Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/BTxM6144VxM_WY-Kn9NVhVJJRLY.roa
File: BTxM6144VxM_WY-Kn9NVhVJJRLY.roa (raw, json)
Hash identifier: SoN5jTBJ8EXnk78tgtx7Lo3WrtxPIT49857NvqiIUpY=
Subject key identifier: 05:3C:4C:EB:5E:38:57:13:3F:59:8F:8A:9F:D3:55:85:52:49:44:B6
Certificate issuer: /CN=fa46a4f1143abe3adfc4b6835fa134e3df2cac34
Certificate serial: 35AEB07D
Authority key identifier: FA:46:A4:F1:14:3A:BE:3A:DF:C4:B6:83:5F:A1:34:E3:DF:2C:AC:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-kak8RQ6vjrfxLaDX6E0498srDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/BTxM6144VxM_WY-Kn9NVhVJJRLY.roa
Signing time: Sat 01 Jan 2022 06:05:21 +0000
ROA not before: Sat 01 Jan 2022 06:05:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49909
IP address blocks: 46.20.128.0/20 maxlen: 24
178.21.120.0/21 maxlen: 24
2a00:1d10::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 900640893 (0x35aeb07d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa46a4f1143abe3adfc4b6835fa134e3df2cac34
Validity
Not Before: Jan 1 06:05:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=053c4ceb5e3857133f598f8a9fd35585524944b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1e:ab:6f:18:83:ba:ba:69:c9:0c:22:1e:0f:
be:4c:ad:cd:06:b8:b6:47:7d:5f:86:64:27:d6:80:
f8:22:ba:3e:43:f9:62:d8:d9:6f:f5:d7:00:ea:c8:
f2:00:9e:3e:c9:0f:0e:ad:2c:68:d5:43:9a:11:3f:
88:24:21:04:de:3f:46:10:b3:af:90:17:24:30:2d:
01:e0:36:f4:5c:43:66:ae:f1:19:39:9a:ec:25:53:
32:90:e2:c4:fa:57:25:de:ff:73:ad:03:84:5f:8d:
44:21:ba:2d:1c:09:15:63:e9:88:a3:c1:13:f8:9a:
33:77:05:58:3a:d7:15:1a:f6:c0:cb:a4:2e:09:42:
8a:36:39:af:0f:89:8e:d3:3b:ea:bd:0d:14:1e:60:
8b:7c:b0:83:9e:91:a9:e9:ba:29:8d:e5:b2:ba:eb:
6c:ab:36:25:ec:d3:2d:81:ae:29:d3:66:b9:a5:a2:
44:83:69:c6:a7:8c:e3:28:f3:84:c3:9e:71:07:dd:
00:e3:ec:7a:bb:06:ca:ec:f2:cb:5a:da:48:5d:94:
c6:9e:4f:58:b7:40:45:f4:32:e3:80:fe:bb:15:1c:
4e:52:e7:08:31:c2:92:a8:a9:ce:4b:6e:ca:41:67:
ad:8f:aa:b5:25:1d:8a:28:1c:26:07:8d:70:c8:e4:
0c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:3C:4C:EB:5E:38:57:13:3F:59:8F:8A:9F:D3:55:85:52:49:44:B6
X509v3 Authority Key Identifier:
keyid:FA:46:A4:F1:14:3A:BE:3A:DF:C4:B6:83:5F:A1:34:E3:DF:2C:AC:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-kak8RQ6vjrfxLaDX6E0498srDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/BTxM6144VxM_WY-Kn9NVhVJJRLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/1-kak8RQ6vjrfxLaDX6E0498srDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.20.128.0/20
178.21.120.0/21
IPv6:
2a00:1d10::/32
Signature Algorithm: sha256WithRSAEncryption
01:79:ac:24:28:19:06:8e:25:a5:6f:3a:1a:b3:52:71:ce:1a:
8d:5f:06:c9:51:c1:9f:0e:93:16:cd:fb:11:6a:c9:29:9b:6b:
0a:28:b8:81:a1:79:a5:30:1a:b1:ae:ab:67:d9:d7:2b:34:37:
8c:52:b0:0f:8b:67:fe:f5:86:05:d7:1c:86:fb:54:14:04:a1:
19:45:78:ec:5e:3d:fc:bf:2c:e1:cb:8e:a9:ea:9a:94:5c:89:
82:bb:c8:fd:7c:eb:bf:58:fb:d2:6e:5c:a4:cc:3c:9d:03:cb:
1a:7a:1c:9b:b2:97:1e:43:33:81:76:03:0b:11:35:20:7c:80:
9f:bb:86:b7:da:1a:24:ad:59:6d:7b:36:9a:4d:b9:b0:84:54:
19:33:fd:a8:5f:07:7f:a0:19:3a:b5:1b:e6:24:7c:98:76:b8:
a2:35:34:0a:4c:ea:b9:39:cc:e8:06:12:7b:96:65:1e:a0:48:
37:09:26:b3:e4:c9:9b:8b:a1:35:1f:58:92:d6:a6:73:05:3a:
d6:6e:e8:5e:5b:53:26:24:be:88:58:ac:8d:63:c3:15:47:73:
1a:1b:57:19:57:1a:43:19:d3:b7:6f:c5:01:92:16:f3:8a:d5:
e1:bb:92:dd:d8:d4:c5:ea:a1:6b:ab:40:4a:84:e1:44:35:ca:
55:f6:5c:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:59 2023 by rpki-client on console-fra.rpki-client.org