Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/FjVhlH2WBBUjNRDNMM8XTYHS13A.roa
File: FjVhlH2WBBUjNRDNMM8XTYHS13A.roa (raw, json)
Hash identifier: jqLBPaocrxWJmOnLN+10Os+OJLXprbKoACxM9aZuiqs=
Subject key identifier: 16:35:61:94:7D:96:04:15:23:35:10:CD:30:CF:17:4D:81:D2:D7:70
Certificate issuer: /CN=aca77c708af0ba1f81549c9f87089559390167a5
Certificate serial: 3749253D
Authority key identifier: AC:A7:7C:70:8A:F0:BA:1F:81:54:9C:9F:87:08:95:59:39:01:67:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKd8cIrwuh-BVJyfhwiVWTkBZ6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/FjVhlH2WBBUjNRDNMM8XTYHS13A.roa
Signing time: Thu 10 Mar 2022 19:48:31 +0000
ROA not before: Thu 10 Mar 2022 19:48:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 46.183.152.0/21 maxlen: 21
185.1.102.0/24 maxlen: 24
2001:7f8:bd::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 927540541 (0x3749253d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca77c708af0ba1f81549c9f87089559390167a5
Validity
Not Before: Mar 10 19:48:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=163561947d960415233510cd30cf174d81d2d770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1b:21:aa:b8:d7:0c:f2:d7:1a:06:f9:fc:24:
2c:49:29:7c:2b:4c:41:08:38:a0:69:b0:87:66:cf:
70:ef:6e:e4:0a:f3:b9:63:82:57:00:27:a6:bb:0f:
27:80:f8:ce:1d:1c:39:fe:6b:09:dd:61:b9:52:da:
15:f9:e4:db:77:eb:05:6a:01:06:38:f4:58:85:7b:
1d:87:83:41:41:1b:53:c0:c8:af:6d:03:55:5a:ed:
30:4d:53:79:43:d6:dd:ad:ab:d8:99:8c:32:ef:62:
05:df:85:57:27:9d:7a:be:cb:42:f0:26:0f:15:ca:
03:1b:1f:80:a8:60:fe:39:49:6c:25:06:62:90:aa:
98:80:36:f5:ad:d4:69:9c:3e:55:15:03:28:7f:e6:
29:a5:7c:d9:98:b6:0a:d5:d2:2f:e4:30:5e:5c:6e:
7b:43:9d:b3:f9:11:9e:04:9c:49:da:da:1d:28:03:
05:81:0f:4e:eb:ee:f1:7a:1e:d1:f1:47:5e:c3:35:
1e:9c:7a:13:81:f1:70:a3:2b:e7:06:dd:3f:90:14:
d3:3e:65:66:d8:8e:c5:2d:78:19:46:e0:d9:b5:52:
14:cb:67:3d:67:11:75:a4:56:ab:a0:e2:70:d9:fd:
df:76:ec:00:d0:05:4f:b4:3d:80:11:d4:f4:46:f8:
bd:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:35:61:94:7D:96:04:15:23:35:10:CD:30:CF:17:4D:81:D2:D7:70
X509v3 Authority Key Identifier:
keyid:AC:A7:7C:70:8A:F0:BA:1F:81:54:9C:9F:87:08:95:59:39:01:67:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKd8cIrwuh-BVJyfhwiVWTkBZ6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/FjVhlH2WBBUjNRDNMM8XTYHS13A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/rKd8cIrwuh-BVJyfhwiVWTkBZ6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.152.0/21
185.1.102.0/24
IPv6:
2001:7f8:bd::/48
Signature Algorithm: sha256WithRSAEncryption
6c:9a:bd:e4:0d:33:1c:98:be:20:02:3b:67:b2:b6:fa:d7:d4:
e3:8c:76:b2:4b:76:ef:ab:c8:68:63:78:a9:a8:27:09:c6:9f:
96:f4:a3:56:05:f9:ee:00:0f:55:6a:1d:3f:6a:cd:1b:9e:dd:
43:14:a9:c9:35:12:be:5c:7c:c7:50:43:ff:20:84:41:1f:4d:
5f:05:e9:0c:45:ef:44:aa:94:7b:f2:03:3b:b1:fc:8d:0d:80:
35:34:25:95:a2:0c:c3:93:4b:4e:11:5e:d9:dd:95:93:2f:3f:
8c:e5:65:c1:0b:78:f0:9c:09:5c:8f:13:8e:44:a3:03:8c:20:
4b:53:ab:41:0e:bf:4a:3c:02:90:05:2e:d4:da:4b:76:72:cd:
ea:19:03:df:38:88:c1:34:41:25:d0:06:9d:b1:f5:53:33:b5:
2e:1a:75:a2:83:4b:64:1b:be:27:ef:d6:de:23:81:99:63:38:
28:d4:0f:22:b2:6a:1f:b9:b4:2d:d2:b7:cf:ff:ba:10:1c:43:
4c:cf:96:74:6a:9a:df:8f:3c:2b:69:0c:30:ad:0a:32:6e:dc:
f8:f3:74:04:f6:82:0e:a4:43:c5:d1:82:f4:4d:a8:60:de:1f:
9c:c5:89:b8:62:55:d7:29:34:e9:40:bb:39:76:35:b9:01:9d:
ef:89:62:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:27 2024 by rpki-client on console-fra.rpki-client.org