Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/EgQwdrTu4JbJo8hUK3w2ElmfOGE.roa
File: EgQwdrTu4JbJo8hUK3w2ElmfOGE.roa (raw, json)
Hash identifier: M5QTxTCjVS8HfY3PthZHWCBD9COiks6Iwn06zyexQQM=
Subject key identifier: 12:04:30:76:B4:EE:E0:96:C9:A3:C8:54:2B:7C:36:12:59:9F:38:61
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 033474C5
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/EgQwdrTu4JbJo8hUK3w2ElmfOGE.roa
Signing time: Sat 01 Jan 2022 09:57:17 +0000
ROA not before: Sat 01 Jan 2022 09:57:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 139660
IP address blocks: 46.37.102.0/24 maxlen: 24
46.37.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53769413 (0x33474c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jan 1 09:57:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12043076b4eee096c9a3c8542b7c3612599f3861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:03:f6:eb:09:00:2d:0f:0e:09:40:f0:9c:ea:
f9:94:9c:e0:75:7e:1c:19:8b:1a:74:ea:2b:1f:2a:
0e:26:aa:19:df:18:9b:88:fe:a8:d7:a6:13:29:4c:
7d:b4:07:cf:83:c0:a0:89:83:25:bc:9c:7c:98:99:
61:01:35:31:5f:51:e5:7a:93:8b:4c:e3:f9:d7:65:
bf:03:f9:d3:04:33:0f:53:a2:5c:0c:f6:0d:15:00:
fe:7f:b7:16:51:01:4d:14:8b:4e:98:51:f9:d7:f4:
de:0d:bd:e3:b4:ce:9e:d5:70:1d:46:0b:ec:12:b4:
a7:d6:02:8a:f8:2d:97:e7:f4:4f:c1:f7:9c:a0:49:
d9:e3:dc:bd:52:41:bc:2c:80:08:07:ab:d5:60:05:
fd:1c:ab:69:2c:37:e9:1f:30:04:b7:ce:56:4f:c8:
cd:08:51:4d:96:bf:5e:fd:a5:18:c1:89:25:97:e3:
d6:81:5c:4b:ac:69:76:00:fa:6b:53:62:04:04:44:
36:b9:77:f9:8b:5e:fa:dc:5d:85:52:34:d9:fd:5f:
8b:df:03:56:db:9f:c9:6a:70:57:b9:93:ad:9f:dd:
bb:96:26:6a:3a:c6:8b:ae:cb:f4:52:b0:c0:28:a2:
ce:26:5d:7b:0d:43:37:52:90:cc:3a:49:aa:b6:06:
3f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:04:30:76:B4:EE:E0:96:C9:A3:C8:54:2B:7C:36:12:59:9F:38:61
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/EgQwdrTu4JbJo8hUK3w2ElmfOGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.102.0/24
46.37.108.0/24
Signature Algorithm: sha256WithRSAEncryption
96:38:bc:6b:8d:1d:e4:83:c0:75:8a:f8:27:1d:c6:2e:1b:fa:
ad:4b:ab:be:a3:59:6d:5d:5b:28:1c:0b:99:f3:3d:50:ef:0d:
1d:31:86:b1:60:6c:43:ec:41:9c:28:b9:24:5c:97:50:14:0e:
ba:c2:8b:c4:d1:25:15:c4:a6:13:b4:10:6d:ec:de:b4:14:2b:
8b:df:27:aa:55:65:94:1a:d5:91:74:9b:0c:8e:2f:ff:96:2c:
0d:a3:fc:bc:73:cc:40:e9:94:a7:82:fd:49:97:19:5e:0d:2b:
c6:dd:ba:39:ff:a4:81:be:9a:8e:b4:3a:fb:41:6e:a3:46:05:
4a:21:d2:00:6f:60:5a:57:d6:eb:c8:d3:6b:52:26:9f:a2:cc:
95:05:72:90:b7:60:57:57:e3:48:86:98:35:2c:51:a2:f7:76:
83:c0:e8:fa:a5:ba:05:d5:68:85:6e:79:76:fa:1a:78:ee:d7:
4c:fd:70:d9:cc:87:49:ed:91:69:0f:6d:32:df:ef:f3:c1:70:
d5:c3:56:7d:72:d5:de:b0:88:4c:da:4b:65:e1:f8:d0:c3:38:
a1:7b:2b:3a:ec:9b:4a:c6:16:bd:79:b9:56:68:df:39:b5:61:
7b:74:ed:8c:3a:25:e9:ad:4d:d2:e8:9d:fa:3d:d0:f5:89:4f:
dd:3a:7e:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:34 2023 by rpki-client on console-ams.rpki-client.org