Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/Od7IZhZoUtsK_ZM7s7uYGWBAcIs.roa
File: Od7IZhZoUtsK_ZM7s7uYGWBAcIs.roa (raw, json)
Hash identifier: +dTnRHL1TmEPitLjjqdNRh9EBC8q2Ja+/gfz+CgZCWE=
Subject key identifier: 39:DE:C8:66:16:68:52:DB:0A:FD:93:3B:B3:BB:98:19:60:40:70:8B
Certificate issuer: /CN=c1bf8f3e609072889e74dd0fb4e27f9bac47b3b0
Certificate serial: 17E28D99
Authority key identifier: C1:BF:8F:3E:60:90:72:88:9E:74:DD:0F:B4:E2:7F:9B:AC:47:B3:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wb-PPmCQcoiedN0PtOJ_m6xHs7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/Od7IZhZoUtsK_ZM7s7uYGWBAcIs.roa
Signing time: Sat 01 Jan 2022 04:55:20 +0000
ROA not before: Sat 01 Jan 2022 04:55:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47389
IP address blocks: 46.33.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400723353 (0x17e28d99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1bf8f3e609072889e74dd0fb4e27f9bac47b3b0
Validity
Not Before: Jan 1 04:55:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39dec866166852db0afd933bb3bb98196040708b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ca:f1:d7:c3:7e:e6:9d:70:1d:7f:68:32:75:
e8:68:cb:2b:60:e4:17:02:7a:4c:fb:c1:a8:78:51:
cd:da:16:01:5d:af:d5:c2:b5:3c:e7:5a:b5:e9:1b:
bd:02:a8:98:21:bb:46:7a:aa:71:76:50:0d:f5:f4:
bb:a3:9c:12:01:e0:b5:4d:74:da:ed:b9:fc:81:d1:
0e:cb:7a:aa:3a:19:f4:9f:f9:10:b2:ec:78:a0:3d:
d5:c2:0c:b6:11:ab:43:5f:38:cf:b1:60:bc:69:eb:
1d:c6:42:4a:c1:0d:6b:ee:ba:c2:6d:51:73:07:0e:
cc:fa:f3:d1:39:68:bc:49:11:5b:5a:79:ab:e5:fb:
2e:30:f0:44:9f:b8:4d:ee:f9:ca:40:fa:0e:eb:c5:
53:4e:02:65:8e:4d:f8:41:eb:9a:67:17:9c:9a:9f:
f3:01:b6:c4:47:db:97:3e:96:58:75:7a:b9:ab:18:
2e:78:92:2e:27:d0:9b:93:54:15:fa:36:83:37:b1:
ee:85:04:dd:dc:ee:66:d3:21:77:04:ed:07:f3:b1:
5b:42:da:8a:1c:71:48:13:b7:51:c6:b6:83:93:a0:
9e:27:ef:97:18:e2:63:cd:d8:ca:3c:dd:28:b6:64:
b8:df:c3:e3:b8:73:62:da:52:6a:9b:6d:d0:83:35:
14:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:DE:C8:66:16:68:52:DB:0A:FD:93:3B:B3:BB:98:19:60:40:70:8B
X509v3 Authority Key Identifier:
keyid:C1:BF:8F:3E:60:90:72:88:9E:74:DD:0F:B4:E2:7F:9B:AC:47:B3:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wb-PPmCQcoiedN0PtOJ_m6xHs7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/Od7IZhZoUtsK_ZM7s7uYGWBAcIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/wb-PPmCQcoiedN0PtOJ_m6xHs7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.33.53.0/24
Signature Algorithm: sha256WithRSAEncryption
61:89:73:33:42:39:0e:53:7f:b4:e1:71:ca:ae:9e:00:bf:0f:
52:2e:e0:aa:76:4b:7a:35:1f:1b:5e:5b:03:39:75:d9:29:2d:
b1:3f:9d:3e:e3:5c:4e:fc:8b:e1:19:93:f9:ab:34:e8:43:ed:
a7:ac:7a:43:a8:2c:9a:9d:8c:06:62:1e:82:2f:c6:56:ee:bd:
fa:c9:eb:29:da:a1:40:49:d9:27:d1:87:2f:c3:dc:3d:3f:40:
1a:ec:7c:ac:bc:23:e7:69:bb:d6:91:d8:21:a6:82:32:10:7e:
c7:00:7c:78:dc:b5:02:5c:1f:29:d0:e8:80:7b:56:53:6c:6f:
85:3b:66:e2:cf:74:2c:45:18:b9:c2:65:40:ea:73:84:55:37:
66:1b:16:87:be:6c:93:97:cf:a3:0d:62:16:26:f9:08:12:b4:
b6:50:cf:0d:ba:0a:06:12:f4:c3:30:2e:35:d0:02:13:7f:7d:
01:33:9e:92:99:f2:89:80:db:ce:18:86:e8:4b:95:17:35:ef:
7a:9d:cd:27:76:93:a8:66:c9:1d:78:00:06:dc:ad:d4:85:bc:
82:7d:a2:d9:9b:e4:c9:4c:64:da:1d:ec:74:f4:26:7a:e8:e0:
4a:1c:46:de:0d:a3:64:45:ca:19:7d:44:da:d0:2a:1a:0a:50:
fe:f1:6e:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:28 2023 by rpki-client on console.sobornost.net