Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/_RObfS1IQG6NICpZyd95UE4C_do.roa
File: _RObfS1IQG6NICpZyd95UE4C_do.roa (raw, json)
Hash identifier: vvOg0VtTg4lMsc8ZZ8KbDAZdyFpRQmVkdpiWWkplcIs=
Subject key identifier: FD:13:9B:7D:2D:48:40:6E:8D:20:2A:59:C9:DF:79:50:4E:02:FD:DA
Certificate issuer: /CN=52a59bf043080306359f5a29491f545b07051c05
Certificate serial: 132980D2
Authority key identifier: 52:A5:9B:F0:43:08:03:06:35:9F:5A:29:49:1F:54:5B:07:05:1C:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqWb8EMIAwY1n1opSR9UWwcFHAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/_RObfS1IQG6NICpZyd95UE4C_do.roa
Signing time: Sat 01 Jan 2022 01:53:10 +0000
ROA not before: Sat 01 Jan 2022 01:53:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28716
IP address blocks: 46.183.232.0/21 maxlen: 21
185.133.216.0/22 maxlen: 22
2a03:9c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 321487058 (0x132980d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a59bf043080306359f5a29491f545b07051c05
Validity
Not Before: Jan 1 01:53:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd139b7d2d48406e8d202a59c9df79504e02fdda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:07:0c:fa:5d:02:df:24:31:c1:3f:b1:08:c2:
6a:c4:c7:41:86:c1:17:e2:df:e8:7c:bd:72:00:cf:
de:a0:5a:f4:c2:55:c7:ec:62:5b:e1:4e:44:dd:01:
a4:98:13:12:24:16:74:fb:2e:aa:ba:e7:bf:2d:5f:
0b:39:0b:61:d1:78:c0:60:86:82:b0:e5:d1:d1:49:
86:53:91:b7:a9:c8:39:8a:f5:17:b4:90:60:af:6a:
1e:5d:94:85:e8:24:d0:14:2e:43:a3:3d:05:2d:80:
10:91:d6:3b:50:ca:1b:0c:6e:2e:fb:5b:8b:55:b8:
11:86:90:43:74:df:83:df:f6:e3:16:d9:6c:f8:c5:
39:63:c2:22:a6:97:67:67:72:37:84:8e:44:b0:94:
b1:f4:e7:3b:b1:10:7d:1e:77:2d:e0:da:f2:db:fe:
df:70:3e:f7:51:88:cf:62:d7:41:3a:b5:3d:66:5e:
01:59:f3:ee:a6:da:2f:07:0d:30:17:10:23:65:45:
b5:cc:5d:4d:e2:5e:b7:4f:19:2e:c1:f3:96:34:53:
b7:c6:1a:da:87:78:9c:ba:5c:2f:09:e7:9f:b7:31:
2f:8a:d0:8c:3c:f9:3e:c8:47:83:e3:8d:f2:c6:38:
fa:02:7e:7b:94:2d:d5:95:29:ce:15:ad:44:9b:eb:
bb:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:13:9B:7D:2D:48:40:6E:8D:20:2A:59:C9:DF:79:50:4E:02:FD:DA
X509v3 Authority Key Identifier:
keyid:52:A5:9B:F0:43:08:03:06:35:9F:5A:29:49:1F:54:5B:07:05:1C:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqWb8EMIAwY1n1opSR9UWwcFHAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/_RObfS1IQG6NICpZyd95UE4C_do.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.232.0/21
185.133.216.0/22
IPv6:
2a03:9c0::/32
Signature Algorithm: sha256WithRSAEncryption
ab:bb:17:b0:01:a7:6a:66:a5:6c:be:b1:60:e3:a4:d7:8d:f7:
13:85:a2:89:0b:0e:82:9a:21:f9:5f:b9:fb:02:21:d5:ed:8e:
0d:2a:cd:7e:e3:72:43:14:12:80:f4:53:30:e2:4c:2a:99:e4:
47:5a:ec:80:4e:56:55:34:d3:cc:14:3f:06:3c:18:23:23:09:
1a:86:1a:9d:c7:49:c9:b2:43:4a:85:78:8e:81:3c:aa:42:ef:
0e:c4:9d:c8:c3:b2:ce:dc:8c:6b:ef:b1:fc:9c:5c:d5:bd:4c:
8a:e8:31:3e:56:33:a6:2c:6b:28:b1:9e:90:2e:11:ce:36:56:
a6:f3:91:40:c0:dc:b9:dd:77:1d:0d:73:f8:b6:97:0b:23:47:
ca:ee:52:68:0b:0d:25:d7:17:78:aa:9e:c3:eb:c0:9e:50:db:
55:30:51:de:cb:e3:2b:15:ad:d0:72:f3:27:c0:57:24:6a:1c:
ee:7f:9d:72:20:79:55:97:20:22:0a:21:76:8c:e6:16:40:49:
47:90:c2:1f:5b:74:c4:67:a2:82:09:ee:7e:04:63:ec:2f:8e:
8f:95:c3:db:48:e4:98:61:38:46:c8:37:ae:2a:a1:72:97:75:
5e:b6:eb:c5:58:68:26:e4:66:d9:b5:bd:2d:80:30:b2:fd:79:
d0:0a:f1:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:15 2023 by rpki-client on console.sobornost.net