Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Q7KZSqdrpIjM6V51FWc4tE8M3Aw.roa
File: Q7KZSqdrpIjM6V51FWc4tE8M3Aw.roa (raw, json)
Hash identifier: h5PJkMgIt3dmwNYS0naBPlIJBPyZT6fr4v2e7NzigG0=
Subject key identifier: 43:B2:99:4A:A7:6B:A4:88:CC:E9:5E:75:15:67:38:B4:4F:0C:DC:0C
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 090BB213
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Q7KZSqdrpIjM6V51FWc4tE8M3Aw.roa
Signing time: Wed 02 Mar 2022 10:37:42 +0000
ROA not before: Wed 02 Mar 2022 10:37:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206817
IP address blocks: 46.232.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151761427 (0x90bb213)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Mar 2 10:37:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43b2994aa76ba488cce95e75156738b44f0cdc0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0f:27:cd:7d:3d:d2:a2:e4:02:c0:5a:e2:47:
3c:32:fb:49:d7:c2:2e:04:5e:99:92:6e:e9:e4:63:
05:c9:fb:50:8f:79:00:26:e4:ce:eb:d8:21:6e:76:
a7:2a:45:ac:fb:89:fc:f6:05:e6:0f:62:d3:f9:be:
4e:45:56:f7:43:46:bd:04:09:43:b8:3c:92:f8:f0:
fa:0e:5b:7a:1c:db:6e:0d:51:94:a3:f4:ba:97:54:
dc:47:c2:75:e8:0b:6c:68:41:57:29:3c:87:3c:3c:
f7:7f:85:9f:26:4c:e7:10:8a:58:12:2a:bd:88:80:
09:70:52:06:07:57:87:94:1f:6e:de:87:30:3a:0d:
bd:50:f5:92:48:86:c4:8d:d9:20:a5:4b:26:8d:37:
fe:81:92:f5:0a:26:0c:6e:34:8c:1d:a1:3f:d8:e0:
96:06:5b:e7:8d:07:e0:f4:d9:08:87:04:da:e8:d0:
a8:31:3e:c4:20:e8:5c:49:d5:72:f7:75:0d:f1:23:
12:49:c1:63:c0:d0:e7:80:e3:71:f2:e8:8f:f9:fb:
c3:93:70:e9:f4:11:09:0d:82:95:55:b8:4b:d2:44:
f8:32:f7:fc:51:6f:e1:93:9c:82:f3:17:e1:69:2b:
8b:ec:1c:2a:ae:72:45:38:77:d6:ff:68:a7:85:e6:
27:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:B2:99:4A:A7:6B:A4:88:CC:E9:5E:75:15:67:38:B4:4F:0C:DC:0C
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Q7KZSqdrpIjM6V51FWc4tE8M3Aw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.232.1.0/24
Signature Algorithm: sha256WithRSAEncryption
10:3b:c0:19:0c:fc:99:a1:61:9c:b2:a4:1e:a0:7a:e3:a3:06:
14:05:6b:72:27:29:c9:4a:0b:5e:c2:40:af:b4:f4:fd:87:c3:
0c:8b:60:bb:9a:22:06:43:b7:2a:98:c0:59:fa:df:65:38:f4:
1f:1a:b8:b5:cc:4c:f6:99:55:24:16:4b:39:e9:69:86:c5:a0:
e8:b7:00:5e:ab:71:41:aa:ad:a9:b2:9c:5d:02:94:37:b0:e6:
0f:39:75:6e:63:0f:d2:29:16:1e:f6:7e:d2:6a:ad:27:a0:a5:
4b:61:4b:64:ae:ca:22:da:1d:d3:fa:0d:11:bb:72:44:1c:20:
67:57:26:c0:93:38:90:b9:e3:cc:0c:e7:52:3f:35:01:68:95:
0e:76:1d:80:ef:11:0b:17:cb:19:ed:57:b2:5a:c0:46:81:de:
7d:2c:db:a9:5a:64:e9:56:28:45:87:15:bd:55:af:80:56:ab:
3f:ff:f2:b0:d1:4f:4f:fa:7f:8e:76:b8:6b:6d:f3:6e:bc:f1:
9b:ff:d0:77:49:21:0d:b0:f9:c8:65:6d:cf:d4:f7:b6:25:8c:
11:b3:29:95:88:07:ab:49:50:21:0a:b0:ea:0a:89:b8:f5:ed:
16:c7:a1:d5:b0:2d:e7:7d:d3:7e:ac:83:56:38:53:b3:30:e1:
41:72:72:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-fra.rpki-client.org