Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/0NqNK_Ui4Umwqb_5tpASaH2QqUE.roa
File: 0NqNK_Ui4Umwqb_5tpASaH2QqUE.roa (raw, json)
Hash identifier: X+8TgXxdxQD7QpJb2KmIH9M4CRMK9Iuyq/Z5cKUDmHE=
Subject key identifier: D0:DA:8D:2B:F5:22:E1:49:B0:A9:BF:F9:B6:90:12:68:7D:90:A9:41
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 08B3EB30
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/0NqNK_Ui4Umwqb_5tpASaH2QqUE.roa
Signing time: Thu 27 Jan 2022 11:37:25 +0000
ROA not before: Thu 27 Jan 2022 11:37:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 141677
IP address blocks: 46.3.164.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146008880 (0x8b3eb30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jan 27 11:37:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0da8d2bf522e149b0a9bff9b69012687d90a941
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f4:92:e8:0a:36:ec:b5:bb:e3:e2:75:33:bf:
19:43:a1:d6:74:b8:56:19:6b:dd:a4:39:10:55:c7:
56:05:f4:a2:8e:17:12:4e:31:2d:4a:16:68:30:71:
4c:1a:1a:77:27:92:db:b4:3b:11:8b:ed:c3:59:2a:
5f:6e:23:81:d4:c7:b5:4a:b2:a0:60:60:5e:4c:7c:
b9:43:46:20:7f:97:fe:98:46:af:13:00:b9:34:b1:
f6:a4:b3:62:c1:a1:eb:06:af:2a:65:71:d3:4e:c6:
05:03:1a:40:dc:55:6f:d5:5b:30:65:66:12:23:40:
ab:91:20:d5:ec:99:7f:26:83:8d:8e:62:b0:71:9f:
11:f8:46:75:8c:6b:4a:e9:26:8b:36:91:f9:1b:4e:
98:68:41:22:c5:d4:4e:b7:cd:be:c8:1a:e7:d5:e5:
62:a8:f7:0f:ed:6e:f8:80:4a:e9:dd:d6:26:30:82:
bf:4f:7f:5e:e7:54:30:64:b6:41:69:63:05:d6:15:
3c:dd:ef:23:46:bc:7c:ca:df:96:ce:f9:2d:fc:59:
7a:50:3f:36:f8:2b:15:86:df:8f:d9:ea:c1:1b:24:
13:ad:24:d3:a5:2f:de:e6:98:cf:6e:6a:eb:64:18:
5b:5d:14:4e:d2:e5:a3:e4:1f:64:f0:bc:a4:74:12:
68:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:DA:8D:2B:F5:22:E1:49:B0:A9:BF:F9:B6:90:12:68:7D:90:A9:41
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/0NqNK_Ui4Umwqb_5tpASaH2QqUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.164.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:13:00:32:78:d7:96:95:e7:4d:14:90:31:ed:1d:d4:0a:7f:
df:22:27:70:5c:a6:52:29:67:c9:7a:42:95:95:3f:07:aa:ce:
3f:66:43:a1:e4:07:8b:09:60:ef:c3:45:70:15:f4:ed:9d:c6:
ff:8b:fd:1e:0f:c7:19:56:86:c1:21:28:96:32:dc:3c:82:34:
52:14:f8:1c:52:a5:94:11:78:2c:fe:32:02:04:73:57:bf:74:
00:08:6b:58:0e:50:0d:05:e8:ed:b4:02:1b:73:81:3c:32:72:
b5:a2:8f:a8:00:fd:d9:21:73:bd:ce:56:8e:f4:2a:ee:0a:8f:
2e:3d:ad:d6:52:ac:30:db:f0:78:20:03:66:0c:7c:ce:48:6e:
a9:8d:53:dc:db:c3:ca:90:fa:fc:67:9b:45:ce:de:da:ba:9c:
a2:bc:a9:b1:25:23:4e:ec:01:92:f0:aa:4b:da:93:c2:88:e5:
a6:ad:be:a0:99:d1:98:64:a3:c3:a9:b1:c4:e4:73:68:89:69:
2d:20:52:3a:df:c1:51:b9:ad:26:95:63:cc:66:01:5b:77:c2:
b7:79:c8:b4:4f:96:86:f3:c0:a0:a3:91:a6:13:d7:37:11:5b:
3f:dc:67:58:93:eb:d6:80:4e:c8:73:54:ab:5a:43:e7:50:9b:
1a:81:7c:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org