Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/61LQvQfN0gxZuXrNChkBgh3anI0.roa
File: 61LQvQfN0gxZuXrNChkBgh3anI0.roa (raw, json)
Hash identifier: Bt9lSlyPKVccv2TN5kzBzqLcpCv0+HZ0+4IEIdtIBZs=
Subject key identifier: EB:52:D0:BD:07:CD:D2:0C:59:B9:7A:CD:0A:19:01:82:1D:DA:9C:8D
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 08C18E9E
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/61LQvQfN0gxZuXrNChkBgh3anI0.roa
Signing time: Mon 31 Jan 2022 18:49:46 +0000
ROA not before: Mon 31 Jan 2022 18:49:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399587
IP address blocks: 46.3.72.0/21 maxlen: 21
46.3.208.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146902686 (0x8c18e9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jan 31 18:49:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb52d0bd07cdd20c59b97acd0a1901821dda9c8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:44:e9:e5:21:ef:05:e5:fd:0d:2b:47:ca:e5:
d5:30:d6:2b:74:ab:94:df:d3:16:25:dd:f5:38:9c:
45:cc:10:a9:f8:6c:1b:52:68:c3:d5:67:97:a5:04:
03:ef:60:34:1f:39:1b:0b:92:cf:87:d4:fa:32:13:
60:c0:5f:fc:d9:d3:6d:84:94:ac:f5:bb:ef:5a:21:
bb:9c:b7:5d:e8:78:15:3b:00:6d:ab:0b:85:9c:07:
4c:f8:e0:24:fd:14:0d:0a:8e:43:44:91:0a:0f:99:
6a:6a:fe:aa:e8:4a:f1:dd:cc:5d:20:05:f4:6f:ff:
2f:2b:8d:ee:31:0e:9b:bc:76:c6:9e:7a:b5:c1:c2:
60:4c:70:23:ec:b9:67:6d:e4:a7:7a:c0:97:ff:3e:
57:d8:05:b7:65:a2:e0:b8:7b:72:99:c0:fb:a0:cf:
aa:df:81:10:02:ec:8a:0b:00:48:38:00:bd:17:c7:
84:01:e9:6e:89:90:e9:d2:42:bd:25:ed:60:ef:34:
90:5a:1e:c6:d1:59:c1:ac:40:f7:a4:0e:2f:c8:1f:
6b:67:0a:c4:4b:02:f4:d5:a6:e1:c5:00:6d:c3:7c:
88:5c:4f:6e:8c:4b:2f:bd:bd:d6:5e:29:73:9d:c6:
26:94:98:f8:7d:a6:71:84:43:9f:8f:5d:97:08:96:
09:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:52:D0:BD:07:CD:D2:0C:59:B9:7A:CD:0A:19:01:82:1D:DA:9C:8D
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/61LQvQfN0gxZuXrNChkBgh3anI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.72.0/21
46.3.208.0/21
Signature Algorithm: sha256WithRSAEncryption
33:49:34:36:c6:a5:db:1e:4c:d7:cd:e2:36:de:b1:7f:b2:be:
4c:28:7e:45:cf:cf:02:cb:31:a3:84:3f:77:bf:b6:26:89:17:
f8:00:a0:9e:53:03:fe:51:89:49:92:53:fa:c9:64:5f:f6:ff:
c5:b0:f3:2c:d5:43:90:ed:c2:65:a7:96:14:42:62:39:0e:8f:
1a:93:b9:9b:4e:06:53:5d:e8:c3:ca:98:30:0b:ca:e6:be:b7:
10:cd:be:5f:79:21:e3:47:59:f4:42:3f:f9:07:c2:12:c3:d5:
15:e3:37:9c:9b:a6:63:29:23:5f:7b:3c:26:8e:9a:26:48:9e:
52:4e:7d:b5:af:88:41:ee:ab:7d:4a:0d:9a:fb:be:0d:40:e1:
ba:f9:b7:0f:87:dc:cb:75:d3:eb:40:9b:5a:81:57:6c:c6:8b:
24:08:b9:04:d5:7c:64:d8:52:43:3b:4b:f7:5f:74:a9:b1:85:
74:95:d4:f9:04:6c:21:f8:76:fe:44:91:66:ee:c4:66:cb:11:
e7:19:96:a7:82:1e:16:8f:82:18:38:99:4a:18:5a:f0:72:31:
6a:97:13:48:6d:77:77:45:34:5e:57:e5:10:45:7c:9e:b8:13:
c4:8a:26:eb:7f:49:ba:30:9f:17:33:f5:a3:70:61:12:de:4b:
83:fe:e6:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org