Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/591dQfUlLL5TktwhuzdRxt0uvRE.roa
File: 591dQfUlLL5TktwhuzdRxt0uvRE.roa (raw, json)
Hash identifier: L5lhcAf6fuHT6LS6dmRB+Tnjj13P16TNQqpWNHqi6CQ=
Subject key identifier: E7:DD:5D:41:F5:25:2C:BE:53:92:DC:21:BB:37:51:C6:DD:2E:BD:11
Certificate issuer: /CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Certificate serial: 0F48842A
Authority key identifier: 6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/591dQfUlLL5TktwhuzdRxt0uvRE.roa
Signing time: Sat 01 Jan 2022 12:58:26 +0000
ROA not before: Sat 01 Jan 2022 12:58:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44077
IP address blocks: 46.233.40.0/21 maxlen: 24
46.233.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 256410666 (0xf48842a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Validity
Not Before: Jan 1 12:58:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7dd5d41f5252cbe5392dc21bb3751c6dd2ebd11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:55:bd:d2:39:57:95:ed:45:1e:fa:2a:00:67:
ee:9c:1c:b0:f9:40:97:83:7d:87:76:aa:25:ab:80:
8e:40:94:90:11:10:aa:fb:56:3d:c8:e0:cb:90:a5:
93:fa:ee:1b:70:0c:c9:bf:a3:db:57:b8:14:5e:12:
2a:68:36:62:20:64:38:90:4e:a4:c0:0b:78:9e:7e:
ca:d6:c2:6c:4f:73:66:e0:f7:5d:42:a3:19:53:60:
9b:51:85:60:60:67:65:19:dc:1e:53:21:78:c8:54:
12:82:03:b5:a0:19:da:7a:0a:0e:bd:71:0f:d3:4f:
5c:88:1a:e7:6b:1a:ee:70:0c:35:66:7f:88:28:8b:
36:68:8b:21:60:0b:8d:27:2d:ec:eb:76:f8:a8:72:
b4:31:b6:32:0a:00:ef:ad:0c:3a:90:97:fe:e3:13:
a0:ab:77:ef:8d:e4:a1:c0:cb:00:2e:9b:3c:a9:6d:
cd:a9:1c:01:df:ab:a3:f7:d6:8c:0b:8d:01:50:79:
74:22:9b:9f:6c:ac:70:75:11:58:dc:0c:84:ab:94:
9c:c8:7c:45:17:91:54:09:a5:2f:ba:3c:b3:4b:9c:
f6:d4:cd:f7:93:c9:c8:99:fc:c3:28:e9:64:4c:ee:
48:0b:27:14:9a:0a:e6:8e:b3:51:f4:02:1c:44:f2:
16:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:DD:5D:41:F5:25:2C:BE:53:92:DC:21:BB:37:51:C6:DD:2E:BD:11
X509v3 Authority Key Identifier:
keyid:6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/591dQfUlLL5TktwhuzdRxt0uvRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/b8UNDUIGe3arGi6OUz_4SbZdVvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.233.40.0/21
Signature Algorithm: sha256WithRSAEncryption
65:f3:00:cf:14:52:e7:ea:0c:1e:6e:1b:ba:a0:6e:2e:f0:14:
33:f3:e5:77:72:59:6d:3a:66:4e:7a:44:8e:c7:28:76:03:d2:
04:8a:6e:ac:71:19:44:0e:3c:27:a9:1c:36:7e:07:bd:ed:bb:
3b:29:f2:33:eb:a6:58:24:a1:a6:f5:fb:76:1c:37:84:58:a9:
06:60:ae:ff:da:95:3c:4e:d0:e1:cd:ed:05:ce:ea:e9:f0:3b:
e4:95:54:e5:01:ec:92:68:d4:eb:5c:a8:5b:d5:36:1f:b4:21:
a6:a9:0d:ba:31:5d:d9:d7:c9:94:12:42:e5:a8:d0:6d:e8:c0:
4d:03:96:1c:3a:13:cf:dc:7a:4f:45:01:4e:5d:f7:d2:82:1b:
c7:00:66:6e:2f:ee:07:1e:e7:cd:9e:7c:25:e9:c9:7f:c1:b4:
7d:1e:39:9d:7a:12:55:8e:9b:36:1c:6e:d4:20:0a:31:93:62:
6e:79:69:9d:72:9d:be:ed:ad:c5:e0:de:13:c2:db:a7:6b:95:
ef:32:99:da:02:50:a7:8a:9e:0a:cc:ea:71:8a:8a:4f:b4:62:
74:54:1f:75:ba:d6:af:b1:32:0a:8c:3d:60:dd:a3:d0:6b:e8:
7e:65:54:40:4e:b5:6e:35:ae:8b:7a:49:23:e4:d2:b6:11:2a:
d7:38:b1:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:05 2023 by rpki-client on console-fra.rpki-client.org