Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/NVg92z8aLLIqJAoHLwggj0rX1vM.roa
File: NVg92z8aLLIqJAoHLwggj0rX1vM.roa (raw, json)
Hash identifier: LBK1Guwa2UlscRdIJHQyRV0pqIio0av3yv4f8HEAQGQ=
Subject key identifier: 35:58:3D:DB:3F:1A:2C:B2:2A:24:0A:07:2F:08:20:8F:4A:D7:D6:F3
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 0183A3D7B4BDAE9AD955658E09F2828385FD
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/NVg92z8aLLIqJAoHLwggj0rX1vM.roa
Signing time: Tue 04 Oct 2022 16:32:46 +0000
ROA not before: Tue 04 Oct 2022 16:32:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44486
IP address blocks: 46.37.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a3:d7:b4:bd:ae:9a:d9:55:65:8e:09:f2:82:83:85:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Oct 4 16:32:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35583ddb3f1a2cb22a240a072f08208f4ad7d6f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:4d:f0:6b:47:b0:95:e7:96:c8:30:ea:96:2f:
60:1f:ee:6e:ef:75:02:51:81:98:d8:04:c4:e7:44:
fb:7b:e1:d9:e7:f3:6a:78:47:cb:a8:f4:85:53:b6:
53:91:21:0a:74:c6:77:7b:cc:77:0c:d9:5d:39:c7:
f9:fe:f7:91:9a:d9:42:43:4b:c1:b1:66:1f:70:d7:
e4:90:9f:76:be:73:80:37:b2:f4:cc:3d:04:bd:69:
2a:ed:bc:81:55:26:36:79:30:07:f0:eb:76:51:4d:
02:63:d9:ed:23:09:48:ad:e1:af:8c:76:7d:ff:d7:
9a:73:19:e7:33:75:4a:79:44:89:5b:ce:4e:70:0f:
d6:de:36:b6:96:dd:19:b1:bd:c4:12:9d:c9:14:6f:
b7:33:bb:53:2d:8f:87:3d:21:0a:74:9d:fb:84:bd:
1c:04:cb:65:50:70:64:dc:1d:d7:e6:c1:f4:4b:a3:
40:8e:17:24:44:cb:47:d0:4a:fe:9e:46:0b:d9:59:
c5:fe:12:09:00:ee:71:b3:f3:62:4a:c4:4d:07:9c:
20:e4:0a:8f:91:e2:36:43:cc:b6:44:64:88:78:a6:
1e:e5:95:42:d2:09:02:a2:4f:e2:46:66:bc:97:9a:
4a:d3:0a:50:b2:68:5e:17:2c:49:2e:f4:75:38:c8:
c5:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:58:3D:DB:3F:1A:2C:B2:2A:24:0A:07:2F:08:20:8F:4A:D7:D6:F3
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/NVg92z8aLLIqJAoHLwggj0rX1vM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.125.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:42:1b:4c:bd:e1:79:b4:f7:87:c0:6d:fb:ac:ee:e8:da:26:
ae:7e:55:7b:cc:1d:9a:a5:d2:b1:be:1d:8b:25:14:4a:20:30:
bc:90:1b:e0:ca:b9:68:7a:34:7a:95:b0:50:80:02:af:54:a6:
36:0d:f9:5a:1f:31:b5:ce:b1:c1:df:8f:3b:c0:73:f2:99:e8:
2b:f1:ac:73:af:1a:00:7b:e9:b3:7e:60:e1:8e:3b:6d:aa:2c:
08:bb:8d:99:f7:4c:10:ed:5c:f3:78:6c:6a:17:37:a6:39:28:
e3:ba:42:5c:b5:e6:8e:a6:da:c3:cc:bf:20:5e:9c:8a:4f:92:
ff:4d:56:06:69:00:57:10:04:53:41:4b:3a:4e:3e:be:20:18:
bd:26:cc:49:a1:f1:c1:fe:b5:ed:c8:5a:05:c9:d0:47:0d:f5:
5f:0a:6f:75:d4:dd:dc:b9:c5:4a:a4:db:4c:ac:6a:1a:1e:e0:
3b:57:0a:93:45:12:33:99:8d:05:a0:e3:14:7f:69:e3:65:6d:
d1:6c:61:cd:a0:11:02:56:6f:18:42:9d:00:c1:ad:7d:d9:e6:
dc:db:99:07:cb:90:40:09:cd:04:00:91:7a:e3:d1:89:43:82:
9b:65:e6:5b:37:95:3c:c3:5f:c6:2f:da:13:0c:0f:60:d9:13:
43:a4:bc:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:54 2024 by rpki-client on console-fra.rpki-client.org