Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/2hQw8eqOsK0QgEAOeQ_LDTajaBM.roa
File: 2hQw8eqOsK0QgEAOeQ_LDTajaBM.roa (raw, json)
Hash identifier: eMHBxgr/oPWdRv0RYnAvFaU3pXI/Q2zt5vkzeJzqNis=
Subject key identifier: DA:14:30:F1:EA:8E:B0:AD:10:80:40:0E:79:0F:CB:0D:36:A3:68:13
Certificate issuer: /CN=cc2eb5b38bb62ede5c98cbfbcff9532852180516
Certificate serial: 01847BBD732992234756C5D3E6935F62833C
Authority key identifier: CC:2E:B5:B3:8B:B6:2E:DE:5C:98:CB:FB:CF:F9:53:28:52:18:05:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zC61s4u2Lt5cmMv7z_lTKFIYBRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/2hQw8eqOsK0QgEAOeQ_LDTajaBM.roa
Signing time: Tue 15 Nov 2022 14:42:04 +0000
ROA not before: Tue 15 Nov 2022 14:42:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 185.130.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7b:bd:73:29:92:23:47:56:c5:d3:e6:93:5f:62:83:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc2eb5b38bb62ede5c98cbfbcff9532852180516
Validity
Not Before: Nov 15 14:42:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da1430f1ea8eb0ad1080400e790fcb0d36a36813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e8:60:21:dd:95:d7:9a:fe:28:c6:fd:91:81:
5c:46:01:01:f0:79:68:d1:9d:12:5e:47:52:78:fd:
f7:c7:27:b2:28:5b:4e:3d:f0:40:e2:ed:78:12:95:
5d:eb:8c:ae:95:90:b6:0a:b3:24:af:48:e1:c7:fa:
93:d8:f3:11:27:9e:74:3b:4d:ea:b3:a6:82:35:22:
0d:a6:56:e4:77:ff:f9:b5:bd:7f:86:6d:d8:a1:e6:
b9:52:a7:7c:8d:18:f4:64:e6:29:68:6c:d0:6e:46:
31:53:50:1f:98:70:97:02:8e:23:77:42:d3:3c:8b:
b9:01:c9:b0:5a:83:78:bc:fa:50:c4:ed:19:cf:82:
40:fc:25:08:c3:c4:c9:1c:ef:8b:1f:a2:99:b9:9a:
ba:5b:2e:46:6f:f3:fc:3a:88:d8:6e:86:14:56:ec:
41:22:09:2d:7a:9e:7e:12:51:2f:ed:5e:df:ce:f8:
b3:25:cb:b2:dd:93:4d:65:27:bd:80:a6:51:94:c0:
9f:df:ab:60:c2:65:88:d9:30:fb:00:ca:b7:d0:5d:
fc:17:50:e8:59:2e:23:32:13:52:c6:50:da:a2:62:
8f:7c:ef:ab:7e:ca:60:36:ec:51:aa:42:0b:0d:1d:
54:7e:bf:1e:ad:48:a0:5a:ef:7b:dd:00:9e:c6:c3:
89:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:14:30:F1:EA:8E:B0:AD:10:80:40:0E:79:0F:CB:0D:36:A3:68:13
X509v3 Authority Key Identifier:
keyid:CC:2E:B5:B3:8B:B6:2E:DE:5C:98:CB:FB:CF:F9:53:28:52:18:05:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zC61s4u2Lt5cmMv7z_lTKFIYBRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/2hQw8eqOsK0QgEAOeQ_LDTajaBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/zC61s4u2Lt5cmMv7z_lTKFIYBRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.46.0/24
Signature Algorithm: sha256WithRSAEncryption
50:31:79:a3:42:1a:ef:a5:1d:20:14:59:eb:6b:df:47:a2:5a:
f7:af:c5:92:48:7a:82:ce:82:87:c2:9f:db:dd:02:6c:1b:5a:
5b:ad:ec:55:7a:04:35:18:33:c3:e5:1d:9a:0f:b0:5a:f4:ce:
50:9f:3d:0e:a6:9b:26:84:d7:2d:af:84:08:7a:7a:0e:c2:bd:
fb:b8:ce:f8:5d:8a:52:22:10:83:de:b6:c9:15:b2:5e:23:26:
3e:f0:8a:7a:e2:8b:fe:86:ac:6b:36:ec:ed:a5:61:f6:34:b7:
df:de:54:fd:f6:08:5d:1f:70:eb:a1:26:6e:26:a2:37:49:8b:
1d:61:81:fd:a2:b9:30:b2:bc:a1:22:44:55:cd:b8:62:a1:2b:
cb:3c:80:d2:c3:43:49:d2:bf:92:a1:87:4f:40:67:9f:e6:3f:
c4:fc:ab:46:ff:4f:d9:fd:9f:2b:fd:e6:19:eb:2e:00:a1:a2:
60:10:05:2d:b8:b3:10:3c:35:0b:81:f8:31:1b:33:cb:ad:67:
2d:76:e3:0a:ad:0b:95:08:0c:65:3d:80:e7:60:51:e6:70:d0:
43:c3:46:b4:34:3d:ef:4b:af:1e:82:ad:17:cc:c3:78:bd:20:
84:51:f8:f0:0a:42:13:0d:76:90:60:27:cb:cc:7b:9c:d3:68:
75:74:06:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:21 2023 by rpki-client on console-fra.rpki-client.org