Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/0EZKjveQUAL3bpV3L9OX2UW4in8.roa
File: 0EZKjveQUAL3bpV3L9OX2UW4in8.roa (raw, json)
Hash identifier: 1ql1sZ7qNzNXFTmBSDkgZle34lob+zxDl049fcKmA5k=
Subject key identifier: D0:46:4A:8E:F7:90:50:02:F7:6E:95:77:2F:D3:97:D9:45:B8:8A:7F
Certificate issuer: /CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Certificate serial: 0F4571B4
Authority key identifier: 6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/0EZKjveQUAL3bpV3L9OX2UW4in8.roa
Signing time: Sat 01 Jan 2022 12:58:25 +0000
ROA not before: Sat 01 Jan 2022 12:58:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41339
IP address blocks: 46.233.56.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 256209332 (0xf4571b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Validity
Not Before: Jan 1 12:58:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0464a8ef7905002f76e95772fd397d945b88a7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:9a:70:0d:a4:7a:d4:4d:e0:f2:69:43:bd:9f:
2d:64:c1:87:db:a9:23:53:64:32:ad:ef:4b:e3:73:
a0:42:3f:86:02:27:4e:6d:3e:ea:a5:dc:10:d1:b6:
15:9b:16:ee:13:e2:bb:85:6b:df:a2:67:16:48:26:
ae:ce:41:c1:a8:81:27:72:be:0a:be:6b:04:9c:33:
e8:51:2a:d9:e0:77:6a:3e:93:fb:d9:b2:c8:b8:7a:
4e:6f:3f:bd:4c:b3:58:2a:cf:b6:24:31:e6:9a:25:
1b:d0:d3:ae:ad:69:b9:c3:8b:41:95:fc:38:77:68:
59:e4:18:34:98:94:55:eb:1b:68:ea:24:58:cb:d3:
43:22:0e:61:13:6f:e7:70:c7:3e:dd:a2:38:03:fa:
29:00:3c:93:d3:a4:27:c8:25:96:f5:6d:8b:a1:55:
38:a0:74:35:b9:af:98:f8:2e:f0:7c:90:09:6a:02:
4f:3e:3d:bd:b3:b8:07:68:17:7a:be:7b:6c:03:01:
c4:bb:55:01:00:e9:f6:2d:9b:97:fc:e2:03:e9:a8:
fc:93:4c:e4:ae:6c:af:0b:61:70:19:b7:99:3b:40:
99:f2:aa:f1:f1:0f:9d:85:70:b9:b2:7e:c7:d2:cf:
b8:7e:e1:3e:3b:2e:33:00:e7:99:ea:cc:62:f1:f2:
7c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:46:4A:8E:F7:90:50:02:F7:6E:95:77:2F:D3:97:D9:45:B8:8A:7F
X509v3 Authority Key Identifier:
keyid:6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/0EZKjveQUAL3bpV3L9OX2UW4in8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/b8UNDUIGe3arGi6OUz_4SbZdVvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.233.56.0/21
Signature Algorithm: sha256WithRSAEncryption
27:9d:e3:31:68:55:37:6d:fd:bd:7e:6a:ef:be:a5:99:70:12:
af:8b:f7:72:05:3c:fc:38:bb:1c:ca:14:cc:7b:e3:26:46:c9:
0b:61:4e:c9:50:e6:8c:d2:d6:e9:19:70:70:cd:c1:98:f6:78:
4a:85:ff:83:05:a2:3a:b0:52:5b:b3:53:dd:cc:0a:fd:bf:80:
4f:0a:06:5e:76:58:ba:6d:34:0f:2c:30:0e:5c:8e:b1:ab:ac:
1f:19:81:06:d1:1e:82:6f:c2:94:eb:64:21:a9:bf:b1:aa:0b:
35:0b:b2:eb:a2:bd:55:dd:89:16:d2:1b:72:95:95:52:b8:83:
67:23:52:c4:2b:72:ff:91:bb:74:67:b4:03:4d:20:e5:0b:26:
d6:4a:a1:c1:e8:18:74:e5:d0:84:89:16:9b:a9:95:66:2b:a2:
16:8f:dc:54:68:94:00:ef:c0:12:61:b4:12:1a:84:07:76:3f:
4f:5d:8c:76:59:df:95:7c:68:f5:05:de:ea:7d:ab:18:e3:2e:
b7:91:69:29:ce:de:b1:05:90:ae:3f:ca:41:15:64:b7:41:a1:
50:08:13:e9:75:f4:e0:38:b7:28:83:51:2f:6e:ac:e3:5a:8e:
c2:4b:51:cb:e1:55:41:92:5c:d9:82:d8:98:70:32:d3:15:35:
f5:49:eb:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:37 2024 by rpki-client on console-fra.rpki-client.org