Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/O7GFxNvijTbmHkGUd44LRSIINlE.roa
File: O7GFxNvijTbmHkGUd44LRSIINlE.roa (raw, json)
Hash identifier: eMsdN9KD7mpak61A8xSFgGcQCQVDFRdsaHeEA1gq/2Q=
Subject key identifier: 3B:B1:85:C4:DB:E2:8D:36:E6:1E:41:94:77:8E:0B:45:22:08:36:51
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 03332D7A
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/O7GFxNvijTbmHkGUd44LRSIINlE.roa
Signing time: Sat 01 Jan 2022 09:57:15 +0000
ROA not before: Sat 01 Jan 2022 09:57:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57844
IP address blocks: 46.37.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53685626 (0x3332d7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jan 1 09:57:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3bb185c4dbe28d36e61e4194778e0b4522083651
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:0c:f2:ff:ac:af:65:fd:2a:4a:44:0d:6b:c2:
2e:84:d0:59:93:e8:b7:49:f6:e9:07:44:e4:e6:04:
9e:da:28:93:5f:13:00:5d:48:97:17:7c:ec:32:55:
c4:6b:97:94:e2:e7:58:b9:dd:0c:f0:fd:7d:49:8b:
b6:2f:7c:6d:67:43:38:d8:8a:dd:33:84:21:76:98:
4a:c1:6b:f1:ab:f8:ec:f9:99:4c:2d:67:b9:7c:a7:
b1:ad:a7:dc:48:b2:94:bf:06:12:20:ec:0d:a9:56:
72:ee:d4:83:c9:e5:ec:62:fe:0d:1d:c0:13:93:61:
d5:c3:f7:9b:61:d4:33:37:ed:28:d6:78:db:71:a9:
a1:6e:bf:2d:ca:44:56:91:63:74:a7:5c:d3:75:69:
38:11:ce:ef:c0:19:f9:44:1e:a3:6d:a4:0d:c6:50:
c0:37:dc:63:72:fe:13:76:33:aa:99:29:a1:cc:f2:
fc:0b:cb:ad:bd:44:d1:83:90:b2:c1:34:56:8f:1d:
af:20:4c:81:45:50:a6:97:c0:52:27:1c:8e:ee:80:
13:2e:2a:e9:15:73:22:44:cf:c6:5a:53:66:4d:71:
00:47:71:77:56:48:73:9a:42:ea:51:52:f4:02:25:
3f:94:91:b3:ff:f8:5b:8e:a8:9a:96:42:4e:07:4d:
55:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:B1:85:C4:DB:E2:8D:36:E6:1E:41:94:77:8E:0B:45:22:08:36:51
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/O7GFxNvijTbmHkGUd44LRSIINlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.113.0/24
Signature Algorithm: sha256WithRSAEncryption
02:6c:d4:e4:7f:55:b9:2b:02:c3:d1:f3:c9:72:64:0c:a8:d6:
8b:af:59:5c:59:2b:55:e8:4d:ed:57:18:cb:26:94:40:02:40:
be:3c:2d:3f:2d:7e:f7:1d:6d:1e:d6:ea:04:ee:8e:a8:89:bd:
5b:90:3f:0d:c0:11:8e:6d:bd:92:70:d3:01:65:24:bd:2f:b5:
2b:80:f0:23:cd:00:a0:ce:4b:86:32:49:aa:ca:83:bf:d6:1c:
50:40:d9:68:cf:f1:d8:23:f0:44:a9:ff:b0:10:94:32:4a:a5:
0f:cf:e7:e7:f4:f8:9f:ee:8a:7e:40:82:56:8e:fc:b4:86:20:
7f:07:de:cd:9b:eb:b2:f2:09:39:03:05:97:af:62:67:8a:71:
38:55:b1:51:3f:61:ea:df:3d:af:c1:61:32:e5:24:1f:4d:41:
22:11:d0:a2:9c:d0:e0:ce:9d:0f:86:30:c8:79:d6:c9:f9:1f:
64:34:c0:ba:3e:37:91:c2:35:18:ed:84:29:85:ac:f4:54:7a:
ca:ea:6a:01:6b:58:93:94:82:25:7e:52:47:35:92:28:ff:a1:
c6:d1:7a:a9:90:97:93:fe:da:f5:33:46:be:a9:5e:85:ab:79:
21:91:c1:53:86:1d:44:a2:7b:c9:d0:c4:29:58:e8:b3:9f:f1:
4a:9b:05:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:34 2023 by rpki-client on console-ams.rpki-client.org