Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/4307d1-b608-4581-992c-753741a80e94/1/_Cvz8Dyn7AdRMVT4OkdA-0Wu6w4.roa
File: _Cvz8Dyn7AdRMVT4OkdA-0Wu6w4.roa (raw, json)
Hash identifier: src7AZXsQ+zg5Q2xSRqqcnZCGRkFj3hC6cm8dkg3vy4=
Subject key identifier: FC:2B:F3:F0:3C:A7:EC:07:51:31:54:F8:3A:47:40:FB:45:AE:EB:0E
Certificate issuer: /CN=07fa540a25432e2aa4dca057845c359d214886f7
Certificate serial: 01856F6FEBE25FAAD978A5236709E4DD58DD
Authority key identifier: 07:FA:54:0A:25:43:2E:2A:A4:DC:A0:57:84:5C:35:9D:21:48:86:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_pUCiVDLiqk3KBXhFw1nSFIhvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/4307d1-b608-4581-992c-753741a80e94/1/_Cvz8Dyn7AdRMVT4OkdA-0Wu6w4.roa
Signing time: Sun 01 Jan 2023 22:24:43 +0000
ROA not before: Sun 01 Jan 2023 22:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213300
IP address blocks: 46.232.187.0/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:6f:eb:e2:5f:aa:d9:78:a5:23:67:09:e4:dd:58:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07fa540a25432e2aa4dca057845c359d214886f7
Validity
Not Before: Jan 1 22:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc2bf3f03ca7ec07513154f83a4740fb45aeeb0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:9a:24:a6:a6:b8:be:30:88:d9:60:e4:ac:17:
4a:04:80:f3:d7:25:14:a4:03:cf:24:76:1c:f8:70:
b5:36:0b:71:04:bc:c9:ab:c4:d2:51:0b:3d:b9:56:
c1:e9:c8:ac:0b:4f:cb:b3:a8:3d:bd:d9:9a:34:6d:
8e:e1:63:5b:29:a0:01:5e:af:6a:af:d6:1d:73:05:
b1:77:b4:76:e9:8d:1b:51:f9:54:cf:f2:09:f6:fb:
06:bd:d5:2d:70:85:98:11:c8:d1:85:6a:67:07:e3:
2d:60:44:5d:2f:2a:60:6a:09:4b:52:ab:23:7d:85:
50:a8:6f:00:79:7f:03:1d:66:d9:60:33:66:46:2e:
de:2d:2d:3c:28:14:de:6e:c8:e7:f9:89:e9:2e:a6:
87:1d:e7:7e:c6:82:45:51:a1:a5:6b:be:f0:6e:dd:
61:5b:d8:81:34:0c:3c:e7:c1:6a:5a:1d:ad:69:98:
bf:fd:92:fe:b9:2f:79:f7:c7:5e:f9:54:8c:59:2a:
f2:9b:e9:e7:7c:d5:bb:03:04:28:1e:aa:76:40:8c:
7f:16:4e:d6:cd:4a:2a:9f:24:f0:49:94:77:ab:a2:
b6:2f:ff:a7:2f:27:7b:cd:44:7d:85:97:d2:3d:b1:
88:66:48:c8:5e:d0:32:12:3b:92:bb:15:4e:3a:df:
84:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:2B:F3:F0:3C:A7:EC:07:51:31:54:F8:3A:47:40:FB:45:AE:EB:0E
X509v3 Authority Key Identifier:
keyid:07:FA:54:0A:25:43:2E:2A:A4:DC:A0:57:84:5C:35:9D:21:48:86:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_pUCiVDLiqk3KBXhFw1nSFIhvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/4307d1-b608-4581-992c-753741a80e94/1/_Cvz8Dyn7AdRMVT4OkdA-0Wu6w4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/4307d1-b608-4581-992c-753741a80e94/1/B_pUCiVDLiqk3KBXhFw1nSFIhvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.232.187.0/26
Signature Algorithm: sha256WithRSAEncryption
83:b0:4d:b5:b3:ef:ab:19:68:0a:c1:61:a7:81:ad:e5:20:57:
60:23:50:38:0e:31:99:19:92:66:03:d7:1c:f1:d2:1e:41:e4:
7a:46:16:a6:4e:9e:fe:f6:c9:97:2f:df:80:16:5f:ab:04:79:
17:b1:43:1b:03:1a:17:aa:c4:ba:cb:70:e9:18:60:3e:f2:0f:
81:e8:8d:b0:9e:fa:50:3f:e5:18:30:1f:bf:40:cb:7d:10:ed:
c1:ae:ed:b6:f5:22:ae:0c:70:b6:80:e1:56:6c:33:76:6a:a7:
ad:53:0e:95:c0:19:60:34:e6:14:f7:2a:3b:0f:dc:6e:b8:25:
dd:c9:34:e0:50:57:79:17:50:63:52:2a:cf:53:7d:a4:1a:c4:
82:da:52:54:9a:51:82:0c:4e:9c:16:de:f7:19:70:78:c9:be:
d3:a9:43:d4:c6:38:3b:41:bf:54:67:4a:8d:ad:75:66:33:79:
46:bc:b1:a1:b3:25:81:b3:e5:50:66:f8:54:03:05:03:57:63:
61:6d:04:34:f4:d8:8d:8e:75:fd:66:2c:37:6b:8d:40:2d:80:
0a:ad:f8:59:a8:aa:c9:81:3d:8b:d8:3c:08:2f:61:a6:4b:73:
de:0d:2b:bc:15:ae:09:f8:31:93:b5:36:b7:ea:06:5e:24:de:
7e:8d:38:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:30 2025 by rpki-client