Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/E3KRzEfFTWQE9thN_wrExoHj2bQ.roa
File: E3KRzEfFTWQE9thN_wrExoHj2bQ.roa (raw, json)
Hash identifier: pLQ4KakR1KxQfWFBWTggAAuQBSKgtBvChQKG7+RSqbE=
Subject key identifier: 13:72:91:CC:47:C5:4D:64:04:F6:D8:4D:FF:0A:C4:C6:81:E3:D9:B4
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 04293EA1
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/E3KRzEfFTWQE9thN_wrExoHj2bQ.roa
Signing time: Thu 17 Mar 2022 05:26:06 +0000
ROA not before: Thu 17 Mar 2022 05:26:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212027
IP address blocks: 46.37.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69811873 (0x4293ea1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Mar 17 05:26:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=137291cc47c54d6404f6d84dff0ac4c681e3d9b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:66:17:45:53:b6:2e:04:9e:e6:29:de:c3:a1:
ac:eb:19:06:00:29:ef:6a:7e:e4:e7:a3:e0:4b:d4:
85:f0:9b:ab:32:67:69:5b:22:be:58:18:4f:ac:ce:
b5:7f:07:5d:46:92:c2:d0:a5:40:4b:fd:4b:4d:93:
ea:c4:9e:2b:90:68:a2:b0:b0:d1:5f:1f:5d:11:60:
2f:5e:c0:22:d8:72:88:f8:4e:4e:81:84:0b:77:69:
57:d2:45:99:21:2d:8c:13:65:20:43:15:d3:0c:44:
50:d6:26:ef:cf:1b:51:f8:ff:2a:cc:46:2d:dd:3b:
f1:84:03:0e:ba:2a:c3:98:61:47:95:05:67:89:f9:
02:31:ff:a3:67:e4:19:9e:0f:79:30:9d:f1:6b:ef:
38:10:6c:2e:87:b3:ef:b2:92:5e:ce:42:28:2d:c3:
59:41:94:03:38:71:1e:3c:55:34:0f:e6:a7:ed:20:
89:4a:a5:00:02:71:3e:a1:36:38:a0:8d:5c:b0:5c:
d5:3b:7d:9f:a7:b7:1b:85:41:1d:ad:55:91:ed:a7:
9e:7a:92:38:fb:67:df:e5:5c:9f:ce:c4:a7:c4:8b:
65:9b:af:7f:72:73:e5:17:18:06:0b:0a:90:72:18:
c6:27:9c:db:bf:52:3e:d1:88:c8:bc:30:3d:30:af:
e4:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:72:91:CC:47:C5:4D:64:04:F6:D8:4D:FF:0A:C4:C6:81:E3:D9:B4
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/E3KRzEfFTWQE9thN_wrExoHj2bQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.99.0/24
Signature Algorithm: sha256WithRSAEncryption
98:ab:b1:80:30:56:b8:d7:30:0c:8d:bf:ae:c6:d4:3a:53:a6:
b1:5d:01:f6:55:9a:48:bf:ea:ee:48:8b:1d:58:38:9f:54:50:
75:7f:9a:76:7a:00:f9:f9:33:16:66:7b:45:63:c7:91:40:45:
d1:d9:e3:cd:06:14:29:2e:cf:78:8f:02:2a:05:fb:3f:86:d8:
41:8c:fd:ae:39:55:46:df:79:0e:31:ef:38:26:63:77:d8:38:
61:be:ea:66:47:a7:a0:b1:19:e7:d1:70:91:b5:85:3b:74:a1:
36:ef:fa:99:f7:40:13:27:88:39:ab:c7:7b:ae:0c:b6:b6:57:
1c:ac:78:eb:ed:6c:0e:be:83:75:a7:7f:a4:3d:48:82:47:40:
cf:a0:bc:67:d1:9d:67:e3:64:9d:b7:6a:5f:50:fe:91:8f:2e:
cf:70:06:2b:cc:3b:f7:27:ff:bf:b9:31:f1:4c:6b:98:00:9e:
ea:db:a5:c7:8b:10:ff:6c:09:b5:74:9a:48:df:b3:a8:b1:0e:
1c:3c:c2:de:7b:b5:58:18:0f:27:cd:55:1b:7b:bd:4a:dc:13:
91:d6:dc:ab:93:ee:1b:57:95:7a:d3:5b:54:55:91:3d:1b:ce:
4d:4c:a7:9b:41:3a:04:1c:d6:32:59:a2:e1:de:45:b7:46:b5:
13:9b:c5:f0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBCk+oTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
M2NmMDg4NDkxOGE1MDIzOWVmNzA1MThlZTlmYzA0ZjFhYWUxOTI5MB4XDTIyMDMx
NzA1MjYwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTM3MjkxY2M0N2M1
NGQ2NDA0ZjZkODRkZmYwYWM0YzY4MWUzZDliNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJpmF0VTti4EnuYp3sOhrOsZBgAp72p+5Oej4EvUhfCbqzJn
aVsivlgYT6zOtX8HXUaSwtClQEv9S02T6sSeK5BoorCw0V8fXRFgL17AIthyiPhO
ToGEC3dpV9JFmSEtjBNlIEMV0wxEUNYm788bUfj/KsxGLd078YQDDroqw5hhR5UF
Z4n5AjH/o2fkGZ4PeTCd8WvvOBBsLoez77KSXs5CKC3DWUGUAzhxHjxVNA/mp+0g
iUqlAAJxPqE2OKCNXLBc1Tt9n6e3G4VBHa1Vke2nnnqSOPtn3+Vcn87Ep8SLZZuv
f3Jz5RcYBgsKkHIYxiec279SPtGIyLwwPTCv5P8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQTcpHMR8VNZAT22E3/CsTGgePZtDAfBgNVHSMEGDAWgBTTzwiEkYpQI573
BRjun8BPGq4ZKTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzA4OEloSkdLVUNPZTl3VVk3cF9BVHhxdUdTay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTcvY2RmZjE2LTQ1OGEtNDdjMy04ZGZhLTIzMTU0OTQwOTcyMC8x
L0UzS1J6RWZGVFdRRTl0aE5fd3JFeG9IajJiUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTcv
Y2RmZjE2LTQ1OGEtNDdjMy04ZGZhLTIzMTU0OTQwOTcyMC8xLzA4OEloSkdLVUNP
ZTl3VVk3cF9BVHhxdUdTay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC4lYzANBgkqhkiG9w0BAQsFAAOC
AQEAmKuxgDBWuNcwDI2/rsbUOlOmsV0B9lWaSL/q7kiLHVg4n1RQdX+adnoA+fkz
FmZ7RWPHkUBF0dnjzQYUKS7PeI8CKgX7P4bYQYz9rjlVRt95DjHvOCZjd9g4Yb7q
ZkenoLEZ59FwkbWFO3ShNu/6mfdAEyeIOavHe64MtrZXHKx46+1sDr6Ddad/pD1I
gkdAz6C8Z9GdZ+NknbdqX1D+kY8uz3AGK8w79yf/v7kx8UxrmACe6tulx4sQ/2wJ
tXSaSN+zqLEOHDzC3nu1WBgPJ81VG3u9StwTkdbcq5PuG1eVetNbVFWRPRvOTUyn
m0E6BBzWMlmi4d5Ft0a1E5vF8A==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:34 2023 by rpki-client on console-ams.rpki-client.org