Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/leLd8ezhpo2cdIsXn8_dK5MhV38.roa
File: leLd8ezhpo2cdIsXn8_dK5MhV38.roa (raw, json)
Hash identifier: 0OS7yVqJADZ5wdTjz0eWlxLFlzJvvNjPEtgPTEeB060=
Subject key identifier: 95:E2:DD:F1:EC:E1:A6:8D:9C:74:8B:17:9F:CF:DD:2B:93:21:57:7F
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 0183E04AB85E1D021799DA1E1EDE2C12D684
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/leLd8ezhpo2cdIsXn8_dK5MhV38.roa
Signing time: Sun 16 Oct 2022 10:15:36 +0000
ROA not before: Sun 16 Oct 2022 10:15:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35251
IP address blocks: 46.3.112.0/23 maxlen: 24
46.3.114.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e0:4a:b8:5e:1d:02:17:99:da:1e:1e:de:2c:12:d6:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Oct 16 10:15:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95e2ddf1ece1a68d9c748b179fcfdd2b9321577f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:be:08:d7:32:fe:9b:47:e9:46:c2:1e:29:2e:
3f:44:79:88:74:f8:84:9b:4c:70:fa:98:08:c7:fb:
7d:86:07:54:f6:ef:46:2f:58:a9:dd:62:da:fa:14:
48:43:ef:c9:b4:7d:8c:92:aa:ec:aa:aa:58:fd:a8:
d1:72:45:b9:d0:63:b1:34:ea:ce:5a:dd:ef:02:01:
bc:48:04:1b:bc:1b:1d:72:a5:e3:a9:54:c4:0e:2c:
73:b2:5f:c0:ab:3b:3e:f2:2d:e4:1c:23:29:84:5f:
70:17:0e:dc:e0:a4:d8:74:75:fa:eb:27:69:3a:d8:
80:25:3e:95:b9:b6:1b:de:70:ce:b7:54:09:d3:bf:
a6:45:f9:b1:96:80:1d:2d:c3:17:33:57:98:65:d7:
9b:9f:ac:e8:fa:ab:34:51:4c:37:f7:4b:55:10:ed:
22:f2:6f:79:7a:d9:8a:b8:67:44:81:6a:f2:d0:27:
f0:43:66:64:cf:10:72:6c:e8:94:6e:99:46:ad:8c:
52:1f:7a:cd:e3:7d:22:98:40:a4:8a:71:94:08:af:
45:38:d6:75:5a:d6:98:9a:38:9a:51:2f:a4:aa:46:
62:83:79:ef:fd:b7:20:b3:17:e8:8b:a5:9c:0c:3d:
ae:7d:65:d0:34:7f:17:76:63:12:d2:ed:ef:89:32:
4b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E2:DD:F1:EC:E1:A6:8D:9C:74:8B:17:9F:CF:DD:2B:93:21:57:7F
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/leLd8ezhpo2cdIsXn8_dK5MhV38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.112.0/22
Signature Algorithm: sha256WithRSAEncryption
04:71:34:f0:49:b9:47:79:98:a4:b7:5f:a2:0c:cc:56:19:bd:
a0:06:8c:af:c9:ce:e0:95:1c:ed:d3:d3:e7:7d:88:f4:a2:7c:
ef:6a:6c:5a:8f:0f:a9:8c:a9:9c:4d:94:1f:76:45:b8:ba:2c:
2d:8e:87:e2:de:7b:84:7a:57:db:fd:c8:73:c0:34:5d:10:b6:
09:3c:ea:54:30:b1:13:89:d8:a2:1c:0e:3d:27:e2:8a:25:6b:
e2:81:81:9e:41:54:4d:65:41:0f:f0:66:df:37:31:2b:27:88:
fc:e5:40:0d:e8:cd:2a:70:4d:32:20:6f:77:a3:39:dc:fd:ca:
10:97:1f:f7:f2:19:0e:77:01:19:df:f6:ad:8f:7c:f2:e7:8d:
10:6f:c7:61:cd:42:c5:59:31:4a:04:ba:49:0c:b4:cc:b9:c8:
54:34:8e:f0:e0:eb:eb:36:14:68:58:e3:ec:33:16:f0:9c:49:
a4:b9:21:17:5b:3d:82:5e:91:e9:4f:1e:83:76:cb:c2:98:de:
e4:40:9f:ea:5b:44:18:06:d5:39:87:7e:b0:ab:a7:53:df:14:
d0:eb:c9:c9:0d:46:fc:4c:c0:e6:0a:43:05:fa:0d:a2:df:40:
fb:05:aa:22:dd:0c:cd:8b:25:ab:b1:a9:37:2c:f3:32:65:0a:
97:8f:e9:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org