Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/yDcLZFlKWQrENybTqAThsIORPLc.roa
File: yDcLZFlKWQrENybTqAThsIORPLc.roa (raw, json)
Hash identifier: vnIgoK0NN5FwwCawrZu98iVpRLXODSwM3ZldVGwJcWE=
Subject key identifier: C8:37:0B:64:59:4A:59:0A:C4:37:26:D3:A8:04:E1:B0:83:91:3C:B7
Certificate issuer: /CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Certificate serial: 0F497069
Authority key identifier: 6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/yDcLZFlKWQrENybTqAThsIORPLc.roa
Signing time: Sat 01 Jan 2022 12:58:27 +0000
ROA not before: Sat 01 Jan 2022 12:58:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49738
IP address blocks: 46.233.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 256471145 (0xf497069)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Validity
Not Before: Jan 1 12:58:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8370b64594a590ac43726d3a804e1b083913cb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:0a:2e:ab:d3:e0:07:60:79:32:11:b9:b2:e1:
69:f4:42:c3:28:d6:a8:56:f5:c8:58:53:77:b9:a3:
ca:87:74:3d:ec:6f:c4:a9:77:3b:08:74:44:7d:e4:
19:8f:ff:d1:0f:9c:bf:30:fb:b6:9a:a8:e3:6e:32:
be:89:c6:4a:61:be:bc:cf:49:b0:df:73:54:6e:63:
24:d5:88:ad:85:b9:7d:8e:c8:45:b3:12:bd:85:62:
1c:7b:bd:b6:bc:77:0a:f4:5f:a6:7b:c7:3a:1f:e3:
71:5e:be:ee:a7:f9:82:e5:20:6c:f6:1b:06:09:51:
37:16:fc:c2:41:51:56:a8:a4:2e:af:c2:f0:09:c8:
3c:8e:78:f1:b4:73:36:5e:4c:8b:0f:a7:37:65:59:
82:8c:61:2f:c7:2e:dc:01:be:7a:d8:f4:64:cf:dc:
fd:d6:9f:c4:95:84:1d:98:db:0e:81:f4:cf:02:b0:
c4:25:94:e4:8d:82:d7:72:77:d6:79:fd:48:c6:ca:
f7:9e:c8:0a:50:08:7a:0b:72:47:d5:eb:46:93:58:
94:82:9f:bd:cd:b8:e5:fc:9f:4a:2d:ec:53:e1:6c:
65:6f:c5:fc:71:6f:a5:3b:16:da:68:e8:7f:ea:a1:
78:bd:1b:78:fa:73:d4:eb:4b:ff:7e:1f:a9:ac:2d:
ac:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:37:0B:64:59:4A:59:0A:C4:37:26:D3:A8:04:E1:B0:83:91:3C:B7
X509v3 Authority Key Identifier:
keyid:6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/yDcLZFlKWQrENybTqAThsIORPLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/b8UNDUIGe3arGi6OUz_4SbZdVvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.233.39.0/24
Signature Algorithm: sha256WithRSAEncryption
11:6a:2d:89:22:e2:fa:53:ce:7a:d0:36:a1:b6:62:0b:12:61:
4d:ca:71:37:dc:d5:11:03:70:8d:fd:72:63:09:7b:81:bf:ee:
4d:bb:d2:4a:19:0f:da:99:a3:26:77:22:f0:50:5b:49:0f:45:
0f:72:c0:31:0a:89:7c:a7:ec:6d:0c:5d:37:e3:6d:7e:e8:d5:
b1:08:dd:d5:39:99:31:0a:b4:96:89:bb:05:eb:65:a2:f1:d3:
29:49:66:ce:41:bd:43:33:1f:7a:d3:6b:2b:13:90:a7:05:04:
ef:2d:1a:4d:58:32:ab:70:d5:d3:bd:a8:ab:d9:41:da:a8:45:
f2:17:4f:60:f2:16:f3:a5:28:2b:ed:d0:aa:a9:d0:f6:51:0b:
92:03:47:35:92:cb:dd:87:b9:ba:76:c2:2e:51:a1:9f:c0:41:
19:c8:75:5d:71:ff:72:be:1e:d2:62:d0:5b:58:33:6a:fb:d1:
98:7a:a9:fb:d5:43:63:6c:be:b1:67:52:64:a9:5f:3d:ad:19:
28:79:b2:7f:7a:a3:34:f9:ab:dd:56:2e:e7:bd:07:4b:c1:dc:
ce:dc:9f:00:d3:26:14:8e:52:29:24:6b:07:95:87:53:fe:3a:
4f:2d:b9:5c:8f:82:f7:3b:3a:40:55:2e:1d:a6:e7:51:c5:63:
e7:68:e5:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:10 2024 by rpki-client on console-ams.rpki-client.org