Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/iEGQctek5nl_8LKF7Wuq5HLsnh4.roa
File: iEGQctek5nl_8LKF7Wuq5HLsnh4.roa (raw, json)
Hash identifier: hTOLhnHZXXP2CwdSd3k6ozIzHCQ7vnF4hqWpx9jo328=
Subject key identifier: 88:41:90:72:D7:A4:E6:79:7F:F0:B2:85:ED:6B:AA:E4:72:EC:9E:1E
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 0A017E25
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/iEGQctek5nl_8LKF7Wuq5HLsnh4.roa
Signing time: Sun 05 Jun 2022 12:12:21 +0000
ROA not before: Sun 05 Jun 2022 12:12:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209218
IP address blocks: 46.232.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167869989 (0xa017e25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jun 5 12:12:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88419072d7a4e6797ff0b285ed6baae472ec9e1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c6:03:21:22:cb:a9:c9:77:e2:f5:69:03:62:
c7:61:ff:b0:52:ee:bb:bd:d2:02:10:6b:82:d2:10:
d4:45:cc:00:37:72:60:ef:df:ba:14:80:27:0e:45:
3b:61:88:8a:2d:a3:3d:4e:53:3e:c6:ae:1a:f6:a0:
51:bf:0b:0c:b1:8d:b2:7a:49:4a:0f:b1:5a:61:f2:
81:9e:0d:7d:11:a4:39:ac:c3:58:e0:8e:32:af:ee:
10:17:2b:e8:57:17:ce:5a:4e:ec:a5:c5:8b:fa:be:
27:06:f8:8b:7c:fd:43:0c:06:3c:1d:92:c6:c9:c2:
fc:8b:0c:d6:d6:2d:c9:f9:91:bb:13:89:f0:1e:89:
98:4e:65:d8:d2:7f:32:4d:28:e9:46:86:cd:c8:d5:
0e:62:54:1b:56:95:e1:9c:7d:e7:7a:89:2a:71:60:
06:80:a4:ec:58:1a:c0:c0:a2:8f:fd:62:68:2f:5c:
47:3b:62:16:e9:f4:79:ef:c2:7c:5e:01:1a:65:4d:
df:fa:33:b6:3f:6f:12:b4:79:a2:08:b4:30:b9:3b:
34:4d:af:84:89:40:e0:f1:b2:e1:94:3e:8f:59:02:
07:be:e8:5a:6b:d2:cc:03:88:50:a1:b3:bd:8a:d6:
ef:03:b2:45:ce:38:00:e5:93:43:b4:e1:4e:93:84:
e4:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:41:90:72:D7:A4:E6:79:7F:F0:B2:85:ED:6B:AA:E4:72:EC:9E:1E
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/iEGQctek5nl_8LKF7Wuq5HLsnh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.232.20.0/24
Signature Algorithm: sha256WithRSAEncryption
73:5a:97:5e:fa:20:a8:dc:66:c0:1d:11:17:c2:19:c2:15:b4:
98:8e:28:db:7e:0b:2f:36:03:c5:e3:77:8d:46:fe:68:6c:1e:
ab:26:dc:6a:7c:15:38:e4:1f:9b:1a:59:91:eb:04:83:9f:c4:
e1:c5:2e:4d:aa:a7:91:b1:7c:56:8f:63:33:86:d5:41:2a:8e:
44:60:6b:f0:ea:77:0b:0e:4c:17:e2:ed:3c:4d:0f:eb:db:f2:
2c:ca:c0:ac:9e:85:d6:22:3e:1f:92:cc:48:ad:32:e5:60:bc:
73:c2:79:c2:9a:b6:32:bb:83:38:81:87:06:f9:17:fd:e2:b3:
f3:e7:d7:6f:76:19:19:7d:5f:2b:a5:0f:61:e6:53:d5:b3:e1:
c4:a7:56:2b:18:42:81:b9:ee:9f:d5:0c:26:38:18:27:eb:eb:
8f:bd:0b:de:3a:93:c9:bf:83:79:08:e8:8d:0d:e6:ca:c8:9a:
57:19:74:01:99:f6:13:33:df:25:71:95:7f:11:7f:b9:7f:db:
93:a3:b2:6c:5f:f8:7d:47:e9:4c:2b:ea:32:11:55:fb:70:be:
e7:10:cb:09:fd:d6:06:a4:81:57:42:8a:a8:eb:80:b3:00:98:
3e:f8:d4:c4:73:71:69:38:48:42:2e:98:ec:cd:fe:a1:8c:23:
fe:e5:4c:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-fra.rpki-client.org