Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/cbPDqI8gCCKR070XILZkTafUgzU.roa
File: cbPDqI8gCCKR070XILZkTafUgzU.roa (raw, json)
Hash identifier: nZ/70F1Zbmw0YLfnXF0XfN7K25OsUADYV2dFM+QcvNo=
Subject key identifier: 71:B3:C3:A8:8F:20:08:22:91:D3:BD:17:20:B6:64:4D:A7:D4:83:35
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 08B41486
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/cbPDqI8gCCKR070XILZkTafUgzU.roa
Signing time: Thu 27 Jan 2022 11:37:25 +0000
ROA not before: Thu 27 Jan 2022 11:37:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210542
IP address blocks: 46.3.164.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146019462 (0x8b41486)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jan 27 11:37:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71b3c3a88f20082291d3bd1720b6644da7d48335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b7:c2:39:e1:cf:d5:42:c4:f2:24:d3:f9:c0:
de:18:6b:ab:3d:ba:80:52:17:0d:96:e7:f1:92:d8:
0f:6f:ca:f0:92:10:4c:f9:04:05:29:93:d3:66:48:
da:00:d2:a3:ea:f9:bd:03:c9:86:77:6d:93:db:09:
d7:cd:ee:45:48:2a:19:97:8e:45:85:82:9e:d9:70:
34:2d:0a:6e:f7:84:e3:53:5c:b7:d5:bd:73:79:cc:
6c:cb:29:92:3c:c3:ce:20:45:b5:46:12:71:a8:e1:
f2:21:52:1d:2f:d5:48:c2:cf:75:84:97:1c:e1:f5:
31:34:f1:70:30:cc:8d:2e:22:23:1d:87:94:9c:09:
64:aa:78:0e:cc:64:67:3e:01:7a:61:24:7f:ff:c2:
6e:26:86:7e:d6:ff:42:20:fa:63:96:30:2c:5e:22:
f7:ef:4b:92:e8:d2:65:c7:82:d7:65:31:da:3a:1d:
13:39:97:ee:e4:83:c1:fa:fc:0f:9f:93:a1:dc:0a:
b4:1f:ce:2e:8d:34:1c:cf:a2:b3:53:77:98:44:0b:
ab:71:59:35:a0:94:0f:5d:81:86:41:db:f9:9a:e2:
8d:c5:5c:28:fc:07:d9:a7:7e:02:48:6f:b9:70:cf:
d0:d4:ca:58:9a:b4:5e:22:5c:a2:8b:c6:73:fd:9d:
51:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:B3:C3:A8:8F:20:08:22:91:D3:BD:17:20:B6:64:4D:A7:D4:83:35
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/cbPDqI8gCCKR070XILZkTafUgzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.164.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:3b:d8:7b:bb:a4:1f:4e:6a:d0:44:fc:da:df:0d:c4:8a:9f:
c6:e3:90:2d:ce:28:df:43:74:22:8f:a9:3a:b8:fa:14:e5:24:
13:a2:cc:be:e2:ee:f0:68:1c:75:39:82:b6:b9:49:f2:80:54:
6a:f9:9b:3c:b5:22:f5:42:13:5b:71:4c:c1:8c:dc:90:7c:c4:
74:25:61:b6:8d:38:6d:8b:4d:c5:5c:c0:ae:e6:8f:b7:fe:2b:
53:32:24:04:c9:85:32:c2:17:ea:79:6d:a8:07:11:3f:ad:54:
21:f8:8c:4b:bf:06:1a:b8:85:be:a5:0d:a9:b2:b7:f3:98:dd:
98:c8:87:1f:3a:27:2c:ae:0c:7f:3e:7c:ee:64:aa:a4:24:7f:
15:81:02:b3:0b:1e:dd:29:7f:1e:c5:24:c2:5d:70:b9:c2:b7:
74:41:fd:ab:c7:d9:6e:a2:47:6e:9e:36:7d:01:42:c5:5c:79:
28:8b:1c:4e:9c:0b:41:65:d0:0c:b8:32:6b:57:fc:28:6a:a7:
0d:c2:0a:1c:1c:13:58:c4:0e:24:0d:2b:3e:fb:03:21:05:f0:
73:49:76:84:15:7c:55:9d:cd:8f:18:91:ca:9c:9c:31:27:dd:
80:f7:09:13:44:1f:7f:f1:72:23:ff:01:0f:7a:66:ba:38:b4:
e9:6f:34:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-fra.rpki-client.org