Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/tPmAyWm8EMy2h3aNl1MESEGFPCs.roa
File: tPmAyWm8EMy2h3aNl1MESEGFPCs.roa (raw, json)
Hash identifier: zSBqCxKzTNtpkJQiNr7r+qccw29EUIhGPCkFB9Mlm1Q=
Subject key identifier: B4:F9:80:C9:69:BC:10:CC:B6:87:76:8D:97:53:04:48:41:85:3C:2B
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 01829689AF5AA972E4735F93BBA03C78E668
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/tPmAyWm8EMy2h3aNl1MESEGFPCs.roa
Signing time: Sat 13 Aug 2022 09:29:41 +0000
ROA not before: Sat 13 Aug 2022 09:29:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59436
IP address blocks: 46.3.242.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:96:89:af:5a:a9:72:e4:73:5f:93:bb:a0:3c:78:e6:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Aug 13 09:29:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4f980c969bc10ccb687768d9753044841853c2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:2e:82:b8:d3:78:ff:7b:40:72:c8:f0:47:6f:
d3:c4:d8:41:dc:86:0f:b6:72:49:fc:cd:f8:ae:11:
8c:b1:2d:db:fb:dc:1c:b0:63:b2:ae:54:9a:be:5d:
3c:35:00:18:3e:f2:83:d7:5e:2d:8e:c0:5e:01:1d:
91:1c:70:2c:ab:17:6e:fb:26:a4:de:52:99:19:20:
b2:1e:18:8a:76:9f:26:5f:1c:10:fe:47:a2:e4:1b:
51:fe:bf:29:25:4e:97:44:b2:dc:f7:ac:28:06:65:
b7:5c:a3:0b:4c:fb:1e:1b:f8:9b:90:2c:be:69:98:
56:46:a1:92:13:dc:48:18:38:e2:f6:ef:2d:31:7b:
c8:4b:4b:5a:66:ec:ae:f9:03:04:cc:10:a1:c7:c7:
e1:32:cd:e4:d2:bb:66:a2:94:ed:c2:3c:63:c9:12:
92:90:3e:06:97:48:12:2e:75:2a:d2:b8:9b:09:53:
c7:c5:8b:f7:be:fc:85:1c:1f:2e:af:35:26:f2:77:
0a:c3:c0:75:e7:08:82:30:d3:ac:1c:df:61:57:a7:
d1:2e:d7:13:37:3e:a9:40:e1:78:14:bc:7a:3f:72:
af:0a:d7:98:2d:04:5d:cd:57:45:11:bb:d5:e7:61:
f1:87:fe:db:d1:dc:31:2f:d7:0c:5c:3f:c4:fa:5c:
19:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:F9:80:C9:69:BC:10:CC:B6:87:76:8D:97:53:04:48:41:85:3C:2B
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/tPmAyWm8EMy2h3aNl1MESEGFPCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.242.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:b0:4b:fc:9b:4d:2e:26:4a:7f:bb:ad:bc:ff:38:06:b9:d0:
9d:6e:02:3d:e7:ff:c7:cb:6c:25:4d:1c:4b:48:6e:29:5f:fe:
0f:bc:3e:92:52:52:82:60:03:09:04:83:52:0a:5b:b2:cf:c4:
99:4a:e2:91:15:76:ee:b1:f1:e9:88:68:54:b8:2e:dd:44:c7:
f6:30:b9:36:48:d9:cc:43:3e:94:bd:98:cb:53:c0:11:61:72:
f9:e2:0f:15:e8:66:69:d9:72:a9:a5:ed:1e:16:44:aa:d8:42:
7a:cd:18:d8:d7:bb:cc:e3:34:4f:88:ef:61:7f:d5:98:94:c2:
80:96:64:57:40:ef:d6:35:93:ff:a8:14:d1:05:ef:e7:69:76:
c8:f9:01:8c:09:bd:ed:6d:b9:bb:2b:6b:fa:19:55:b2:02:13:
87:8f:b9:1d:83:d9:d2:17:d7:29:97:59:be:37:5d:52:8a:8f:
bc:9b:53:5e:5d:f9:f6:b6:a7:d4:b5:65:02:35:54:37:1e:51:
cb:dc:df:97:60:56:58:d5:9c:13:14:8c:87:cf:9c:6d:9a:c2:
38:13:8e:80:9b:ac:7e:41:80:2c:e5:1a:9d:31:02:d0:58:d6:
0d:78:ec:33:7a:27:a1:40:e8:6b:87:e1:e6:03:6d:53:5e:08:
53:8e:35:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-fra.rpki-client.org