Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/B0gCzuIbJijE-WzpbyKsQ62xvQM.roa
File: B0gCzuIbJijE-WzpbyKsQ62xvQM.roa (raw, json)
Hash identifier: q/Dc1HauR7i7QH3LlEciP+pGlU4AxGbE+Zq3c5BNWBc=
Subject key identifier: 07:48:02:CE:E2:1B:26:28:C4:F9:6C:E9:6F:22:AC:43:AD:B1:BD:03
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 01826DC3789AE80A4CFDE08C395F09C3E674
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/B0gCzuIbJijE-WzpbyKsQ62xvQM.roa
Signing time: Fri 05 Aug 2022 11:28:23 +0000
ROA not before: Fri 05 Aug 2022 11:28:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208046
IP address blocks: 46.23.110.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:6d:c3:78:9a:e8:0a:4c:fd:e0:8c:39:5f:09:c3:e6:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Aug 5 11:28:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=074802cee21b2628c4f96ce96f22ac43adb1bd03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:2e:6e:b7:86:98:10:60:25:b4:45:0f:cc:bd:
5d:cc:41:f0:b2:50:fe:3d:b3:fc:85:e3:dc:9c:52:
e8:3e:a6:68:c1:9d:cc:c3:26:ed:ac:47:a4:ce:e7:
8f:6b:7d:ec:ad:68:cc:c6:ca:0c:cc:ee:e8:a9:90:
22:94:4a:ba:9b:5a:be:0e:23:55:e0:c9:9d:b7:6a:
fa:64:a4:63:34:87:a8:19:21:13:b1:30:40:c7:6c:
d6:11:44:7b:f8:c4:ef:49:88:66:7e:5c:fe:34:dd:
8f:a9:9b:97:32:c9:35:ba:05:cf:f7:07:cc:d4:46:
c2:df:16:79:ba:cd:a2:cb:bf:40:30:63:c1:db:6a:
c1:bf:4e:15:28:24:f1:7b:db:4e:e5:10:e5:14:38:
0b:e2:12:78:1a:a5:5f:59:21:77:0d:3c:49:85:ca:
1d:57:84:d2:27:69:9f:8f:0a:91:75:be:aa:0c:90:
b1:62:90:28:79:20:10:7d:9d:7f:15:59:1f:1c:5b:
fe:5d:49:73:78:cb:b5:3b:ac:a2:91:1a:62:2f:81:
56:67:28:55:ef:7c:56:5b:82:13:bb:6d:92:28:d1:
c2:36:53:ba:5b:96:8c:3a:d0:b8:79:ad:e2:2f:0a:
0c:8a:4e:c2:62:3b:fc:07:02:f1:a1:f3:e8:fb:5d:
6f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:48:02:CE:E2:1B:26:28:C4:F9:6C:E9:6F:22:AC:43:AD:B1:BD:03
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/B0gCzuIbJijE-WzpbyKsQ62xvQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.110.0/24
Signature Algorithm: sha256WithRSAEncryption
62:be:9a:d1:ae:d5:fe:30:41:7a:7b:0d:f2:37:70:d8:a5:24:
fb:71:39:9b:a3:39:55:51:42:90:90:7e:4f:b5:8f:1c:9e:11:
54:7b:9c:5d:2d:73:70:fe:7b:32:e8:cd:8f:b0:a2:ae:03:99:
dc:7f:c0:94:d8:ba:b9:e8:c1:3e:ac:c3:bf:e2:2d:fb:83:84:
e7:4e:69:da:06:e1:c0:8b:cc:10:0b:97:7a:3a:95:2e:cc:91:
5e:56:09:63:06:40:24:9a:f4:9c:c1:67:56:4e:59:ee:81:45:
d6:b3:a6:ba:d5:f0:56:81:5a:d5:1b:70:ec:5c:46:d9:80:09:
8c:a8:63:f8:77:f4:f4:34:9e:3b:57:51:af:64:c5:d6:ac:30:
d1:0d:8e:47:d7:6f:e2:9a:6b:ed:e5:5f:44:64:3b:67:36:36:
1a:31:6a:c5:20:98:e8:8e:fc:9b:86:b6:a5:52:f5:d8:67:10:
2c:95:73:f6:79:a5:66:73:ad:10:94:5c:63:3b:d8:9a:f0:e0:
16:4d:67:04:30:60:0e:83:e7:fa:fc:1a:70:91:f8:a0:af:0b:
e4:13:13:53:a9:bb:48:6c:af:ac:22:20:77:9a:53:de:e9:a9:
32:d4:2e:1c:38:0c:18:72:94:e7:c5:ea:f3:41:47:3d:50:71:
ef:32:d2:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:00 2023 by rpki-client on console-fra.rpki-client.org