Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/_gaf5rQbPV-Lqx7QPK51CSIiNW4.roa
File: _gaf5rQbPV-Lqx7QPK51CSIiNW4.roa (raw, json)
Hash identifier: T+VPE2r/9WZ52ABPMdcbSfDM0Un5EVcqPywNc5XRgOQ=
Subject key identifier: FE:06:9F:E6:B4:1B:3D:5F:8B:AB:1E:D0:3C:AE:75:09:22:22:35:6E
Certificate issuer: /CN=e37ee1eced19f8a0a3a635bfaa264293e3437795
Certificate serial: 3583712E
Authority key identifier: E3:7E:E1:EC:ED:19:F8:A0:A3:A6:35:BF:AA:26:42:93:E3:43:77:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/437h7O0Z-KCjpjW_qiZCk-NDd5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/_gaf5rQbPV-Lqx7QPK51CSIiNW4.roa
Signing time: Tue 26 Apr 2022 17:31:05 +0000
ROA not before: Tue 26 Apr 2022 17:31:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 18046
IP address blocks: 46.32.186.0/24 maxlen: 24
46.32.184.0/22 maxlen: 22
46.32.185.0/24 maxlen: 24
46.32.184.0/24 maxlen: 24
46.32.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 897806638 (0x3583712e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e37ee1eced19f8a0a3a635bfaa264293e3437795
Validity
Not Before: Apr 26 17:31:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe069fe6b41b3d5f8bab1ed03cae75092222356e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:9d:96:e0:d0:85:f2:8c:36:de:9c:ef:b7:53:
4d:3c:5e:e6:71:35:81:74:02:30:45:9e:1f:ed:fb:
53:89:e4:75:8a:4e:1b:8f:24:30:39:de:e7:82:84:
80:85:ca:78:26:ff:d3:47:28:e0:f1:fe:17:4b:98:
91:bc:e7:dc:55:f4:fc:02:a5:7f:2e:00:18:63:a5:
a8:b0:02:31:13:e1:32:db:2d:80:ae:35:f0:91:a2:
ed:e1:af:9f:eb:32:37:6c:fe:57:cd:b7:ad:92:a7:
61:21:0c:c8:81:42:b9:2b:05:42:e9:b3:04:a7:93:
5c:86:bd:80:ee:b3:a6:8b:8a:5c:46:b6:07:f8:58:
b6:33:92:4a:11:44:a7:0b:26:b7:93:e8:4a:b1:61:
cb:a0:78:62:4f:a1:ce:5a:3e:98:db:e2:37:67:90:
67:a7:d8:85:0a:6c:5c:7d:65:8c:5f:20:46:22:83:
59:01:63:5f:2b:1d:47:9e:3e:bc:5e:05:2a:5b:33:
ff:e8:86:cf:6d:f0:3f:67:7d:c3:0d:61:4c:3f:33:
8c:3f:d9:be:9c:cb:f3:75:65:7d:41:fd:9a:4b:91:
f3:59:69:8d:9f:30:c3:38:a6:12:b5:ab:53:39:d1:
d4:59:14:bf:cc:1d:b4:8b:aa:f3:0a:9c:20:d4:d7:
d1:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:06:9F:E6:B4:1B:3D:5F:8B:AB:1E:D0:3C:AE:75:09:22:22:35:6E
X509v3 Authority Key Identifier:
keyid:E3:7E:E1:EC:ED:19:F8:A0:A3:A6:35:BF:AA:26:42:93:E3:43:77:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/437h7O0Z-KCjpjW_qiZCk-NDd5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/_gaf5rQbPV-Lqx7QPK51CSIiNW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/437h7O0Z-KCjpjW_qiZCk-NDd5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.32.184.0/22
Signature Algorithm: sha256WithRSAEncryption
31:d4:c6:a2:5a:43:c0:49:3d:e1:ac:47:88:79:1d:b4:d3:79:
dc:01:25:56:72:4b:24:3f:4f:6a:e2:a7:35:6b:c6:06:73:22:
7f:2c:cd:11:8d:b0:84:2b:c7:0f:64:16:83:6e:be:2a:c7:51:
3e:e1:3a:e6:37:c4:61:29:2b:ab:29:3b:3a:a7:e4:85:44:cb:
1e:c4:a7:25:aa:94:a5:de:c7:59:d1:4c:9d:3a:67:fa:1d:92:
99:ef:c7:9d:27:87:1b:a6:f7:4a:6e:60:be:b3:73:21:3a:19:
15:db:39:9b:24:67:16:b4:e0:d1:0d:f4:e4:a4:34:f4:0c:aa:
05:63:1b:85:a2:27:71:06:0d:44:91:f8:27:a9:72:4a:af:e1:
f4:eb:05:a0:08:d7:25:01:72:67:e9:61:4c:c1:59:08:01:ff:
14:75:85:b2:a9:ca:60:df:07:92:a4:33:87:86:55:28:e3:47:
9f:ce:3e:c1:25:52:43:3e:73:56:25:7b:53:dc:9e:c0:59:8a:
c6:f4:34:71:f1:09:d1:24:bd:51:27:90:d3:0c:db:3d:4d:0f:
73:3c:fb:bf:33:cb:56:84:49:fa:88:e0:7b:36:7c:70:30:35:
17:fd:66:a3:5c:0d:f9:e5:d0:22:4e:2d:00:51:0e:5f:44:4c:
ef:07:9a:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:12:05 2025 by rpki-client