Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/bYdBEbrAJiPh5kb8vYystoggsWQ.roa
File: bYdBEbrAJiPh5kb8vYystoggsWQ.roa (raw, json)
Hash identifier: 4iIJfzRTWkaXRL3yQMnBfN0RDw2qmOqDSaS2TT+ARuk=
Subject key identifier: 6D:87:41:11:BA:C0:26:23:E1:E6:46:FC:BD:8C:AC:B6:88:20:B1:64
Certificate issuer: /CN=3e1f32d0cfa7a86d30e7e11a73ebbd0b24dbf41f
Certificate serial: 053003DD
Authority key identifier: 3E:1F:32:D0:CF:A7:A8:6D:30:E7:E1:1A:73:EB:BD:0B:24:DB:F4:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ph8y0M-nqG0w5-Eac-u9CyTb9B8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/bYdBEbrAJiPh5kb8vYystoggsWQ.roa
Signing time: Sat 01 Jan 2022 14:54:42 +0000
ROA not before: Sat 01 Jan 2022 14:54:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 46.247.144.0/20 maxlen: 24
93.119.184.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87032797 (0x53003dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e1f32d0cfa7a86d30e7e11a73ebbd0b24dbf41f
Validity
Not Before: Jan 1 14:54:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d874111bac02623e1e646fcbd8cacb68820b164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:6a:ec:fa:21:2e:b7:26:6c:30:1d:d4:8b:a9:
22:77:b5:36:a3:f3:5d:8c:e9:8c:dd:ad:30:90:6c:
68:ae:2c:f9:c5:1c:df:11:90:2c:d7:a0:11:be:ac:
ad:57:64:52:44:8b:93:f1:52:86:5d:5e:43:47:4c:
c8:d8:83:66:7b:87:0e:1c:3a:ab:bd:66:01:ff:4a:
7a:57:91:26:28:14:00:1d:8a:00:4e:e2:99:1e:d3:
ce:e3:05:1b:3f:b5:50:68:e2:18:cb:30:70:b6:07:
92:c9:61:b2:db:7e:a1:68:1d:2b:02:21:e2:ca:a5:
52:3c:1b:e1:0e:d2:4a:76:e7:ec:ac:de:ec:d4:25:
58:b5:04:f5:13:a4:e2:6d:e4:93:f9:70:4d:1c:73:
6e:20:ab:6c:99:4f:3a:37:16:f0:da:65:f3:30:05:
74:ed:37:ce:94:52:30:3f:5b:ee:96:4b:73:a9:4b:
90:9b:ce:f7:2e:d5:31:25:69:09:bd:cc:d4:bb:68:
a6:89:74:eb:b8:54:49:c9:d4:fd:fe:0b:b3:27:54:
ed:d1:db:6b:02:22:1a:62:5b:ce:57:9c:1e:33:71:
10:83:37:47:71:1c:11:e8:0c:27:f9:83:72:db:dc:
38:8c:cb:4e:57:72:1b:17:88:c1:aa:8a:fc:e6:d1:
8c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:87:41:11:BA:C0:26:23:E1:E6:46:FC:BD:8C:AC:B6:88:20:B1:64
X509v3 Authority Key Identifier:
keyid:3E:1F:32:D0:CF:A7:A8:6D:30:E7:E1:1A:73:EB:BD:0B:24:DB:F4:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ph8y0M-nqG0w5-Eac-u9CyTb9B8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/bYdBEbrAJiPh5kb8vYystoggsWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/Ph8y0M-nqG0w5-Eac-u9CyTb9B8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.247.144.0/20
93.119.184.0/21
Signature Algorithm: sha256WithRSAEncryption
54:a6:9c:b7:ca:c3:0a:5a:7c:ee:02:ed:38:5a:d0:8f:09:88:
32:f2:37:5b:ca:c4:37:ff:59:a5:97:85:81:4b:98:2c:0f:41:
1b:79:c8:ad:81:3f:1d:f6:46:e3:16:1f:15:4e:e3:4a:b5:97:
45:60:6f:63:02:5b:9d:49:24:7d:35:b3:8d:33:0d:03:dc:e4:
6c:91:1e:5d:e8:21:84:49:dc:ef:68:ac:63:1b:bc:2d:a8:71:
ad:8a:3b:80:ad:f7:80:0b:89:b9:de:bc:d6:6f:75:e4:6d:8a:
54:8c:80:fc:85:ef:e2:78:ac:61:de:d5:a1:bc:5f:bf:5f:4f:
a6:90:c4:ce:3b:c0:e4:96:77:d6:00:76:59:eb:9d:a8:e6:43:
73:a9:98:95:d3:c9:df:f9:44:4b:f3:b9:05:fa:6a:6c:dd:1c:
78:ca:fd:76:64:ec:b3:75:32:27:d4:4a:87:69:72:df:c0:0d:
60:65:77:bc:d2:47:15:0a:99:c1:c6:2b:e9:ee:25:09:90:80:
67:19:b4:78:3d:b7:e6:fe:86:f7:aa:72:94:d7:a6:3a:71:f7:
83:9e:cf:2f:3e:aa:55:0f:d4:e3:45:0c:db:eb:3d:53:8e:ee:
d4:0e:5f:09:46:fe:3e:a8:7c:82:3b:45:89:57:e2:e0:e9:d7:
83:46:fb:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:04 2023 by rpki-client on console-fra.rpki-client.org