Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/xIrIyQ2fOeRqIgADzs6FNn-CrWE.roa
File: xIrIyQ2fOeRqIgADzs6FNn-CrWE.roa (raw, json)
Hash identifier: y5c2gKHIgZ85mEaAI8WPwPFKmNkzj/CL00RTEyDJ6AI=
Subject key identifier: C4:8A:C8:C9:0D:9F:39:E4:6A:22:00:03:CE:CE:85:36:7F:82:AD:61
Certificate issuer: /CN=e37ee1eced19f8a0a3a635bfaa264293e3437795
Certificate serial: 35AC42A4
Authority key identifier: E3:7E:E1:EC:ED:19:F8:A0:A3:A6:35:BF:AA:26:42:93:E3:43:77:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/437h7O0Z-KCjpjW_qiZCk-NDd5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/xIrIyQ2fOeRqIgADzs6FNn-CrWE.roa
Signing time: Wed 11 May 2022 13:59:30 +0000
ROA not before: Wed 11 May 2022 13:59:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29049
IP address blocks: 46.32.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 900481700 (0x35ac42a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e37ee1eced19f8a0a3a635bfaa264293e3437795
Validity
Not Before: May 11 13:59:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c48ac8c90d9f39e46a220003cece85367f82ad61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:f8:9f:3e:f0:e8:60:15:58:41:70:b0:9d:50:
e8:fc:0f:65:37:89:00:ba:b4:68:d5:8e:c7:ff:78:
a6:d0:f4:1c:37:c8:2b:4a:d9:24:89:17:7f:43:0e:
b5:fa:fa:86:3c:c4:cd:b0:28:46:a4:b3:55:0c:99:
15:c9:0f:7c:45:77:6a:b3:b1:71:c9:46:ae:79:f2:
13:a7:90:59:f6:75:fa:e9:a8:92:52:67:0e:b1:ef:
14:63:e9:67:a0:ef:f4:f7:61:92:a2:1f:81:a7:9c:
a6:1d:4c:59:be:cd:ba:26:8b:54:32:1a:9b:dc:82:
f1:1a:40:63:f1:61:22:a1:28:4b:3b:43:f9:f8:c9:
88:41:b7:79:ab:3b:d8:72:e9:87:cb:2e:19:3d:ba:
4e:e5:1f:68:be:89:29:8d:80:85:5a:95:af:98:88:
9f:d0:9a:35:bb:c3:aa:ec:09:4b:6a:30:a5:49:a2:
27:be:6f:7f:9d:e3:1c:b0:63:f7:85:e6:1c:7a:5a:
76:4a:10:4c:9e:62:d7:07:70:7a:1b:14:d4:5e:c3:
4e:0d:0c:65:c2:0d:12:b4:fa:b1:22:3d:9f:b2:f5:
39:e9:e9:cb:e1:a4:10:8d:77:f4:10:df:2f:a3:cf:
72:d3:9a:63:90:70:18:32:7a:ba:50:23:e3:94:18:
2a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:8A:C8:C9:0D:9F:39:E4:6A:22:00:03:CE:CE:85:36:7F:82:AD:61
X509v3 Authority Key Identifier:
keyid:E3:7E:E1:EC:ED:19:F8:A0:A3:A6:35:BF:AA:26:42:93:E3:43:77:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/437h7O0Z-KCjpjW_qiZCk-NDd5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/xIrIyQ2fOeRqIgADzs6FNn-CrWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/437h7O0Z-KCjpjW_qiZCk-NDd5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.32.175.0/24
Signature Algorithm: sha256WithRSAEncryption
47:0f:f4:3c:a3:ff:1a:a4:92:cd:d7:e0:36:f9:5a:ac:8f:84:
ff:42:fb:fc:4e:28:8d:6f:cc:e3:c4:6b:85:6c:1f:fa:07:89:
c0:e5:3e:bd:15:ed:1e:d9:c7:09:13:b5:7e:de:00:48:15:e9:
65:ab:95:b4:f3:86:c5:92:6d:a1:88:e0:7e:69:e3:af:0e:1e:
5a:39:44:5f:da:48:d4:93:57:9a:da:ad:5f:06:97:1e:5b:3e:
c7:08:47:05:19:c3:3c:cf:c3:9c:91:fd:1e:ee:96:8c:83:04:
5b:e8:47:6b:26:84:90:00:ed:bc:a8:02:4d:72:71:da:bd:18:
29:98:a7:00:af:89:5f:be:0e:7b:74:11:d8:b9:1a:3a:d9:ac:
bc:74:76:22:30:ac:e1:22:1e:85:fc:5c:e7:71:16:3a:9e:37:
7b:96:71:26:32:18:4c:69:fe:c9:c3:dc:46:02:f8:8f:21:13:
c4:ef:48:a3:2f:fe:fb:64:fa:a4:10:e2:b4:3d:02:32:d8:b4:
11:60:35:da:60:27:5d:1a:70:17:6c:e3:70:95:8f:81:1d:cb:
8e:d8:59:83:a4:a7:12:87:b1:17:37:26:79:20:3a:4c:f2:8c:
66:26:68:ad:f6:8e:20:e6:ce:bd:d5:ec:96:da:ab:9d:ae:1a:
19:e0:e3:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:11 2024 by rpki-client on console-fra.rpki-client.org