Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/FxhkgwCf-hUCt9YEsfV1-ummW4M.roa
File: FxhkgwCf-hUCt9YEsfV1-ummW4M.roa (raw, json)
Hash identifier: fFjyj/SSLg/8eHHYChD0tJ8/QTsO+0jfJLrO2OlbYBc=
Subject key identifier: 17:18:64:83:00:9F:FA:15:02:B7:D6:04:B1:F5:75:FA:E9:A6:5B:83
Certificate issuer: /CN=e37ee1eced19f8a0a3a635bfaa264293e3437795
Certificate serial: 353F1202
Authority key identifier: E3:7E:E1:EC:ED:19:F8:A0:A3:A6:35:BF:AA:26:42:93:E3:43:77:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/437h7O0Z-KCjpjW_qiZCk-NDd5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/FxhkgwCf-hUCt9YEsfV1-ummW4M.roa
Signing time: Thu 31 Mar 2022 04:11:55 +0000
ROA not before: Thu 31 Mar 2022 04:11:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213402
IP address blocks: 46.32.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 893325826 (0x353f1202)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e37ee1eced19f8a0a3a635bfaa264293e3437795
Validity
Not Before: Mar 31 04:11:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17186483009ffa1502b7d604b1f575fae9a65b83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:be:cf:e7:2c:41:52:a8:f1:e1:2f:28:2a:85:
9a:70:1c:b4:ff:f2:cb:0f:f7:55:a1:50:37:98:84:
1d:6a:b3:45:f7:43:ea:fb:80:b0:37:2a:59:a9:15:
54:5e:61:5f:3d:85:32:cd:18:4c:61:c4:7c:e6:95:
1f:d1:04:31:75:eb:27:ad:1a:33:76:56:01:e6:de:
13:a9:4d:7c:d5:12:ed:78:b6:55:ca:d3:33:ff:6b:
12:89:f0:27:1f:95:d3:b3:0c:2b:7c:4c:e1:ba:bd:
4c:ff:90:cf:f0:c5:da:70:cf:95:90:fe:06:43:46:
58:bd:7e:5f:48:38:f9:9b:03:a5:4c:ee:e1:46:ae:
a3:8d:9d:e4:21:32:61:5a:c0:7b:4f:67:8d:e4:4d:
16:3b:9e:8f:ee:a3:12:46:d8:03:59:9e:b3:1c:1e:
5b:41:e0:9e:fa:7f:7e:44:57:44:28:c1:b5:ed:85:
a8:07:28:13:f5:13:76:bd:02:e8:5c:57:e2:ef:f0:
b8:60:a2:4d:1e:3e:19:48:b8:cf:8d:58:56:e8:ae:
f7:fc:2c:ef:ba:da:1c:99:56:ad:3e:d2:bc:fb:8a:
6d:9e:0d:49:d9:7e:c0:a8:ca:7e:92:b1:c6:bd:52:
d3:3c:f3:5b:76:60:90:77:06:5c:b1:08:25:64:2e:
2c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:18:64:83:00:9F:FA:15:02:B7:D6:04:B1:F5:75:FA:E9:A6:5B:83
X509v3 Authority Key Identifier:
keyid:E3:7E:E1:EC:ED:19:F8:A0:A3:A6:35:BF:AA:26:42:93:E3:43:77:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/437h7O0Z-KCjpjW_qiZCk-NDd5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/FxhkgwCf-hUCt9YEsfV1-ummW4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/437h7O0Z-KCjpjW_qiZCk-NDd5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.32.172.0/24
Signature Algorithm: sha256WithRSAEncryption
47:1c:fd:0d:b6:bd:bc:c9:b1:2e:c2:25:fa:b5:7d:1d:60:11:
32:ff:f4:2a:ec:48:7a:28:97:4c:d4:31:c6:bb:4f:c8:3e:bc:
1e:b5:bc:e9:5c:a3:d6:fd:aa:c9:04:92:fb:1a:fd:ad:12:e5:
a3:67:5c:13:7a:b1:5d:6e:56:3c:b1:05:fa:66:d4:c6:22:66:
3d:e3:1e:dc:c2:9b:39:25:ff:75:a7:8c:2c:12:00:66:2d:87:
cb:0f:b9:e3:8d:ea:29:b2:64:17:1f:bd:d5:2d:bd:d2:d9:0e:
b0:bb:df:2b:7d:14:e5:12:db:39:11:e7:a1:65:f2:37:fb:c6:
4f:7c:a0:91:27:4c:10:de:cb:f0:7e:4a:97:dd:cc:fd:2a:f9:
74:c3:26:f7:1e:69:db:17:ba:71:2f:cb:dd:22:a6:7c:bb:e8:
72:73:1e:a0:27:18:03:51:01:5a:a4:ab:e9:fa:d2:61:b1:1f:
9d:1e:2e:9f:5d:cb:f9:e1:e7:4c:bf:08:a3:0d:24:d4:da:32:
26:0c:22:c0:ef:30:45:49:86:21:4a:df:bf:27:5f:66:4d:77:
fc:2d:8f:b1:f2:78:5a:18:3f:66:05:b2:cd:83:63:5f:23:77:
53:a7:e5:b5:44:ad:6e:7e:25:09:c8:0e:b0:0e:e6:e6:b9:34:
92:7b:7f:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:39 2023 by rpki-client on console-ams.rpki-client.org