Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/UEu0aAHuaZ8WF4JQu0yn3gUjcC0.roa
File: UEu0aAHuaZ8WF4JQu0yn3gUjcC0.roa (raw, json)
Hash identifier: BKT5beb4NAB3mCVuVseV/GVlfQpujVdj0dgcSHc3VcA=
Subject key identifier: 50:4B:B4:68:01:EE:69:9F:16:17:82:50:BB:4C:A7:DE:05:23:70:2D
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 027267B9
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/UEu0aAHuaZ8WF4JQu0yn3gUjcC0.roa
Signing time: Fri 28 Jan 2022 12:17:48 +0000
ROA not before: Fri 28 Jan 2022 12:17:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 46.23.110.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41052089 (0x27267b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Jan 28 12:17:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=504bb46801ee699f16178250bb4ca7de0523702d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a1:37:7b:4e:17:19:75:0f:e2:fa:98:c1:5d:
ab:a8:ae:6f:27:23:c5:e2:d2:1a:a7:4f:21:ff:75:
31:f1:47:b4:ab:b4:82:20:f5:b1:8a:76:1b:84:b7:
7b:e6:6e:a7:86:47:7a:be:e3:3c:8a:7c:31:2b:77:
49:c3:d6:27:73:fa:f0:cb:50:a3:d8:d6:0e:db:18:
0a:ab:51:40:11:8c:f9:30:31:d9:37:6f:54:d9:88:
e8:60:54:99:9a:b0:5c:18:c9:69:76:05:7e:d6:20:
27:c7:0f:69:34:b2:87:19:b9:e3:2e:8d:c9:5a:d0:
7f:87:28:28:8b:f3:9b:7e:ad:f1:01:a6:2f:ea:b6:
c7:84:46:c8:5d:eb:ae:38:e6:3d:54:b5:5d:e0:06:
1c:64:2f:f2:3f:29:f8:b5:9e:98:8b:8a:98:e9:dc:
d4:d6:4b:81:d0:5a:fe:ce:86:11:7c:1c:49:75:f4:
85:35:f0:51:ba:7c:39:a9:7e:cc:de:83:65:e4:9e:
63:4d:1e:2b:6d:d7:6a:00:42:ea:a1:4b:ad:f8:41:
a7:2b:fb:f0:a8:17:21:e6:10:32:71:d2:1c:8c:23:
4a:a1:b7:d5:45:0f:3c:d2:d7:d1:ab:7b:7c:37:a1:
ed:1d:f3:13:a2:ef:03:5d:87:0e:e6:43:94:64:30:
1e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:4B:B4:68:01:EE:69:9F:16:17:82:50:BB:4C:A7:DE:05:23:70:2D
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/UEu0aAHuaZ8WF4JQu0yn3gUjcC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.110.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:cb:e9:a8:63:4b:ec:2a:03:6c:cc:80:1e:76:19:ae:9b:26:
7e:f5:21:48:83:4b:bc:6a:77:bb:4f:40:bb:48:01:e8:ca:f7:
93:99:3e:20:a2:22:74:d2:7b:a9:44:5d:26:51:ed:74:42:3e:
a8:0d:b1:d9:82:3a:a3:62:28:9b:05:1e:d3:39:9e:97:5a:d8:
49:e2:49:01:2e:c2:52:5f:32:cc:e8:c5:0f:eb:c4:92:68:c8:
82:2f:22:86:60:b4:0a:63:ca:8a:4b:bf:3d:47:72:a9:bd:b9:
19:2e:f1:96:aa:35:c1:b1:31:ae:d9:62:04:82:3f:25:db:f4:
29:27:84:7f:d8:e3:54:1e:ba:b8:79:98:59:64:9f:a5:6a:7f:
3f:2a:c3:2f:96:de:d9:93:b1:ee:44:54:9d:17:ed:3f:d9:cd:
ba:df:ae:c9:ee:c5:30:98:22:cc:e9:de:d6:41:2e:44:dc:d0:
5f:0e:a4:f7:e5:38:24:50:7a:93:ca:74:49:c8:f4:d4:38:da:
0e:28:8d:00:91:26:fc:a7:4b:84:05:88:2d:89:39:0c:2b:21:
68:f4:06:a0:77:0d:f4:07:a5:17:c0:e8:3c:23:b0:c4:ba:ba:
67:44:4f:70:a2:47:50:93:32:5b:bd:75:d0:51:de:47:2f:87:
73:01:b7:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:50 2023 by rpki-client on console-ams.rpki-client.org