Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/543d4c-a4d9-4196-892c-7ecabae18d8a/1/VAHb31Fd0ExgHhu0pVZXtzuX8Yc.roa
File: VAHb31Fd0ExgHhu0pVZXtzuX8Yc.roa (raw, json)
Hash identifier: X9pPC0dHT1i6j3kl2rIrLKSWcwuKJV1N7RvdiI0XS+w=
Subject key identifier: 54:01:DB:DF:51:5D:D0:4C:60:1E:1B:B4:A5:56:57:B7:3B:97:F1:87
Certificate issuer: /CN=f27040c7429e7b9e21a5ffc88d932b4707cc3a00
Certificate serial: 0F972320
Authority key identifier: F2:70:40:C7:42:9E:7B:9E:21:A5:FF:C8:8D:93:2B:47:07:CC:3A:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8nBAx0Kee54hpf_IjZMrRwfMOgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/543d4c-a4d9-4196-892c-7ecabae18d8a/1/VAHb31Fd0ExgHhu0pVZXtzuX8Yc.roa
Signing time: Mon 07 Mar 2022 08:50:49 +0000
ROA not before: Mon 07 Mar 2022 08:50:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51606
IP address blocks: 46.16.136.0/21 maxlen: 21
46.16.137.0/24 maxlen: 24
46.16.136.0/24 maxlen: 24
46.16.138.0/24 maxlen: 24
46.16.140.0/24 maxlen: 24
46.16.143.0/24 maxlen: 24
46.16.142.0/24 maxlen: 24
46.16.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 261563168 (0xf972320)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f27040c7429e7b9e21a5ffc88d932b4707cc3a00
Validity
Not Before: Mar 7 08:50:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5401dbdf515dd04c601e1bb4a55657b73b97f187
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:dc:e8:45:d7:5c:6a:4c:69:55:8f:cf:8f:74:
d8:02:34:dd:6b:5e:aa:08:1e:f8:a9:b9:a8:b3:e0:
1d:cf:e4:c7:74:8f:91:9f:c3:5a:1f:a5:1b:b5:be:
77:44:be:b2:82:42:97:26:50:c1:9c:28:0f:b3:85:
5f:16:d0:e5:79:db:27:9e:41:3a:be:8c:9a:d6:1d:
5d:4d:c6:f0:8a:5b:7f:10:8a:bc:12:e2:db:e0:87:
21:5e:3f:9b:78:a0:f9:af:16:8f:2c:e6:0d:ae:b3:
3d:1d:93:7d:42:b2:ad:53:6c:c2:e6:7a:ea:6d:56:
ac:af:5b:5a:b6:13:15:fd:28:1b:05:e8:3e:2c:3b:
05:11:02:a1:7d:3a:d0:31:60:46:4d:3f:63:b1:ac:
f2:2f:fa:04:03:d5:8f:c5:f0:f1:ba:14:ec:37:a5:
de:09:68:e7:0a:bb:9a:d5:f4:dd:9f:db:c8:4d:b0:
79:34:34:d1:e1:6a:e7:0b:1c:8c:43:eb:0a:94:5e:
5e:d2:1d:a9:24:1b:c5:7d:6d:dc:5c:52:20:b2:74:
e2:ab:af:59:29:e7:11:f1:5b:d0:17:aa:09:76:75:
28:58:22:eb:9b:04:a0:c7:63:6e:7a:52:aa:f8:ed:
14:57:6c:6c:0b:63:25:be:78:78:d5:9b:57:02:90:
c8:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:01:DB:DF:51:5D:D0:4C:60:1E:1B:B4:A5:56:57:B7:3B:97:F1:87
X509v3 Authority Key Identifier:
keyid:F2:70:40:C7:42:9E:7B:9E:21:A5:FF:C8:8D:93:2B:47:07:CC:3A:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8nBAx0Kee54hpf_IjZMrRwfMOgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/543d4c-a4d9-4196-892c-7ecabae18d8a/1/VAHb31Fd0ExgHhu0pVZXtzuX8Yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/543d4c-a4d9-4196-892c-7ecabae18d8a/1/8nBAx0Kee54hpf_IjZMrRwfMOgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.16.136.0/21
Signature Algorithm: sha256WithRSAEncryption
8e:4c:c9:ba:e3:74:1b:a9:f6:ed:75:0e:12:e6:54:4f:ad:01:
27:24:62:42:de:64:58:7e:c8:b7:a5:c8:e8:43:9e:35:00:ea:
a4:f4:db:a5:74:3b:8a:f6:9d:f6:bf:b4:08:18:94:f1:f8:d0:
ac:6b:bc:dc:9f:a8:aa:1c:0b:6e:f3:b4:12:de:ed:3c:c3:15:
93:9d:de:c9:5b:f2:5e:3f:0e:42:55:71:8e:47:99:c5:01:04:
68:cf:5f:a8:72:a0:7f:c1:4c:59:b3:24:cc:42:d2:01:aa:e2:
c7:8e:a8:fb:9f:b1:c6:0c:69:b8:6f:83:48:5b:e8:5b:0c:79:
78:cc:c6:48:c7:c9:50:6b:71:41:4e:f6:2a:6d:0f:30:ed:b6:
e9:31:89:ad:b3:cc:39:cc:44:8f:f9:6d:d1:be:dc:e5:f5:b9:
d5:0c:23:b4:c7:76:b2:6b:25:43:e1:a4:da:cf:02:b0:35:2d:
bd:f3:6a:a5:bf:41:cd:50:6a:55:e0:ed:bc:89:22:05:5d:5c:
dc:d9:ac:21:1c:c6:1e:cf:5a:aa:a3:8a:b0:7f:69:c4:bb:57:
ad:0b:4b:97:83:65:60:f8:91:ca:e3:99:58:95:eb:cb:e1:d8:
ce:9a:00:90:35:4d:5f:81:8e:48:03:29:bc:ba:b7:e9:32:6a:
6a:b0:9a:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:43 2023 by rpki-client on console-ams.rpki-client.org