Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/J3TY0imEVZUEH6v4oFj88QqU7x0.roa
File: J3TY0imEVZUEH6v4oFj88QqU7x0.roa (raw, json)
Hash identifier: zjbeDXqx0yYZYtDDY/a8pWBTws4XM7xgY2fUlVaSahA=
Subject key identifier: 27:74:D8:D2:29:84:55:95:04:1F:AB:F8:A0:58:FC:F1:0A:94:EF:1D
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 0326DF7B
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/J3TY0imEVZUEH6v4oFj88QqU7x0.roa
Signing time: Sat 01 Jan 2022 09:57:09 +0000
ROA not before: Sat 01 Jan 2022 09:57:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 46.37.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52879227 (0x326df7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jan 1 09:57:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2774d8d229845595041fabf8a058fcf10a94ef1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:87:b2:0c:37:85:8a:26:9c:23:c4:3d:b3:fc:
d6:13:1b:4d:11:b1:3d:e6:59:09:e9:5e:25:10:a5:
bb:e6:47:e0:6c:53:de:12:e7:0e:29:b2:7d:e6:bb:
96:c4:a8:b7:48:c7:ab:fa:f3:c2:76:71:5e:63:50:
66:32:73:21:1b:d1:16:95:c0:f3:b2:1a:94:9a:d8:
41:51:2a:b7:d8:af:6d:f0:5c:fd:5a:ff:a1:e7:f7:
aa:53:cc:1d:a0:fb:49:de:c5:02:e4:e8:99:74:19:
17:e9:ff:92:c6:4e:be:41:0f:02:69:a1:a0:3a:7d:
d8:ca:11:ae:ee:83:a3:2d:af:5d:5a:d6:b9:10:00:
bf:e8:3a:bd:47:8d:e0:f3:62:00:49:69:5d:52:b5:
eb:6f:ac:64:18:80:d3:81:a3:1f:51:ad:4e:54:e4:
2b:4e:b1:a9:36:00:1c:16:23:02:1c:1f:fd:e0:78:
b5:8b:d0:5a:23:f0:5b:99:87:0a:48:eb:45:78:37:
da:83:62:74:92:b4:7d:50:62:1c:57:cf:17:a2:09:
36:73:e5:50:58:bc:1e:ee:a3:27:14:de:2e:c4:3c:
7c:24:2e:14:06:82:70:13:d2:2f:cc:9d:ff:f3:d3:
d9:fd:41:e0:50:e6:2f:44:73:6b:5a:a5:50:69:8f:
5e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:74:D8:D2:29:84:55:95:04:1F:AB:F8:A0:58:FC:F1:0A:94:EF:1D
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/J3TY0imEVZUEH6v4oFj88QqU7x0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.107.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:98:6f:1f:7d:b9:e2:b1:be:34:3a:c9:22:ce:7f:09:ce:0a:
22:a7:20:c6:d5:a4:b8:f3:2d:67:97:49:c4:a2:52:83:94:89:
e5:17:bb:0f:fa:14:7c:d7:0f:47:68:31:34:d6:7e:3a:47:d1:
fa:1f:18:b8:31:4c:df:7c:56:e7:3f:82:9c:8d:38:00:63:64:
1d:b0:6b:3a:64:fb:36:29:7f:2e:79:d8:1d:1b:fc:ff:44:9d:
54:81:f7:d5:f1:8a:69:5b:7d:95:4f:57:dc:3c:c9:c1:07:55:
7c:2b:7b:69:ed:a5:2d:58:28:8f:b6:0e:53:5d:ac:24:75:47:
86:41:89:dc:b7:85:74:25:5e:7b:7d:9e:eb:53:8f:2d:28:3b:
a1:13:ef:4a:c2:5e:96:44:ee:da:1d:17:21:ff:e6:1c:e8:b3:
24:48:58:57:80:f6:64:4d:5c:44:25:84:b3:a7:82:8b:6e:02:
76:37:47:f3:dd:d7:da:f0:86:f7:63:cc:ec:3d:e4:3e:1b:33:
ca:b8:ea:67:a8:e4:2d:a8:98:39:52:c9:16:b3:cb:71:9a:36:
23:35:07:46:b0:51:9e:55:7c:c5:07:7a:cb:b7:e1:58:75:89:
4b:e0:eb:bf:9c:7a:32:03:7a:6a:3a:4f:d3:1d:94:0d:c5:b7:
26:d9:5f:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:34 2023 by rpki-client on console-ams.rpki-client.org