Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/_uaKwVqiT1U6rRcumpRSZ1VqGow.roa
File: _uaKwVqiT1U6rRcumpRSZ1VqGow.roa (raw, json)
Hash identifier: FBW5BqZGuhrjaw/lnDD5c7F7kmHxY4nFIn5BR42PX+Q=
Subject key identifier: FE:E6:8A:C1:5A:A2:4F:55:3A:AD:17:2E:9A:94:52:67:55:6A:1A:8C
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 0184787E268F9C91D6E2E1900C68B01C58FC
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/_uaKwVqiT1U6rRcumpRSZ1VqGow.roa
Signing time: Mon 14 Nov 2022 23:34:04 +0000
ROA not before: Mon 14 Nov 2022 23:34:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212953
IP address blocks: 46.37.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:78:7e:26:8f:9c:91:d6:e2:e1:90:0c:68:b0:1c:58:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Nov 14 23:34:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fee68ac15aa24f553aad172e9a945267556a1a8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:9f:bc:d1:a4:a1:51:95:a6:ab:79:03:f9:aa:
83:6e:4e:46:95:bc:d4:3b:6f:02:c9:55:e3:61:81:
31:8d:f9:71:43:fe:19:7a:5e:f0:e2:6a:00:c8:76:
cf:5d:05:e0:a9:5a:ca:cd:61:61:89:21:96:2f:5c:
b5:ec:6f:24:84:6c:90:eb:15:06:04:19:ba:86:68:
1f:df:6c:d4:1e:b5:54:c9:19:af:7c:b5:c9:97:30:
2b:a2:5d:10:ee:27:36:34:5a:1f:3d:3e:cb:40:f1:
d7:b5:32:85:e0:13:51:31:d5:ec:3b:ac:28:37:5b:
52:b6:a9:25:2c:bb:31:06:3a:b9:ea:18:6a:ac:ed:
d9:c9:96:ca:b4:d1:3b:26:44:d1:51:82:e7:66:53:
ce:16:76:c1:80:9d:34:f5:54:84:9f:11:e8:df:cf:
7e:b9:7f:3a:ff:8a:ba:cb:0d:13:b6:41:a1:6e:16:
75:be:8b:b1:dd:2f:58:91:dc:cc:44:76:b4:ae:24:
61:1c:2b:97:64:a5:3b:fb:8e:2c:63:df:35:00:2f:
76:1e:4a:30:b6:e5:bf:01:e3:cf:7e:3b:2f:26:bb:
ac:00:8e:da:b7:19:11:65:26:69:53:86:95:2e:83:
4a:1e:fa:8d:75:4b:6e:77:c4:ac:ce:83:dd:6f:a7:
e9:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:E6:8A:C1:5A:A2:4F:55:3A:AD:17:2E:9A:94:52:67:55:6A:1A:8C
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/_uaKwVqiT1U6rRcumpRSZ1VqGow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.109.0/24
Signature Algorithm: sha256WithRSAEncryption
31:b8:25:3b:70:77:3b:3a:34:ee:b1:29:c8:58:a4:70:14:74:
51:f3:ec:00:b4:d2:3e:52:24:f7:80:f6:b1:98:0a:7e:df:18:
aa:9b:27:49:09:70:ba:08:7c:02:83:1d:13:36:24:88:d5:fe:
c4:10:51:53:1e:9a:dd:8f:29:27:a3:8e:37:92:5b:da:f9:18:
93:74:b9:54:98:9d:ce:98:27:33:f3:a5:d5:d8:f5:b4:70:48:
fe:15:b4:ec:ed:ff:13:dd:43:32:ff:7b:11:ee:50:71:7f:07:
77:29:d3:54:ae:10:9c:53:25:a2:ce:7b:62:cb:d2:44:40:87:
a1:f9:cf:c4:da:54:0f:e5:51:ff:fa:d6:cf:d5:1c:36:fc:36:
58:68:07:df:50:33:28:17:cd:85:8b:79:11:5e:0b:88:90:90:
f9:a0:c4:64:55:80:73:37:1c:eb:c5:63:f6:f8:09:c2:58:b8:
ef:68:fd:76:9c:bc:93:d1:ff:ca:0a:46:c9:d6:0f:4e:a9:50:
bc:3d:7c:d2:af:fc:30:61:45:1e:4f:bc:28:af:99:c7:c0:4f:
57:95:78:5f:1d:d5:c0:71:ec:b4:ed:0d:7a:30:6c:d3:74:cd:
97:2c:b0:41:c7:c2:24:83:2d:f7:26:a7:d3:ee:3e:47:02:e5:
19:d3:0d:be
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYR4fiaPnJHW4uGQDGiwHFj8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzY2YwODg0OTE4YTUwMjM5ZWY3MDUxOGVlOWZjMDRmMWFh
ZTE5MjkwHhcNMjIxMTE0MjMzNDA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZWU2OGFjMTVhYTI0ZjU1M2FhZDE3MmU5YTk0NTI2NzU1NmExYThjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiZ+80aShUZWmq3kD+aqDbk5GlbzU
O28CyVXjYYExjflxQ/4Zel7w4moAyHbPXQXgqVrKzWFhiSGWL1y17G8khGyQ6xUG
BBm6hmgf32zUHrVUyRmvfLXJlzArol0Q7ic2NFofPT7LQPHXtTKF4BNRMdXsO6wo
N1tStqklLLsxBjq56hhqrO3ZyZbKtNE7JkTRUYLnZlPOFnbBgJ009VSEnxHo389+
uX86/4q6yw0TtkGhbhZ1voux3S9YkdzMRHa0riRhHCuXZKU7+44sY981AC92Hkow
tuW/AePPfjsvJrusAI7atxkRZSZpU4aVLoNKHvqNdUtud8SszoPdb6fpXQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP7misFaok9VOq0XLpqUUmdVahqMMB8GA1UdIwQY
MBaAFNPPCISRilAjnvcFGO6fwE8arhkpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDg4SWhKR0tVQ09lOXdVWTdwX0FUeHF1R1NrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9jZGZmMTYtNDU4YS00N2MzLThkZmEt
MjMxNTQ5NDA5NzIwLzEvX3VhS3dWcWlUMVU2clJjdW1wUlNaMVZxR293LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy9jZGZmMTYtNDU4YS00N2MzLThkZmEtMjMxNTQ5NDA5NzIw
LzEvMDg4SWhKR0tVQ09lOXdVWTdwX0FUeHF1R1NrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALiVtMA0G
CSqGSIb3DQEBCwUAA4IBAQAxuCU7cHc7OjTusSnIWKRwFHRR8+wAtNI+UiT3gPax
mAp+3xiqmydJCXC6CHwCgx0TNiSI1f7EEFFTHprdjykno443klva+RiTdLlUmJ3O
mCcz86XV2PW0cEj+FbTs7f8T3UMy/3sR7lBxfwd3KdNUrhCcUyWizntiy9JEQIeh
+c/E2lQP5VH/+tbP1Rw2/DZYaAffUDMoF82Fi3kRXguIkJD5oMRkVYBzNxzrxWP2
+AnCWLjvaP12nLyT0f/KCkbJ1g9OqVC8PXzSr/wwYUUeT7wor5nHwE9XlXhfHdXA
cey07Q16MGzTdM2XLLBBx8Ikgy33JqfT7j5HAuUZ0w2+
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:34 2023 by rpki-client on console-ams.rpki-client.org