Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/UqPho4oLDsx4PJTJSPWIQBmZR4Q.roa
File: UqPho4oLDsx4PJTJSPWIQBmZR4Q.roa (raw, json)
Hash identifier: wIsz0rhlePYR4z5N4k/3lUNbm0DNo6EkB5IIuByRmcc=
Subject key identifier: 52:A3:E1:A3:8A:0B:0E:CC:78:3C:94:C9:48:F5:88:40:19:99:47:84
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 01837564DF80E6139871FD46D18760663977
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/UqPho4oLDsx4PJTJSPWIQBmZR4Q.roa
Signing time: Sun 25 Sep 2022 16:04:48 +0000
ROA not before: Sun 25 Sep 2022 16:04:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48678
IP address blocks: 46.37.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:75:64:df:80:e6:13:98:71:fd:46:d1:87:60:66:39:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Sep 25 16:04:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52a3e1a38a0b0ecc783c94c948f5884019994784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:83:dd:ac:5b:5d:11:d0:26:bc:9d:89:07:0b:
c2:3b:af:fc:65:83:ae:56:2a:48:48:ce:98:46:1e:
12:5a:88:3b:00:08:b2:78:ca:08:6b:c2:dc:1e:0d:
cd:dc:ba:ea:1b:82:19:8c:45:29:aa:9d:65:fc:d8:
66:5e:ff:22:5a:35:58:29:99:f2:12:b4:54:d4:d6:
31:fb:3d:2b:16:ec:d8:2b:1d:d9:e6:bf:a1:39:e3:
fe:b8:d3:91:91:02:28:d6:5f:ea:03:b7:04:77:62:
cc:02:68:84:af:45:04:7b:ca:e7:65:71:54:8b:4e:
0d:f3:21:3c:bb:9b:a5:67:8b:4e:12:10:9f:3b:1f:
8c:99:48:0c:b2:b3:26:9d:67:05:77:cd:81:82:ed:
99:5d:04:5d:ed:f3:14:8e:31:88:9a:f5:a3:b4:89:
5b:3c:26:2c:f7:10:04:23:05:86:b4:c4:64:5d:57:
9f:fe:1a:01:53:37:c1:94:07:ec:11:7a:a4:b5:fa:
94:a7:8b:24:da:da:17:b1:00:58:66:0d:ce:69:c0:
c1:c1:c1:a1:c0:bc:ec:ae:4a:89:66:73:c8:0a:4b:
47:03:ff:b1:7c:7b:9b:3b:6b:b4:e0:e7:80:68:fe:
c1:2a:ce:80:18:9e:85:63:b5:2a:a1:1d:f0:81:0e:
5d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A3:E1:A3:8A:0B:0E:CC:78:3C:94:C9:48:F5:88:40:19:99:47:84
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/UqPho4oLDsx4PJTJSPWIQBmZR4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.99.0/24
Signature Algorithm: sha256WithRSAEncryption
75:b5:07:b3:5a:b2:19:a9:71:e2:e0:42:a5:09:d3:f9:07:62:
9e:ae:62:03:2b:f0:d8:16:d3:31:ff:b8:26:73:e1:75:9b:90:
3d:60:94:08:31:c7:dc:4b:bf:6f:be:a5:26:4f:59:be:d1:fd:
2e:94:96:ba:31:3a:d4:78:2c:eb:92:70:50:8e:b9:89:c4:47:
a7:8e:62:ca:7d:04:84:54:4d:5c:12:9a:27:50:ed:16:3c:d9:
ec:1b:fb:93:67:fa:0e:01:1c:0b:e5:f0:07:2b:74:f5:16:a6:
e8:da:86:cb:cf:8b:7d:30:32:0d:0f:80:de:98:2c:61:20:99:
47:c0:ce:ea:48:ce:4c:79:c6:39:77:65:75:f9:a6:6a:ea:23:
09:f1:28:7b:68:ac:e4:a8:61:f5:ff:09:bb:e5:cc:2a:a9:d4:
6e:d2:2e:5f:e5:1d:4a:72:48:47:5f:7d:90:3e:87:42:fe:a2:
28:e8:77:05:9b:ab:a5:dd:e5:13:43:a4:00:a0:6d:17:ff:9b:
4e:55:39:9c:60:53:f4:d2:82:f3:51:81:1f:98:6d:fa:06:f7:
7a:f8:9e:be:67:73:17:26:3c:e9:6c:49:6a:2e:d4:4e:fa:fa:
d3:88:74:7e:e4:dc:8e:f3:82:27:c1:55:3e:a2:c0:99:78:6f:
0b:8e:51:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:34 2023 by rpki-client on console-ams.rpki-client.org