Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/ZjlA5iYiDo3GfG2aNynF9USYLoI.roa
File: ZjlA5iYiDo3GfG2aNynF9USYLoI.roa (raw, json)
Hash identifier: X7aYKPEGgPdM2t3tQV86i/+IoIXuvrhIwQQ9jL7tTnY=
Subject key identifier: 66:39:40:E6:26:22:0E:8D:C6:7C:6D:9A:37:29:C5:F5:44:98:2E:82
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 0183A42A19FF740FEFB4F82F6BCCD8D97633
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/ZjlA5iYiDo3GfG2aNynF9USYLoI.roa
Signing time: Tue 04 Oct 2022 18:02:45 +0000
ROA not before: Tue 04 Oct 2022 18:02:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 272611
IP address blocks: 46.37.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a4:2a:19:ff:74:0f:ef:b4:f8:2f:6b:cc:d8:d9:76:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Oct 4 18:02:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=663940e626220e8dc67c6d9a3729c5f544982e82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d9:61:f3:aa:0e:3a:23:3f:cc:6e:ee:a1:f6:
ec:27:f0:30:9c:93:54:e2:f8:1f:fa:3d:b7:fd:68:
3e:99:ee:88:8e:1d:8d:18:64:55:c3:d9:76:dd:84:
62:7a:fa:8a:a7:ad:2f:2f:77:8e:91:f7:1f:4b:17:
ac:09:80:01:16:ff:c6:ff:d6:38:00:9c:b6:a3:84:
c3:cf:f9:49:98:61:05:1f:a2:94:41:b6:69:de:1d:
d6:9f:30:4a:9f:f9:60:f9:9f:98:cc:9f:c8:6e:25:
06:fc:f2:f1:a4:8e:89:f5:d0:87:08:a7:61:16:3f:
2f:2c:e3:f8:36:12:c3:58:e7:52:bc:1a:2d:6a:b9:
b4:1e:42:82:cc:0f:1d:dc:e9:f6:49:be:07:c7:66:
18:80:a4:d8:3a:e0:3f:b8:42:08:ca:df:39:92:c0:
d4:ec:1c:eb:47:7f:c6:7e:e5:e4:e0:1e:17:b9:c7:
a0:46:99:96:67:f3:99:48:33:07:b4:4d:9d:ef:73:
e4:f5:ae:e2:79:b5:a1:5c:38:20:83:e1:46:26:6b:
bc:65:06:52:4d:69:ae:10:6f:1b:29:a2:93:4e:a5:
58:be:96:e6:6f:e0:fd:0b:42:ec:c3:0d:32:00:da:
a5:87:c1:b1:41:c0:67:05:41:e2:14:82:2a:9f:23:
2f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:39:40:E6:26:22:0E:8D:C6:7C:6D:9A:37:29:C5:F5:44:98:2E:82
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/ZjlA5iYiDo3GfG2aNynF9USYLoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.113.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:c8:d1:14:88:64:da:09:d8:56:a7:5b:29:6f:07:bc:02:00:
9e:9f:50:7a:43:a9:69:fa:2b:ec:2a:2c:bf:69:63:a1:be:70:
16:fd:eb:f9:7a:06:aa:d4:c0:6b:f0:29:9f:5b:00:d7:d2:71:
55:a7:86:25:44:28:45:14:8f:3d:78:75:04:32:76:c5:ea:d6:
b4:d9:84:e1:41:46:fe:09:88:40:b5:13:c7:c5:d8:bf:8c:c2:
7d:72:cc:ec:2c:bd:cc:06:77:43:f2:29:28:31:b2:ce:38:66:
15:76:01:17:5e:3c:ed:d2:74:02:e1:f4:47:de:3a:0c:10:b5:
37:c0:9e:94:c5:24:2d:bf:b6:34:0a:94:5c:a1:d2:8a:66:57:
2b:e3:8e:e3:91:b8:2e:2f:04:fa:91:63:de:c8:2e:07:8e:0d:
ff:48:8a:64:4b:f8:c9:33:0e:75:5b:f9:61:47:d9:b3:91:c9:
12:85:47:6c:73:0f:11:ee:82:07:9e:17:6a:ea:21:fd:84:c4:
75:76:eb:5b:12:5b:d0:a1:e9:bf:e0:42:24:91:5c:c4:63:63:
21:75:3b:97:c5:95:e2:4f:55:ce:10:49:83:0f:79:00:a3:e6:
81:50:0d:0d:6d:af:ef:dd:fd:0b:67:69:23:68:5d:8b:81:f4:
e6:94:3e:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:44 2023 by rpki-client on console-fra.rpki-client.org