Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c49172-f8da-4128-8689-515845e6c317/1/sCQGilwl2l0SXUXd6XMpSTLt9UU.roa
File: sCQGilwl2l0SXUXd6XMpSTLt9UU.roa (raw, json)
Hash identifier: j7XY81XEf2+7+5vcWffgdqbyVCTtWt+wuJRSHPf/2Dk=
Subject key identifier: B0:24:06:8A:5C:25:DA:5D:12:5D:45:DD:E9:73:29:49:32:ED:F5:45
Certificate issuer: /CN=c105adc5c4262dff6b3f3e606830c7f971d766ce
Certificate serial: 01849AD9CD1FD6E6828C5B0C9154BAD131B3
Authority key identifier: C1:05:AD:C5:C4:26:2D:FF:6B:3F:3E:60:68:30:C7:F9:71:D7:66:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wQWtxcQmLf9rPz5gaDDH-XHXZs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c49172-f8da-4128-8689-515845e6c317/1/sCQGilwl2l0SXUXd6XMpSTLt9UU.roa
Signing time: Mon 21 Nov 2022 15:41:15 +0000
ROA not before: Mon 21 Nov 2022 15:41:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25498
IP address blocks: 46.232.232.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9a:d9:cd:1f:d6:e6:82:8c:5b:0c:91:54:ba:d1:31:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c105adc5c4262dff6b3f3e606830c7f971d766ce
Validity
Not Before: Nov 21 15:41:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b024068a5c25da5d125d45dde973294932edf545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:98:9e:e1:6e:e3:0f:9a:03:4f:76:64:82:08:
d0:23:96:41:15:6b:9e:fd:d7:51:af:8d:5c:22:18:
12:35:12:4c:42:4d:f1:7f:27:19:60:b6:17:92:6d:
ef:db:06:66:48:d7:77:fd:c8:8f:48:60:95:f9:c2:
3a:ff:c7:ca:57:3f:4d:ca:df:02:84:03:51:97:42:
55:ce:34:99:52:69:f7:e3:61:73:81:1a:2f:af:c7:
a7:b7:fc:fc:a3:1d:d8:08:ad:06:4d:e2:3c:c9:d8:
aa:78:5a:7d:69:c8:48:0d:bb:e8:5a:0d:ea:74:a9:
97:f3:e2:4a:b2:ce:6c:dc:74:45:ba:d1:b7:1a:f0:
56:9b:a9:9d:f1:c6:d5:20:2f:b1:e8:ec:09:6a:22:
08:48:1c:b6:01:c6:5a:86:6c:02:9d:63:1d:88:13:
13:ca:e6:bf:73:70:de:b1:9d:e6:38:83:47:9b:2d:
38:be:5b:62:1f:8b:1f:f2:4a:6e:a2:7e:45:d0:1a:
ca:da:d9:c5:9d:72:75:26:b9:7e:b6:da:5f:85:62:
1b:91:f4:1b:89:cb:31:ed:ff:9f:a7:40:8d:19:03:
6e:a3:86:02:b1:81:7c:c8:77:6f:78:f9:88:73:46:
13:31:72:53:64:54:ca:1a:69:fd:8e:8c:36:62:da:
c6:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:24:06:8A:5C:25:DA:5D:12:5D:45:DD:E9:73:29:49:32:ED:F5:45
X509v3 Authority Key Identifier:
keyid:C1:05:AD:C5:C4:26:2D:FF:6B:3F:3E:60:68:30:C7:F9:71:D7:66:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wQWtxcQmLf9rPz5gaDDH-XHXZs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c49172-f8da-4128-8689-515845e6c317/1/sCQGilwl2l0SXUXd6XMpSTLt9UU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c49172-f8da-4128-8689-515845e6c317/1/wQWtxcQmLf9rPz5gaDDH-XHXZs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.232.232.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:9f:25:8b:58:51:74:32:b0:a6:cb:4f:fe:18:7e:b2:4d:9a:
13:1a:51:cc:6d:e3:8a:97:a4:4f:23:bb:b6:fa:7f:56:28:71:
8e:a0:4d:28:64:46:47:f6:1b:e1:b6:73:47:dd:d2:a3:7e:65:
91:a5:45:75:51:0c:6c:25:31:da:0a:19:14:bb:e8:4a:94:d7:
ee:1b:3b:4b:ae:a5:7b:6a:ba:44:83:eb:c8:dd:81:32:b5:5a:
a8:44:c5:81:17:d5:71:30:cc:26:3d:59:84:88:21:d2:83:b4:
eb:63:c0:70:80:66:fe:83:ce:94:be:23:ba:e2:45:41:23:58:
1b:64:b7:58:bf:2b:99:a2:f2:52:c9:5f:e9:6c:e6:84:49:1b:
ae:f1:5e:a6:ab:ff:99:90:0e:fb:16:c4:2a:a4:6e:fb:7b:1c:
de:29:6a:a3:dc:2c:d5:89:15:bf:f2:a8:bf:01:96:ce:70:e2:
e3:49:06:ca:a9:33:5d:25:eb:92:37:33:2a:18:06:79:40:41:
31:98:46:f2:6a:13:02:6c:b7:87:a1:21:d9:5d:6e:eb:aa:e0:
4d:31:2d:d9:c8:01:23:15:5c:4c:8c:87:49:85:2b:7b:2b:28:
55:a7:4a:9a:62:d2:28:b2:8b:96:0d:96:94:10:7f:40:e5:41:
10:80:20:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:18:24 2025 by rpki-client