MwgaS9BlwZ__r2U8YkPcE.roa (raw, json)
Hash identifier: TlwN/Ccx6jQgzYNm088tJ8U+W9PoY98UhehwMKDJm4w=
Subject key identifier: 5A:C4:BC:67:43:30:81:A4:BD:06:5C:19:FF:FA:F6:53:C6:24:3D:C1
Certificate issuer: /CN=91d01c47f00e64f35cc752d03b34a71b71406b3f
Certificate serial: 0182151A77533B987A7E449F72DC2E5B7DA8
Authority key identifier: 91:D0:1C:47:F0:0E:64:F3:5C:C7:52:D0:3B:34:A7:1B:71:40:6B:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdAcR_AOZPNcx1LQOzSnG3FAaz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/WsS8Z0MwgaS9BlwZ__r2U8YkPcE.roa
Signing time: Tue 19 Jul 2022 06:17:12 +0000
ROA not before: Tue 19 Jul 2022 06:17:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49675
IP address blocks: 185.161.180.0/24 maxlen: 24
185.161.180.0/22 maxlen: 22
185.161.181.0/24 maxlen: 24
185.161.183.0/24 maxlen: 24
185.161.182.0/24 maxlen: 24
46.17.200.0/21 maxlen: 21
46.17.201.0/24 maxlen: 24
46.17.202.0/24 maxlen: 24
46.17.206.0/24 maxlen: 24
46.17.200.0/24 maxlen: 24
46.17.204.0/24 maxlen: 24
46.17.205.0/24 maxlen: 24
46.17.203.0/24 maxlen: 24
46.17.207.0/24 maxlen: 24
2a02:26a8:f001::/48 maxlen: 48
2a02:26a8:f000::/36 maxlen: 36
2a02:26a8:ffff::/48 maxlen: 48
2a02:26a8:3::/48 maxlen: 48
2a02:26a8:fffe::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:15:1a:77:53:3b:98:7a:7e:44:9f:72:dc:2e:5b:7d:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d01c47f00e64f35cc752d03b34a71b71406b3f
Validity
Not Before: Jul 19 06:17:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ac4bc67433081a4bd065c19fffaf653c6243dc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:73:1f:2f:a7:e9:22:3e:f0:2e:aa:c8:b7:09:
7b:62:6c:f9:14:00:44:1f:57:3e:01:a7:63:43:16:
de:e2:14:0a:c4:bd:5a:23:a3:8b:fb:ab:b1:50:d2:
e1:d0:9f:39:24:4a:2e:3d:c3:ad:08:4d:dd:5f:c7:
47:a3:4e:d0:54:f8:b3:f1:56:ee:dd:a5:91:f8:3c:
7b:e8:ea:f2:d4:82:74:15:fe:33:6f:b6:03:8d:30:
6c:f2:92:b0:46:d9:91:87:c2:a5:ff:59:4e:28:b1:
1a:20:c3:b7:65:a1:a9:ce:49:e0:a1:0c:01:7f:84:
b8:8f:61:5c:89:f6:1d:46:35:89:be:47:ed:88:fd:
fe:2c:e7:93:79:2f:5d:0e:a9:03:54:48:95:f0:b6:
54:ec:38:7a:b9:79:00:71:65:11:29:06:9b:ef:25:
1b:92:94:34:3c:69:2d:fd:ca:ef:8f:39:13:b1:86:
21:97:fc:3d:74:da:4e:19:52:0b:b1:22:5c:b3:52:
d2:8a:29:15:03:68:c4:ee:1c:6b:e8:8b:4e:d2:2b:
54:41:83:df:52:0f:e6:4d:b9:a1:6e:ff:3d:2e:81:
ae:a5:27:db:6b:84:f8:4d:2d:e9:f2:97:3f:cf:04:
e8:f8:08:7e:9d:41:a2:3f:c9:ed:f1:c7:55:95:be:
7b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:C4:BC:67:43:30:81:A4:BD:06:5C:19:FF:FA:F6:53:C6:24:3D:C1
X509v3 Authority Key Identifier:
keyid:91:D0:1C:47:F0:0E:64:F3:5C:C7:52:D0:3B:34:A7:1B:71:40:6B:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdAcR_AOZPNcx1LQOzSnG3FAaz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/WsS8Z0MwgaS9BlwZ__r2U8YkPcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.17.200.0/21
185.161.180.0/22
IPv6:
2a02:26a8:3::/48
2a02:26a8:f000::/36
Signature Algorithm: sha256WithRSAEncryption
ae:25:cf:a6:28:85:41:d3:d2:b6:87:89:4c:75:9b:fd:7b:26:
8c:20:eb:23:f1:7d:a8:72:46:02:e5:73:ab:90:9c:e2:1a:1d:
79:57:e9:a2:5c:48:7b:19:11:48:62:2c:c7:b0:6e:ca:ad:aa:
88:74:16:06:2e:73:3a:e2:d8:95:f1:3f:74:4b:c0:d2:25:f8:
f3:31:b6:da:63:99:92:ec:5a:54:1d:8a:b6:d3:c9:82:82:b8:
f3:45:41:d4:11:4a:54:53:be:8c:b3:f3:44:69:f7:2d:70:ce:
84:a6:d5:e5:b9:c5:6c:b2:e2:d3:cc:94:9d:8d:50:4f:2f:35:
6b:e8:47:74:23:4e:23:8a:47:96:7b:14:c2:94:e0:c3:69:6e:
e5:e1:ae:05:07:17:43:40:c6:15:46:fb:b7:81:40:d5:1f:68:
90:a3:7e:84:7d:0a:b0:a8:fa:47:05:cd:66:c1:63:1c:72:cb:
58:51:f2:bd:1f:03:9a:8b:d0:12:8d:20:42:fe:29:6d:74:6e:
1c:e9:4f:9d:df:5b:4b:77:63:9d:24:05:30:ce:5d:0b:70:e5:
90:e3:c6:42:1c:1d:0f:6c:5e:24:79:3f:10:30:3f:d2:60:60:
6b:d5:a2:e9:4b:f6:28:8d:d0:cf:91:f1:15:6d:7e:5c:f7:b1:
ab:6d:24:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:52 2024 by rpki-client on console-ams.rpki-client.org