Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/741f06-c3d1-483b-b908-28a4953f0530/1/oAnYXFM6qiURs3Mz77BySJNtNBI.roa
File: oAnYXFM6qiURs3Mz77BySJNtNBI.roa (raw, json)
Hash identifier: nr/FqZG/XTDli/mFVsW7mDCgbYgl5Uiv4cEwj9mLT3E=
Subject key identifier: A0:09:D8:5C:53:3A:AA:25:11:B3:73:33:EF:B0:72:48:93:6D:34:12
Certificate issuer: /CN=f764eed15c52b4c8110a222963dc7b7d4ba2d146
Certificate serial: 34851998
Authority key identifier: F7:64:EE:D1:5C:52:B4:C8:11:0A:22:29:63:DC:7B:7D:4B:A2:D1:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/92Tu0VxStMgRCiIpY9x7fUui0UY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/741f06-c3d1-483b-b908-28a4953f0530/1/oAnYXFM6qiURs3Mz77BySJNtNBI.roa
Signing time: Sat 01 Jan 2022 04:55:43 +0000
ROA not before: Sat 01 Jan 2022 04:55:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52048
IP address blocks: 46.183.219.0/24 maxlen: 24
46.183.218.0/24 maxlen: 24
46.183.217.0/24 maxlen: 24
46.183.216.0/24 maxlen: 24
46.183.216.0/21 maxlen: 21
46.183.223.0/24 maxlen: 24
46.183.222.0/24 maxlen: 24
46.183.221.0/24 maxlen: 24
46.183.220.0/24 maxlen: 24
84.38.135.0/24 maxlen: 24
84.38.134.0/24 maxlen: 24
84.38.132.0/24 maxlen: 24
84.38.130.0/24 maxlen: 24
2a02:4840:2::/48 maxlen: 48
2a02:4840:1::/48 maxlen: 48
2a02:4840:1000::/48 maxlen: 48
2a02:4840::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 881138072 (0x34851998)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f764eed15c52b4c8110a222963dc7b7d4ba2d146
Validity
Not Before: Jan 1 04:55:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a009d85c533aaa2511b37333efb07248936d3412
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f7:a8:08:64:51:7e:8c:9f:df:42:d7:55:50:
9d:0e:9e:46:0a:9e:83:ea:5a:db:7e:b4:8d:cc:87:
10:41:22:88:a9:03:89:4e:88:a9:5b:97:f7:b0:7a:
50:59:b2:83:23:6d:07:39:fc:be:2d:7c:97:04:fc:
2c:61:38:9c:a1:2f:2e:00:c8:41:fb:60:db:c9:bd:
2b:03:e8:fd:f7:ad:b7:3c:58:6e:08:b6:5f:4f:a9:
11:f1:69:74:e7:c4:27:8f:78:64:75:7c:a7:d1:21:
5e:72:1e:01:68:07:64:dc:d4:8f:58:b6:b6:5a:61:
59:10:1e:68:df:c9:29:db:ac:ad:44:a7:a5:71:11:
04:52:0b:b0:12:83:38:3d:2c:36:f5:43:43:77:01:
c2:a9:bb:66:2d:0f:04:89:81:d5:6b:b9:02:9c:84:
61:9f:dd:9c:7c:02:ac:1e:b3:e1:2a:a1:9e:11:c1:
9b:62:4a:f0:3f:3e:a4:ef:61:61:eb:57:fb:48:c7:
61:bb:c7:5d:62:79:30:86:88:42:45:43:b6:12:67:
6d:1b:98:34:a3:89:13:60:d1:f2:ef:84:4a:bd:9b:
c2:2a:f1:bb:f3:93:73:a0:28:7f:04:23:32:28:c9:
22:d8:db:da:be:9e:ac:54:8a:db:28:c2:02:17:a8:
b6:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:09:D8:5C:53:3A:AA:25:11:B3:73:33:EF:B0:72:48:93:6D:34:12
X509v3 Authority Key Identifier:
keyid:F7:64:EE:D1:5C:52:B4:C8:11:0A:22:29:63:DC:7B:7D:4B:A2:D1:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/92Tu0VxStMgRCiIpY9x7fUui0UY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/741f06-c3d1-483b-b908-28a4953f0530/1/oAnYXFM6qiURs3Mz77BySJNtNBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/741f06-c3d1-483b-b908-28a4953f0530/1/92Tu0VxStMgRCiIpY9x7fUui0UY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.216.0/21
84.38.130.0/24
84.38.132.0/24
84.38.134.0/23
IPv6:
2a02:4840::-2a02:4840:2:ffff:ffff:ffff:ffff:ffff
2a02:4840:1000::/48
Signature Algorithm: sha256WithRSAEncryption
7d:51:f0:a8:4d:4d:92:da:2e:07:e5:74:85:a3:31:bc:1f:ee:
01:1d:e0:2f:1c:a0:a0:a0:ae:e8:75:e1:2e:3d:b4:b4:d2:1c:
26:99:70:d1:c0:51:a2:2d:f3:5d:e2:83:fc:5e:5a:f4:09:91:
91:5b:00:01:3e:77:53:db:ae:10:bc:b3:97:b0:ae:75:2b:26:
f9:91:2b:e6:d0:76:57:88:00:b4:cc:58:ef:9a:45:fa:cd:e2:
40:24:ca:da:cd:81:66:a9:ce:98:6f:2f:82:be:5f:97:de:0f:
7c:88:81:14:58:9f:ab:b3:af:81:c3:6a:b3:23:0c:07:70:c2:
98:b0:a9:f5:d3:41:f0:a0:77:14:98:f1:01:5f:10:97:d6:cd:
d6:b0:36:52:e5:c0:19:57:39:cc:b1:25:59:5f:f3:2a:58:8e:
d3:85:bd:2c:94:e0:e4:71:68:86:ce:b6:fc:91:2c:74:f0:68:
9d:b4:ea:1c:59:d6:48:df:d9:06:81:48:05:10:13:e3:10:10:
a3:20:8b:f5:10:c0:ba:ef:20:37:8e:50:d7:43:61:10:d2:7d:
a4:c3:19:a5:26:91:92:00:02:1d:28:16:73:91:1b:33:c6:5e:
2c:ea:92:2a:81:5c:80:b3:58:9d:5d:ab:5c:ad:31:05:93:a4:
1b:02:ce:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:58 2024 by rpki-client on console-ams.rpki-client.org