Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/bezk2BrUSZIkmDqWjEqTUSTXIE0.roa
File: bezk2BrUSZIkmDqWjEqTUSTXIE0.roa (raw, json)
Hash identifier: aFc5ZEi1P5X1caL6iVSG3LcClWl5AHWRXHiNF2Lp8L4=
Subject key identifier: 6D:EC:E4:D8:1A:D4:49:92:24:98:3A:96:8C:4A:93:51:24:D7:20:4D
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018374924DC4005CC8E49C0FA40284DD6A03
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/bezk2BrUSZIkmDqWjEqTUSTXIE0.roa
Signing time: Sun 25 Sep 2022 12:14:48 +0000
ROA not before: Sun 25 Sep 2022 12:14:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1001
IP address blocks: 46.3.96.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:74:92:4d:c4:00:5c:c8:e4:9c:0f:a4:02:84:dd:6a:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Sep 25 12:14:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6dece4d81ad4499224983a968c4a935124d7204d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:14:aa:97:71:bb:cf:73:54:f3:d3:97:aa:81:
a3:fe:fa:b3:24:b8:51:2c:9f:56:08:e5:6f:16:34:
58:1d:2b:f0:6a:b0:19:47:b0:d4:55:d1:1d:54:47:
18:b0:33:9f:a1:17:a8:07:fa:9f:0e:1e:e6:7b:15:
e2:cf:20:86:ce:ee:80:b2:c9:a2:95:ab:31:9f:94:
65:c6:cd:5c:e7:69:fc:a7:c7:73:d9:67:3a:4a:1f:
42:3e:0b:7e:70:8c:89:5c:52:7a:80:3e:cd:62:30:
09:cc:17:5c:41:e2:70:cb:9f:6c:20:17:ee:fc:60:
6b:e6:04:a3:be:5c:88:f7:35:75:60:6a:74:5c:33:
40:fb:e3:6e:54:b9:8b:62:4b:1b:7f:d0:22:3c:17:
fc:cd:41:a1:bf:94:da:0c:7a:51:39:d6:b8:02:12:
5f:d9:1d:39:18:2d:31:7d:c9:67:91:c6:01:28:3c:
3a:b1:75:79:20:e9:3e:b3:aa:65:8d:57:41:68:7b:
4c:6a:3a:aa:de:5e:56:13:2b:7b:6a:c1:53:6d:41:
1f:8c:d2:fb:2b:68:3c:0f:ed:68:bb:7d:7f:05:3f:
3b:bb:7c:f1:53:55:22:98:d9:7c:ae:fd:ce:59:14:
27:64:64:dd:db:1f:bb:c0:b0:f2:a4:e7:22:34:c3:
3e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:EC:E4:D8:1A:D4:49:92:24:98:3A:96:8C:4A:93:51:24:D7:20:4D
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/bezk2BrUSZIkmDqWjEqTUSTXIE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.96.0/20
Signature Algorithm: sha256WithRSAEncryption
4b:62:45:b0:a6:87:df:59:32:5b:1d:b5:da:41:bb:fc:0d:1f:
2f:96:64:2b:c1:b6:6c:22:3a:7c:06:76:ad:36:4e:dd:81:66:
22:f5:ed:d5:55:51:f5:d7:fe:77:2b:50:7a:23:41:08:47:dd:
4b:5a:3e:9c:59:5f:80:52:78:65:e4:47:16:f7:45:5b:12:d8:
33:ac:49:08:4a:40:73:9f:97:d0:ac:53:94:75:c1:2d:67:4c:
13:fa:27:fe:6e:62:2e:1b:a6:fd:e4:55:c5:d3:42:ef:5b:44:
d2:10:46:a1:9f:60:32:eb:3e:7d:e9:d1:28:8b:71:9c:4b:51:
27:34:e8:79:67:2b:57:21:90:2d:fc:7a:99:ff:6e:2d:2f:64:
f2:98:79:f9:dc:92:6e:3d:43:72:f7:09:87:32:28:25:70:b0:
f7:d5:9e:be:d8:16:53:0f:4f:6b:e5:1e:e5:c8:ac:36:20:bd:
47:0e:06:99:b4:05:fa:c3:70:d4:c0:89:55:29:b2:20:a3:af:
98:f6:68:46:f5:fc:62:75:70:dc:9c:c1:4a:6e:e7:6c:9a:ed:
55:d0:b4:77:aa:40:cb:f9:08:c6:2d:81:be:44:f0:da:62:b2:
ff:86:c9:c8:a7:50:b7:7c:5b:6e:22:6b:5b:ad:44:a7:a3:c3:
e4:48:4b:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-fra.rpki-client.org