Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/a734a4-143d-461d-bfd6-45caa6ef6700/1/iIbmGUUVzz1VyYXHsh_Z93iKrGI.roa
File: iIbmGUUVzz1VyYXHsh_Z93iKrGI.roa (raw, json)
Hash identifier: vG17Gkx5IGgyGTjshmFEhsG9y+i8DaN3ejrQkot0H54=
Subject key identifier: 88:86:E6:19:45:15:CF:3D:55:C9:85:C7:B2:1F:D9:F7:78:8A:AC:62
Certificate issuer: /CN=2b928097dc9f89a7a3a8a296a78a4f9d0cbce17f
Certificate serial: 38D56B70
Authority key identifier: 2B:92:80:97:DC:9F:89:A7:A3:A8:A2:96:A7:8A:4F:9D:0C:BC:E1:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5KAl9yfiaejqKKWp4pPnQy84X8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/a734a4-143d-461d-bfd6-45caa6ef6700/1/iIbmGUUVzz1VyYXHsh_Z93iKrGI.roa
Signing time: Sun 06 Mar 2022 11:30:09 +0000
ROA not before: Sun 06 Mar 2022 11:30:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203217
IP address blocks: 46.243.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 953510768 (0x38d56b70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b928097dc9f89a7a3a8a296a78a4f9d0cbce17f
Validity
Not Before: Mar 6 11:30:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8886e6194515cf3d55c985c7b21fd9f7788aac62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ec:86:db:a2:7d:b7:8e:8f:d1:78:7c:2c:7b:
9a:e7:26:85:00:9c:77:6f:e8:69:a2:19:f2:3a:5e:
91:73:21:f9:0e:9e:88:3e:5d:c0:22:e3:8b:6a:d8:
83:97:41:ec:92:b6:0a:49:87:6f:dc:ac:16:91:5e:
24:da:3d:aa:0a:20:8c:f6:cc:b5:9e:8c:ed:0b:78:
7b:ac:04:87:13:fe:04:2d:63:b0:bb:46:2c:6e:5c:
83:35:54:88:32:71:c0:7c:6a:7c:fe:c2:46:ff:ea:
1f:93:6d:a9:9b:cb:64:9d:f9:96:cd:42:87:d0:ca:
50:e3:27:8e:13:40:76:01:99:16:2d:0c:7e:63:fa:
97:e4:1e:c8:d3:73:60:f0:5a:51:a5:e0:e6:bd:61:
7b:2f:e9:71:fc:7e:b3:42:4e:9d:22:ae:49:40:28:
9d:55:b5:0a:e7:65:fb:3b:fd:4e:6f:4b:34:f7:cd:
36:36:d8:28:0b:6f:00:48:4e:80:54:b5:5b:51:11:
fb:d4:78:ae:8c:08:0e:e2:c7:8f:61:b7:06:03:a6:
bf:f8:c0:e3:98:29:6b:e9:36:99:01:64:08:b5:c9:
69:dd:7d:2c:2e:a5:3a:c1:9f:9b:b0:cf:45:94:22:
9d:c9:8f:7f:fd:08:b7:23:22:c2:6e:2e:89:d9:76:
7f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:86:E6:19:45:15:CF:3D:55:C9:85:C7:B2:1F:D9:F7:78:8A:AC:62
X509v3 Authority Key Identifier:
keyid:2B:92:80:97:DC:9F:89:A7:A3:A8:A2:96:A7:8A:4F:9D:0C:BC:E1:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5KAl9yfiaejqKKWp4pPnQy84X8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/a734a4-143d-461d-bfd6-45caa6ef6700/1/iIbmGUUVzz1VyYXHsh_Z93iKrGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/a734a4-143d-461d-bfd6-45caa6ef6700/1/K5KAl9yfiaejqKKWp4pPnQy84X8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.243.16.0/24
Signature Algorithm: sha256WithRSAEncryption
43:44:79:d6:74:6d:5a:1f:7a:2c:88:14:d5:4b:cf:7d:20:67:
a1:e8:d7:32:9c:39:e5:ff:be:f7:26:23:9c:41:07:e0:9c:df:
b6:fa:f0:2f:12:f2:72:7f:84:1a:9e:76:4c:17:2a:f6:ec:1a:
e6:12:29:00:d2:6b:6f:84:ab:78:94:72:ef:ae:f7:b3:90:a2:
56:2b:02:75:b1:d4:34:21:af:da:32:d5:14:ef:ea:b5:7c:07:
06:65:ba:7c:08:ae:73:52:54:03:de:1d:87:9f:ae:98:2b:91:
f6:b5:df:41:b2:0e:80:84:2a:d9:24:67:e6:9e:d3:40:12:76:
15:9b:86:23:06:2b:49:3a:bb:eb:e8:d2:b9:db:55:e8:00:01:
3b:db:c5:83:b8:0d:1a:4d:99:2b:13:cb:8b:df:21:21:0f:a3:
f6:4e:17:a7:ed:b7:51:cc:b2:93:fe:c8:fd:4e:ec:ab:3e:ba:
db:ba:a4:f6:ea:d2:6c:07:91:52:57:e1:0c:93:5a:90:66:20:
6f:68:03:12:bd:d6:3f:67:a9:c5:1b:b5:17:62:27:f1:c1:54:
26:49:58:7a:d1:a7:d6:19:04:47:b3:9f:cf:f8:ef:fc:f0:83:
5b:47:67:de:25:04:86:0f:45:88:65:2c:27:58:f6:6d:74:6b:
e5:11:51:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:16 2024 by rpki-client on console-fra.rpki-client.org