Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/f03cdc-2945-408c-8889-c69871f5d305/1/2loqM62rYj6I7c9f0QnJmH_ovqs.roa
File: 2loqM62rYj6I7c9f0QnJmH_ovqs.roa (raw, json)
Hash identifier: Hq3a/3AZ3JP8tnKmbUuqzB7il0NNYuND76kWPGXtgFI=
Subject key identifier: DA:5A:2A:33:AD:AB:62:3E:88:ED:CF:5F:D1:09:C9:98:7F:E8:BE:AB
Certificate issuer: /CN=5dedd6b0e36f4bd8f1d57e26cc1c2d18c6993c04
Certificate serial: 01823FA66696BA117074302EA1E0934CA81B
Authority key identifier: 5D:ED:D6:B0:E3:6F:4B:D8:F1:D5:7E:26:CC:1C:2D:18:C6:99:3C:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xe3WsONvS9jx1X4mzBwtGMaZPAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/f03cdc-2945-408c-8889-c69871f5d305/1/2loqM62rYj6I7c9f0QnJmH_ovqs.roa
Signing time: Wed 27 Jul 2022 12:34:05 +0000
ROA not before: Wed 27 Jul 2022 12:34:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8820
IP address blocks: 46.41.14.0/24 maxlen: 24
188.246.17.0/24 maxlen: 24
188.246.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3f:a6:66:96:ba:11:70:74:30:2e:a1:e0:93:4c:a8:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dedd6b0e36f4bd8f1d57e26cc1c2d18c6993c04
Validity
Not Before: Jul 27 12:34:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da5a2a33adab623e88edcf5fd109c9987fe8beab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c0:5d:16:1d:e9:65:dd:6f:97:d1:b7:13:17:
1d:ce:8c:20:80:96:86:10:19:f5:9e:2d:7c:9c:54:
30:7a:ac:7c:e4:aa:df:aa:ea:e9:61:b4:83:6f:2b:
70:28:4b:55:45:2b:3f:e8:dd:e4:79:88:88:31:1e:
69:d0:d2:3e:d6:9c:20:eb:0a:8c:8e:9b:f8:98:f7:
3d:34:78:f8:60:86:58:b3:d9:09:e2:3d:4c:8b:07:
35:84:d8:8a:51:a4:a7:64:0d:f0:6d:ed:75:65:85:
67:64:e6:02:05:da:c2:c5:41:e0:99:85:41:6d:e0:
b1:6c:b8:12:19:5b:70:72:71:65:7a:8e:1a:0d:ff:
05:29:5c:ec:19:77:23:df:f3:7f:c5:6a:53:de:02:
e9:39:f8:28:69:c5:90:e2:5f:13:08:12:4b:c1:8a:
0e:e6:65:5b:b0:4f:e5:05:80:5b:1b:56:39:0f:df:
a5:ca:43:b3:fd:1a:32:76:2b:4f:ab:1f:d8:2a:68:
a8:cf:b0:78:30:2b:98:41:48:25:7d:2e:df:ba:e5:
21:1a:47:d8:77:27:71:f3:cd:89:c0:99:3a:ec:51:
15:bd:cb:df:32:6e:48:bb:70:2c:41:c3:f8:9d:87:
08:02:6c:28:a4:a2:bf:80:36:b4:c1:f3:48:d5:28:
ca:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:5A:2A:33:AD:AB:62:3E:88:ED:CF:5F:D1:09:C9:98:7F:E8:BE:AB
X509v3 Authority Key Identifier:
keyid:5D:ED:D6:B0:E3:6F:4B:D8:F1:D5:7E:26:CC:1C:2D:18:C6:99:3C:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xe3WsONvS9jx1X4mzBwtGMaZPAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/f03cdc-2945-408c-8889-c69871f5d305/1/2loqM62rYj6I7c9f0QnJmH_ovqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/f03cdc-2945-408c-8889-c69871f5d305/1/Xe3WsONvS9jx1X4mzBwtGMaZPAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.41.14.0/24
188.246.17.0/24
188.246.23.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:60:ec:55:86:21:1a:11:aa:6a:5f:2c:e7:a9:8a:d7:15:ab:
4b:0a:85:df:46:13:2b:14:d4:6e:91:9b:c0:e8:a5:0e:9b:5e:
0e:0c:dc:11:b4:1b:06:5d:69:73:76:cf:7d:22:76:5c:75:ac:
b9:5f:c5:7a:e3:61:79:b9:95:ce:74:14:ef:11:b0:aa:37:00:
e2:a1:d1:e3:41:44:5b:c0:9b:86:d0:b6:83:ba:e8:ac:30:c2:
3b:5c:b3:d0:ea:ca:58:28:89:d9:93:28:e5:60:c3:30:fb:03:
3b:d7:40:f8:7d:55:e4:53:08:54:8e:00:60:84:6c:6c:63:d8:
a1:dd:cc:26:c1:a2:9f:b4:c1:25:67:26:91:d4:4d:0b:6f:3e:
0a:fa:62:83:94:60:f6:83:0e:b2:e6:28:78:ee:b3:3c:4b:35:
4b:d8:a5:9e:0c:b8:a5:4c:dc:d2:ac:72:37:ee:15:67:4c:90:
9c:e9:13:c9:de:10:7c:da:4a:8f:ab:3f:cb:d4:c1:c8:b7:16:
21:00:83:4e:a9:4f:68:37:48:cc:8f:5c:2e:08:82:3d:8a:ce:
14:20:93:95:d7:6d:89:08:f1:6b:01:22:c4:56:21:a3:b5:9f:
e5:fb:d9:a4:92:f1:71:47:bb:a9:32:cb:7e:f8:3b:de:5f:61:
5b:00:0e:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:32 2024 by rpki-client on console-ams.rpki-client.org