Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/Fz_MbcydcJAi86vnYOS2_ahgu5M.roa
File: Fz_MbcydcJAi86vnYOS2_ahgu5M.roa (raw, json)
Hash identifier: tD5AOUoEJfRTIqxUcApoKsSYqHoRWQgJzWIuLq7XuLM=
Subject key identifier: 17:3F:CC:6D:CC:9D:70:90:22:F3:AB:E7:60:E4:B6:FD:A8:60:BB:93
Certificate issuer: /CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Certificate serial: 0183C74D04722965B21A7A96B006569681D6
Authority key identifier: 0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/Fz_MbcydcJAi86vnYOS2_ahgu5M.roa
Signing time: Tue 11 Oct 2022 13:47:36 +0000
ROA not before: Tue 11 Oct 2022 13:47:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 46.28.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c7:4d:04:72:29:65:b2:1a:7a:96:b0:06:56:96:81:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Validity
Not Before: Oct 11 13:47:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=173fcc6dcc9d709022f3abe760e4b6fda860bb93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:50:53:07:6d:56:c9:da:10:fd:30:52:a6:6c:
7b:21:bb:6f:c0:f3:84:c9:26:a4:b8:0e:f3:36:ba:
4d:89:d5:f1:1a:a4:3a:4b:d6:62:91:e3:33:ae:cf:
aa:e8:7d:c3:1c:33:f4:02:ab:63:c6:5e:00:32:f7:
f6:38:97:98:e1:88:61:17:32:f9:73:b2:7e:20:0a:
12:64:dc:a1:3d:f0:7a:83:05:71:45:4a:33:95:d0:
90:d8:e0:62:b4:a5:c4:ed:85:e3:3c:fe:5d:54:d4:
56:23:af:a4:96:7d:2b:6d:da:c8:e3:e2:68:c7:28:
cc:52:60:a5:47:ed:da:0e:16:f8:64:d6:a4:1e:c3:
51:96:4a:df:f8:94:ba:0b:00:0b:1a:be:4e:3d:72:
0a:d8:0e:c6:e3:7b:a9:f4:08:fb:d6:a5:20:83:3d:
fa:d9:a9:30:de:1b:b8:31:60:d5:22:27:16:92:f3:
0a:e7:90:a8:23:b6:22:ac:fd:98:fa:f9:2a:8f:81:
ab:43:e8:15:e2:1c:07:29:72:2d:92:47:a3:24:c9:
86:40:c2:9c:5d:ef:d0:bd:8b:88:db:99:7b:ab:f6:
31:13:1e:20:98:68:d0:74:88:15:9c:40:6d:d2:de:
0f:a9:93:b2:7c:ae:ab:62:b3:a9:83:e0:10:4d:92:
f8:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:3F:CC:6D:CC:9D:70:90:22:F3:AB:E7:60:E4:B6:FD:A8:60:BB:93
X509v3 Authority Key Identifier:
keyid:0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/Fz_MbcydcJAi86vnYOS2_ahgu5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.28.40.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:e1:fd:16:bf:77:4d:6c:dc:44:39:7d:db:c6:65:a1:10:20:
ed:8f:ca:78:93:98:c6:63:ac:b4:d6:4d:3e:b8:3a:16:b2:c5:
b2:5a:2e:d9:77:e4:91:7f:0c:0f:7b:dc:e8:f9:16:f2:03:4d:
e2:86:08:b0:ec:ea:96:79:35:79:af:cb:cf:d4:9f:a6:45:59:
50:f3:95:82:3b:5a:2e:9d:ee:d1:88:23:cf:46:02:fc:7a:40:
1f:66:09:af:0c:bb:e2:49:66:b8:1e:90:cd:d5:22:5a:1c:df:
54:f0:96:c6:e6:fa:57:84:6c:e7:a4:ed:53:e5:19:cc:13:65:
c9:89:a3:5c:fc:8b:7e:fd:f6:f0:79:be:3a:82:61:31:db:33:
00:13:5b:4c:df:52:7c:77:10:17:75:89:3f:24:33:0d:88:07:
d3:d4:a2:98:8e:4b:63:e6:2d:69:6e:27:1c:aa:91:3d:f9:8c:
cf:19:53:70:3c:00:5b:b0:b3:85:ff:cb:c3:72:28:13:43:8b:
b6:1a:04:9a:70:1b:62:bb:a8:e8:ec:62:7f:f6:4b:34:18:62:
b8:d2:15:61:58:58:f8:38:f8:f2:56:5d:e8:43:c0:95:0e:28:
45:84:a5:95:9a:36:0a:dc:0e:45:92:0b:0d:3e:fc:e3:f8:83:
80:1f:ac:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:30 2025 by rpki-client