Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/_YaHL8CM7Rr8cJ-c5cx7SY5Rawg.roa
File: _YaHL8CM7Rr8cJ-c5cx7SY5Rawg.roa (raw, json)
Hash identifier: p5p1qd7mXxS2zWlYF0WHuOx7R7LOmmdXxyC8x2zDVkY=
Subject key identifier: FD:86:87:2F:C0:8C:ED:1A:FC:70:9F:9C:E5:CC:7B:49:8E:51:6B:08
Certificate issuer: /CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc
Certificate serial: D34A36
Authority key identifier: DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/_YaHL8CM7Rr8cJ-c5cx7SY5Rawg.roa
Signing time: Sat 04 Jun 2022 11:49:20 +0000
ROA not before: Sat 04 Jun 2022 11:49:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 212.46.57.0/24 maxlen: 24
2a12:fc0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13847094 (0xd34a36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc
Validity
Not Before: Jun 4 11:49:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd86872fc08ced1afc709f9ce5cc7b498e516b08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9b:f2:51:3e:f2:ad:2d:ac:d8:7e:59:51:54:
48:3f:20:eb:3f:df:95:93:7c:91:12:d4:44:c9:c4:
eb:31:71:18:e0:cd:c0:41:67:53:9e:55:47:7e:81:
b3:fa:a0:41:1f:fd:cd:36:40:59:e8:18:df:01:e4:
1a:69:c4:e6:f8:2f:fd:4b:b8:79:54:7c:b8:0a:b8:
12:72:ae:c8:6b:4d:71:25:64:87:32:ff:ad:98:93:
ff:31:d6:9d:22:f3:42:07:06:e2:17:ff:dd:cd:65:
68:9e:a4:b0:49:f7:78:5f:07:de:87:2e:e0:49:59:
04:01:ae:64:3b:1b:bb:87:67:a4:d0:fd:ab:20:80:
03:8f:74:4f:9b:1a:e7:9f:de:d2:69:22:3d:8e:c6:
c3:59:2f:aa:64:eb:0c:c9:27:b8:50:31:b0:b0:95:
cb:39:8c:f8:cf:71:3a:91:bc:66:8a:b4:56:08:34:
e3:e5:9c:da:4b:47:84:9c:c5:c8:65:8a:08:c9:8e:
c1:9c:d5:65:8b:cf:ba:b9:54:c9:ef:59:d2:53:6d:
14:5c:8f:ee:53:a5:58:b7:97:ec:6f:7c:c1:ce:5e:
d6:e8:db:8d:64:19:df:05:ac:85:55:84:a1:d9:22:
5d:75:eb:73:be:6d:88:4a:00:7c:87:45:05:20:85:
f2:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:86:87:2F:C0:8C:ED:1A:FC:70:9F:9C:E5:CC:7B:49:8E:51:6B:08
X509v3 Authority Key Identifier:
keyid:DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/_YaHL8CM7Rr8cJ-c5cx7SY5Rawg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.46.57.0/24
IPv6:
2a12:fc0::/44
Signature Algorithm: sha256WithRSAEncryption
8e:02:b0:a1:60:1d:9d:36:1f:6d:ce:eb:61:48:45:15:3c:3d:
00:7d:f9:a3:ad:1f:43:fe:51:d7:56:ec:eb:ac:5a:f9:1d:79:
2d:cf:0c:6f:67:ac:b9:4c:13:d0:9d:76:65:ab:11:35:40:55:
83:86:52:1d:5e:9a:f1:f0:ac:e9:7a:55:78:65:eb:3d:86:27:
4d:de:23:ba:ad:8e:60:58:10:0f:63:5f:36:cf:8c:02:64:02:
fe:7f:10:5c:5e:0c:76:07:f6:54:8b:26:20:35:b3:fa:c1:5f:
06:cc:67:ce:76:bf:7a:00:d4:d3:9c:6e:bc:b7:03:40:33:72:
78:78:01:ed:51:fa:ad:95:6f:49:ca:04:13:f3:18:53:0a:e5:
53:2a:90:89:7f:e0:9a:3a:aa:ac:5f:b4:42:aa:f5:f7:51:4b:
40:f6:54:e6:3d:cf:03:57:f6:70:ac:0e:3b:24:70:5b:e6:4b:
c7:f0:5b:8b:1b:be:63:32:3a:03:96:a6:38:38:28:5b:f4:5e:
90:fc:4a:32:7f:44:9a:3e:d8:a8:6a:94:9b:e0:84:24:44:2e:
cd:44:9a:d4:0c:cb:5d:02:01:bc:cc:18:7c:3d:f5:1f:11:d4:
95:70:12:0c:6d:17:a3:5b:71:1e:fd:e0:a6:31:34:06:ca:f9:
d8:f5:a8:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:03 2023 by rpki-client on console-fra.rpki-client.org