Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/G8FEij2sRtvZQzUOqMOJLPhwmTM.roa
File: G8FEij2sRtvZQzUOqMOJLPhwmTM.roa (raw, json)
Hash identifier: YjbrxbYQDZ0D9BlaNfUt9f6AoG3MFyxgcl0gR66bXro=
Subject key identifier: 1B:C1:44:8A:3D:AC:46:DB:D9:43:35:0E:A8:C3:89:2C:F8:70:99:33
Certificate issuer: /CN=e37ee1eced19f8a0a3a635bfaa264293e3437795
Certificate serial: 3462C727
Authority key identifier: E3:7E:E1:EC:ED:19:F8:A0:A3:A6:35:BF:AA:26:42:93:E3:43:77:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/437h7O0Z-KCjpjW_qiZCk-NDd5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/G8FEij2sRtvZQzUOqMOJLPhwmTM.roa
Signing time: Sat 01 Jan 2022 07:54:12 +0000
ROA not before: Sat 01 Jan 2022 07:54:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200154
IP address blocks: 46.32.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 878888743 (0x3462c727)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e37ee1eced19f8a0a3a635bfaa264293e3437795
Validity
Not Before: Jan 1 07:54:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1bc1448a3dac46dbd943350ea8c3892cf8709933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:80:81:27:21:cf:ed:a2:b6:54:9e:f5:ff:f0:
df:69:74:d4:e6:3e:ce:a1:a0:2a:db:6e:87:0e:aa:
4b:66:9e:64:06:0e:7f:98:a7:ec:cb:f4:28:93:a8:
3a:59:6f:c9:0f:cd:e1:69:37:c5:b2:e2:21:77:84:
72:b6:6a:78:f9:dc:10:06:31:35:bc:62:58:e3:97:
37:cc:64:ba:69:4e:c9:1e:cd:12:85:80:60:a1:c9:
e1:74:04:1b:f2:e5:89:04:56:46:af:00:d8:a0:c1:
83:2e:fe:3b:4d:07:2c:67:2a:1f:3d:3a:83:e8:ad:
0b:14:ef:a9:f3:b8:3a:bc:ab:92:26:d0:9b:6a:c4:
d7:e2:e9:67:e2:65:f7:a7:43:ed:87:51:0a:f4:98:
21:89:ce:0a:b2:ae:74:0d:19:2e:bf:29:c0:3e:bf:
7c:84:9d:4e:81:87:99:6e:f1:18:3a:bd:f6:a5:b8:
8b:26:09:21:ad:73:ef:e1:c2:5a:03:cc:b7:83:e8:
4e:44:a8:e0:21:ee:2a:7f:ce:16:eb:49:cc:64:8c:
7f:43:78:c5:36:cd:26:e5:7e:cd:22:de:a2:89:92:
38:a5:88:8b:95:82:ef:b9:67:27:e1:99:6d:36:73:
81:9d:f4:da:18:af:b3:b2:d5:f9:9a:70:4f:0c:1d:
76:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:C1:44:8A:3D:AC:46:DB:D9:43:35:0E:A8:C3:89:2C:F8:70:99:33
X509v3 Authority Key Identifier:
keyid:E3:7E:E1:EC:ED:19:F8:A0:A3:A6:35:BF:AA:26:42:93:E3:43:77:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/437h7O0Z-KCjpjW_qiZCk-NDd5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/G8FEij2sRtvZQzUOqMOJLPhwmTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/437h7O0Z-KCjpjW_qiZCk-NDd5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.32.163.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:03:36:a0:9a:06:1e:66:2e:7c:d4:d2:db:89:bc:32:a4:e7:
9a:cf:f8:9c:6d:67:ae:18:03:79:32:0c:6c:1a:ce:f9:b8:11:
b9:1f:90:62:da:71:83:29:a5:e4:54:1b:97:3e:a3:9d:8e:db:
c4:76:f0:65:9c:f0:f3:68:17:66:84:0e:cc:62:9a:23:89:41:
be:17:36:8d:b3:06:a8:83:27:11:8d:59:33:73:2a:f3:75:4d:
73:d9:36:d4:9f:96:59:be:af:47:fe:10:70:74:36:3d:a8:ba:
70:c2:9f:3b:95:6a:04:63:8d:3c:c9:bc:c3:2e:ed:90:25:ae:
9a:f4:35:20:b8:8b:52:93:f7:5f:75:a9:f5:d6:61:68:77:f9:
e1:b5:cb:76:a7:18:20:1d:fe:c9:9a:ca:49:76:93:35:5f:18:
b7:2a:64:fb:98:3d:d1:4d:da:0d:1d:61:e7:7c:aa:3a:42:35:
a5:b1:bb:14:23:42:e6:ac:af:42:41:76:a9:8a:68:7d:ea:b0:
bc:c0:2c:bc:71:b5:b0:f6:d2:cb:0b:de:e0:81:b2:18:79:ca:
b4:81:db:eb:46:89:a2:a2:26:06:38:7f:9e:34:d9:8e:ff:35:
01:a4:ab:ce:67:75:db:98:c5:bf:85:b0:0a:67:1c:7e:aa:65:
2d:f5:d7:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:39 2023 by rpki-client on console-ams.rpki-client.org