Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/dqKkKXX8ZmQg9PtWK711bVetJko.roa
File: dqKkKXX8ZmQg9PtWK711bVetJko.roa (raw, json)
Hash identifier: 32d9bGsqG+H9BDgdhwff1WLPC0zldcdy8dijj6cDiOY=
Subject key identifier: 76:A2:A4:29:75:FC:66:64:20:F4:FB:56:2B:BD:75:6D:57:AD:26:4A
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018374924F44493197C31D17F6E07C0A0ED7
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/dqKkKXX8ZmQg9PtWK711bVetJko.roa
Signing time: Sun 25 Sep 2022 12:14:48 +0000
ROA not before: Sun 25 Sep 2022 12:14:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1040
IP address blocks: 46.3.96.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:74:92:4f:44:49:31:97:c3:1d:17:f6:e0:7c:0a:0e:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Sep 25 12:14:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76a2a42975fc666420f4fb562bbd756d57ad264a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:1f:02:2b:c6:05:24:30:57:62:28:c3:60:a7:
20:77:e3:01:ab:b1:a3:f5:5c:7d:d1:1d:81:c1:ee:
e1:36:dd:72:37:d3:f7:b9:94:08:b6:aa:d9:d0:aa:
47:d6:33:0a:ec:49:a1:e6:7e:6c:ec:19:a9:0c:ff:
3c:eb:c7:75:43:e9:53:d6:37:3a:12:ce:a4:9c:79:
cf:dc:20:f0:e2:d2:1c:42:5b:03:a2:3d:be:3f:3f:
09:f8:59:ef:d8:5b:56:92:9b:08:2b:7d:35:85:9b:
db:99:21:47:89:cf:ff:7d:24:87:99:9e:15:6d:e4:
1a:5e:10:a5:79:20:da:2b:8d:44:f4:48:fc:a3:66:
f5:d9:2a:1d:50:06:86:6d:9c:75:8d:43:9d:e2:d7:
a6:1c:5b:06:50:4e:d8:76:79:85:8d:51:08:4b:f0:
fd:f8:57:11:33:fe:aa:4e:26:a9:56:7a:f1:a6:9b:
40:2f:b6:8c:5c:f4:79:77:b5:b7:8f:5d:d1:c2:18:
2e:9f:9d:06:6d:fe:7d:22:df:c4:5c:1f:d8:6e:a7:
85:ae:ac:a4:d4:b2:19:49:26:47:0f:ce:72:96:a4:
df:dc:3f:14:94:bf:48:c7:da:d1:0b:08:e3:af:6d:
ac:32:02:cb:84:24:c8:ee:ef:52:af:40:f3:2a:40:
e8:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:A2:A4:29:75:FC:66:64:20:F4:FB:56:2B:BD:75:6D:57:AD:26:4A
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/dqKkKXX8ZmQg9PtWK711bVetJko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.96.0/20
Signature Algorithm: sha256WithRSAEncryption
04:3f:39:8a:c2:c6:ce:20:12:65:b2:5f:43:63:16:57:13:95:
ed:26:9a:1f:f5:ee:2e:e0:a9:29:a0:83:9f:47:e3:f1:f8:28:
04:c6:e6:ad:fd:e4:c2:e5:7a:79:7a:f5:c2:f5:3a:83:39:85:
b9:89:f2:5e:6b:76:56:dc:dd:63:c2:c2:64:37:17:32:1b:27:
4d:d1:dc:f1:62:db:13:21:b5:4a:39:d4:30:fa:91:73:f2:e4:
78:b5:d6:22:00:18:b6:d7:92:51:1b:75:27:69:e2:3a:9c:60:
75:1a:cf:86:11:5e:0d:63:6d:93:ab:b8:9f:52:40:44:62:b7:
6e:7a:1b:b0:39:5c:a7:fc:d6:b3:ae:0a:7f:9b:1b:af:5b:6e:
81:0c:3b:ac:71:14:74:cd:60:cb:70:72:33:ef:c5:47:63:36:
ac:61:bf:02:d1:b7:cb:88:7b:c0:b1:5a:d3:93:7a:43:31:47:
32:50:f7:91:ad:dd:88:48:a6:0a:d9:a3:2c:17:34:3d:56:52:
42:ab:18:0e:43:b0:66:84:8a:48:3f:0c:8c:4f:a2:98:75:c1:
d4:d3:7d:5f:a3:8c:72:f1:35:6a:f9:a7:3b:0e:16:e4:19:c9:
c3:34:00:bd:ac:4f:d2:0e:58:25:1c:ff:fe:ac:c4:93:35:20:
c5:41:fe:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org