Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/j9bFPKBWrw6WLfdRBz2NudNOKSI.roa
File: j9bFPKBWrw6WLfdRBz2NudNOKSI.roa (raw, json)
Hash identifier: LOdImBZVCZF81/sjI0bgCWrUbEZ8oLDSc5Xcr2pdZnk=
Subject key identifier: 8F:D6:C5:3C:A0:56:AF:0E:96:2D:F7:51:07:3D:8D:B9:D3:4E:29:22
Certificate issuer: /CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc
Certificate serial: 01F6A4
Authority key identifier: DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/j9bFPKBWrw6WLfdRBz2NudNOKSI.roa
Signing time: Tue 01 Mar 2022 11:37:34 +0000
ROA not before: Tue 01 Mar 2022 11:37:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 212.46.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128676 (0x1f6a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc
Validity
Not Before: Mar 1 11:37:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8fd6c53ca056af0e962df751073d8db9d34e2922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:3b:d3:e8:4b:fc:bd:1e:9f:38:d3:db:13:cc:
ec:9f:ab:48:11:9f:27:f4:2e:e6:93:0d:4b:18:04:
c3:c5:bc:9c:f6:20:73:89:19:3f:65:55:b0:87:94:
85:88:b5:dd:b1:46:03:27:b6:cc:68:df:04:58:99:
f6:3e:26:d4:02:9d:d9:76:d2:55:d8:d2:4c:2d:c1:
4f:b1:ec:29:4b:a8:ba:9b:88:6b:eb:ed:a8:e6:3f:
3d:e1:b7:8b:54:4b:23:bd:46:06:5a:fe:61:91:94:
f4:74:5b:22:91:ab:ab:5c:b0:ab:92:90:69:28:0b:
81:60:03:c9:98:a3:29:2c:41:01:b5:90:24:4c:ce:
1d:03:11:b6:08:f8:55:12:f7:0c:6d:49:90:fe:72:
d7:bd:b5:f0:ca:0c:17:7d:77:3f:05:31:3d:c2:0a:
ff:5c:9a:f0:e2:17:50:f5:05:93:65:9c:34:ff:48:
bc:ee:1a:1f:5b:37:a8:af:f1:58:7b:11:8e:ee:88:
e1:71:04:47:c2:b1:ba:a3:50:ef:e0:e5:c1:1d:f8:
66:e0:58:c8:43:3a:9b:e1:b1:8e:61:ee:e4:f3:fe:
a6:e7:8c:04:ab:9a:74:64:0a:26:06:f7:1e:24:d2:
02:60:0d:43:18:cd:73:38:31:8c:9f:98:0a:a1:f6:
1b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:D6:C5:3C:A0:56:AF:0E:96:2D:F7:51:07:3D:8D:B9:D3:4E:29:22
X509v3 Authority Key Identifier:
keyid:DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/j9bFPKBWrw6WLfdRBz2NudNOKSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.46.57.0/24
Signature Algorithm: sha256WithRSAEncryption
43:6c:2d:03:24:c5:9c:5b:16:38:1f:9a:c7:8d:a1:1d:a5:a9:
59:e7:25:d4:f3:fa:7b:c6:8c:79:0f:17:d6:29:ad:3c:f9:c0:
fe:bb:a9:92:d0:84:03:89:8e:59:b4:77:4b:85:2e:a4:f8:1b:
93:ae:71:ca:10:89:e9:59:9b:09:59:71:a9:29:3e:2d:5e:8f:
51:c8:ca:e4:d5:f3:fc:f1:f0:de:3b:00:e9:77:95:3a:6d:d3:
6a:e6:da:89:f8:8a:8a:3c:08:13:da:32:ca:23:cb:fc:b0:92:
3b:eb:3b:5d:eb:46:c7:16:da:01:6d:ac:19:4b:8d:d1:62:56:
b1:10:c5:11:91:8c:aa:9d:af:60:82:aa:63:a9:24:a0:bb:7b:
5e:fa:72:07:84:5c:42:8a:0d:82:25:2e:2c:b4:e6:b2:62:46:
97:79:54:36:ff:ae:63:7c:36:4e:aa:a3:f1:fb:74:4a:63:d2:
90:ba:6e:1f:8c:14:c4:36:3d:8e:32:5f:bd:39:63:ca:ae:8e:
ea:ce:ef:a0:58:20:10:6b:de:34:e3:13:25:63:2d:d4:bc:10:
98:85:64:d5:c3:f4:9f:fa:bc:cc:b0:64:6c:81:36:bf:78:56:
f1:2e:af:e7:13:d2:5f:37:f1:f0:66:dc:5e:1d:4c:cf:5e:d5:
d5:c5:c8:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:54 2023 by rpki-client on console-ams.rpki-client.org