Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/1-4ZugOKWQ-mWSMRvW6dyG7hjS-E.roa
File: 1-4ZugOKWQ-mWSMRvW6dyG7hjS-E.roa (raw, json)
Hash identifier: Ji5aoYW2RwlGdsgYwmDeCKFCsq19fAAV7RIhqOSMxQ8=
Subject key identifier: FB:86:6E:80:E2:96:43:E9:96:48:C4:6F:5B:A7:72:1B:B8:63:4B:E1
Certificate issuer: /CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Certificate serial: 17415136
Authority key identifier: 0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/1-4ZugOKWQ-mWSMRvW6dyG7hjS-E.roa
Signing time: Mon 27 Jun 2022 10:03:51 +0000
ROA not before: Mon 27 Jun 2022 10:03:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5617
IP address blocks: 46.28.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 390156598 (0x17415136)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Validity
Not Before: Jun 27 10:03:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb866e80e29643e99648c46f5ba7721bb8634be1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9f:ae:9c:6f:42:66:92:0d:43:54:e3:73:f8:
13:f1:cc:e1:d1:4e:e6:f4:66:58:2f:26:f2:cc:27:
b0:c7:5e:cd:af:e0:56:0d:1b:85:fb:95:c7:9a:ec:
60:db:62:e0:d5:dc:f3:c9:34:24:91:e4:52:8b:49:
09:07:61:02:da:ae:5a:0d:cc:a7:4b:ae:c6:bc:06:
f2:03:3e:b9:25:61:fa:32:74:ef:65:b1:25:ed:d2:
60:31:d7:61:e9:d9:4e:d8:16:30:23:81:d4:24:63:
b5:b4:cd:ff:0a:75:e3:ac:cd:1c:06:bb:18:ef:1b:
e9:90:1c:fc:15:af:23:d5:7d:a4:2c:37:7a:9e:2a:
8f:0e:db:53:5e:12:44:fc:f2:3b:8c:4e:9b:61:ac:
ae:db:6f:72:63:64:eb:eb:29:5c:8a:4e:76:87:7f:
4f:5c:5b:74:49:51:92:bb:d8:f0:ef:cc:8b:85:99:
cf:2e:ed:fe:35:75:a0:dd:a4:fe:7a:a3:86:60:fc:
c2:99:09:0c:9a:95:ae:6b:f2:da:e8:94:16:e4:e5:
b1:1e:dd:12:4f:6e:6a:08:bb:aa:80:c3:cd:30:bd:
ad:1c:6e:34:c5:a7:54:65:1a:70:07:17:9e:be:41:
32:8d:0d:9c:bc:ae:0d:77:dd:ad:87:0f:85:a8:cf:
1f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:86:6E:80:E2:96:43:E9:96:48:C4:6F:5B:A7:72:1B:B8:63:4B:E1
X509v3 Authority Key Identifier:
keyid:0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/1-4ZugOKWQ-mWSMRvW6dyG7hjS-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.28.44.0/22
Signature Algorithm: sha256WithRSAEncryption
11:0a:10:50:03:9b:21:19:e8:0c:cd:f5:8d:8d:f4:b5:02:99:
45:fa:d9:1e:02:d1:3d:94:fb:eb:87:b8:b7:41:a0:ec:37:9a:
9f:80:7e:da:b8:22:bd:fa:90:0e:31:df:b2:0c:96:d6:58:32:
80:28:50:27:da:5e:88:16:c9:5b:a2:2d:c1:fe:33:ec:41:c9:
89:b7:79:63:c7:07:46:d5:41:2f:3e:9f:01:f1:20:67:a1:34:
d6:75:dd:a4:ea:a0:89:ff:ac:1e:5c:5a:49:75:e2:20:e2:ba:
4e:9b:fe:86:bf:59:c2:2d:51:35:c9:5d:f5:e7:51:a1:d4:39:
c1:0b:2c:47:53:48:e9:eb:e9:1d:9a:bf:93:8a:19:41:6e:6b:
e2:81:0a:51:09:8b:7b:6e:05:fa:f4:24:91:28:9a:cc:d2:a6:
1d:52:c0:fa:08:ab:f5:39:7e:af:86:d3:32:24:5f:5c:06:0a:
72:fe:eb:4e:ce:e2:49:67:28:93:dd:e5:33:fc:aa:65:2f:a5:
71:2f:2e:a5:44:2f:31:af:99:88:72:70:96:b8:3e:78:65:c0:
ba:29:d3:ad:8c:03:e6:b2:de:8b:f8:18:5b:9f:ac:55:7c:ab:
13:0e:99:a5:dd:77:ed:12:c9:0d:a9:8b:b7:3c:9b:ee:a8:62:
da:2e:ad:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:32 2023 by rpki-client on console-ams.rpki-client.org