Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/a734a4-143d-461d-bfd6-45caa6ef6700/1/2Zl4eSMdNNbABpyQ-KF28CPsymI.roa
File: 2Zl4eSMdNNbABpyQ-KF28CPsymI.roa (raw, json)
Hash identifier: ExerSmFuOk7Gktl65DEd8+4OOFOK4wGnXNDziZ/ZOvE=
Subject key identifier: D9:99:78:79:23:1D:34:D6:C0:06:9C:90:F8:A1:76:F0:23:EC:CA:62
Certificate issuer: /CN=2b928097dc9f89a7a3a8a296a78a4f9d0cbce17f
Certificate serial: 3993235D
Authority key identifier: 2B:92:80:97:DC:9F:89:A7:A3:A8:A2:96:A7:8A:4F:9D:0C:BC:E1:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5KAl9yfiaejqKKWp4pPnQy84X8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/a734a4-143d-461d-bfd6-45caa6ef6700/1/2Zl4eSMdNNbABpyQ-KF28CPsymI.roa
Signing time: Wed 25 May 2022 10:20:13 +0000
ROA not before: Wed 25 May 2022 10:20:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197305
IP address blocks: 46.243.16.0/24 maxlen: 24
46.243.17.0/24 maxlen: 24
46.243.22.0/24 maxlen: 24
46.243.20.0/24 maxlen: 24
46.243.21.0/24 maxlen: 24
46.243.18.0/24 maxlen: 24
46.243.19.0/24 maxlen: 24
46.243.23.0/24 maxlen: 24
2a03:6dc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 965944157 (0x3993235d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b928097dc9f89a7a3a8a296a78a4f9d0cbce17f
Validity
Not Before: May 25 10:20:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9997879231d34d6c0069c90f8a176f023ecca62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8b:27:b0:af:c6:04:35:b1:6b:d1:9f:08:1d:
70:9c:57:b1:30:79:bb:6c:4b:27:0b:f8:3c:e5:23:
39:27:b4:1e:d0:24:fe:4e:e3:d2:f6:d8:22:4b:1e:
25:50:c4:de:98:6a:ab:50:f4:f2:3a:24:00:ee:f8:
32:11:0f:2b:89:40:75:76:9b:44:90:ba:3d:36:ee:
8b:e5:54:a0:52:b8:9d:0f:5c:ce:23:aa:ba:6a:e7:
dd:d8:68:8c:2a:1f:93:68:16:3b:53:ad:9f:2b:39:
52:da:8f:8c:bc:05:f0:a3:da:f7:66:31:8e:77:e8:
87:68:02:82:3f:98:ec:2f:d7:28:c5:d9:d7:a4:ae:
6b:a8:fa:d2:76:ed:5d:78:22:40:46:b9:66:ec:da:
09:44:41:4e:e6:10:c0:74:9d:fa:40:53:fe:76:41:
7d:42:a1:5a:90:ea:ee:f0:f1:ff:62:9b:f1:03:73:
b0:b5:14:10:54:34:37:8b:cf:50:d8:26:c3:f7:81:
e3:35:68:af:69:1d:3f:e1:f3:5a:08:6f:5f:0d:5e:
6b:7b:99:16:7e:fd:87:83:3e:7f:ae:28:c8:b0:7a:
4a:1b:f6:53:4f:dd:40:0b:0a:c6:63:d1:52:12:e2:
f8:e0:a0:2e:d1:dd:46:d5:e7:4c:68:95:b8:32:92:
e9:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:99:78:79:23:1D:34:D6:C0:06:9C:90:F8:A1:76:F0:23:EC:CA:62
X509v3 Authority Key Identifier:
keyid:2B:92:80:97:DC:9F:89:A7:A3:A8:A2:96:A7:8A:4F:9D:0C:BC:E1:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5KAl9yfiaejqKKWp4pPnQy84X8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/a734a4-143d-461d-bfd6-45caa6ef6700/1/2Zl4eSMdNNbABpyQ-KF28CPsymI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/a734a4-143d-461d-bfd6-45caa6ef6700/1/K5KAl9yfiaejqKKWp4pPnQy84X8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.243.16.0/21
IPv6:
2a03:6dc0::/32
Signature Algorithm: sha256WithRSAEncryption
99:84:30:c9:f5:9d:09:f6:3d:b8:f0:46:08:69:db:b1:6c:fb:
ae:b2:b4:dc:7f:d2:93:ac:4e:12:67:17:93:15:12:92:52:a1:
cb:f2:b4:6c:f1:e7:2b:8e:dd:c0:fb:4a:2d:0f:0d:4b:1a:59:
53:2b:24:b9:f4:7c:c2:ac:8a:73:02:ce:1a:7e:42:0e:40:08:
92:ab:32:e4:04:69:5b:1d:bc:6a:ae:c2:5a:94:f9:77:99:95:
c8:bf:03:6a:4b:af:6a:8b:c0:0a:61:2f:3f:44:c7:3b:50:07:
3d:e7:18:79:b4:4a:67:87:ab:07:ca:bb:e3:4e:a9:e1:ae:26:
9a:5e:32:db:00:62:0a:03:4f:50:ca:7a:e8:b2:7a:9c:cc:ef:
10:d2:9f:03:41:2d:ce:3a:c2:5f:b7:5e:4c:7c:37:3c:d6:c9:
96:d5:51:04:e4:10:6f:f9:c5:89:c0:b8:23:58:de:9b:1b:a3:
f6:91:07:ee:a4:03:4d:e4:74:3e:4d:e2:06:c0:0e:e1:36:6a:
35:72:c0:4e:2a:8f:6b:5d:91:cc:a0:64:be:1e:26:2e:52:53:
37:39:30:ef:d7:2c:d9:b7:e3:4b:01:bc:9b:f0:d4:e7:43:48:
bb:82:15:1d:48:2d:01:74:8d:f2:16:f2:38:05:34:0d:fc:6a:
cb:87:83:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:22 2024 by rpki-client on console-ams.rpki-client.org