Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/an0shANBeKnnsRON42pqNQcsv8o.roa
File: an0shANBeKnnsRON42pqNQcsv8o.roa (raw, json)
Hash identifier: hJbStHQj/VNw0ZMU+KfnZ5aQ7LP3QIBAlJhdQJMkNEA=
Subject key identifier: 6A:7D:2C:84:03:41:78:A9:E7:B1:13:8D:E3:6A:6A:35:07:2C:BF:CA
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 0184808EAA02E6397C423C00DE26A1C7DE13
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/an0shANBeKnnsRON42pqNQcsv8o.roa
Signing time: Wed 16 Nov 2022 13:09:04 +0000
ROA not before: Wed 16 Nov 2022 13:09:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212669
IP address blocks: 46.37.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:80:8e:aa:02:e6:39:7c:42:3c:00:de:26:a1:c7:de:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Nov 16 13:09:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a7d2c84034178a9e7b1138de36a6a35072cbfca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a7:c5:e3:9d:89:54:95:38:e2:bd:23:98:55:
50:05:c4:5b:08:73:5c:db:05:44:8a:63:9c:e0:d6:
ef:d1:6a:0c:5a:c1:12:4b:9b:6f:20:80:48:55:5f:
da:32:d6:3e:3a:5f:9a:70:de:08:7a:1c:13:f0:1f:
0c:20:0e:de:d7:11:5b:e6:d2:93:07:78:44:f5:13:
ef:b3:13:81:bd:f8:6b:35:58:86:3f:dc:4d:01:e5:
24:fc:bf:51:9f:2f:cc:68:5d:4c:c1:c1:30:c4:f4:
20:6e:a9:75:89:77:73:74:95:71:4e:1b:a4:13:b7:
55:9f:11:6c:97:9f:e8:7f:4f:28:41:eb:80:8b:52:
45:68:18:73:d2:29:04:12:bf:5d:19:34:46:39:94:
f9:0e:05:70:0e:29:fd:da:83:49:50:bd:4e:6b:e8:
49:50:ab:f6:5a:f1:ab:a9:3c:bc:2e:e0:06:83:7f:
ea:88:2e:4a:73:8e:e8:4c:8c:8c:27:e9:0b:d3:8e:
d1:ec:29:ac:69:10:e9:7c:3f:1b:1a:7c:5b:4b:f6:
3e:b4:4f:96:d3:47:28:5e:50:c8:97:7f:6c:57:33:
66:ce:09:f7:e5:f8:40:0c:d5:76:2c:76:d3:80:32:
45:2f:8f:29:63:ec:9a:cf:74:79:72:3b:1f:fa:6d:
f4:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:7D:2C:84:03:41:78:A9:E7:B1:13:8D:E3:6A:6A:35:07:2C:BF:CA
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/an0shANBeKnnsRON42pqNQcsv8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.115.0/24
Signature Algorithm: sha256WithRSAEncryption
01:0b:1e:27:5e:9b:46:0d:af:d5:d6:75:74:bd:35:ec:68:07:
90:1e:d4:01:7a:47:b0:21:d7:82:1f:1e:8e:f4:5f:4e:b1:2c:
d9:ec:a6:4a:13:94:82:32:95:d7:f4:6b:22:c0:5d:1a:57:a2:
b9:10:d4:52:96:a8:b9:41:fd:9d:a7:63:da:a1:d8:34:10:04:
47:6c:9d:42:9f:41:6a:5e:e0:a4:28:55:c8:ce:7a:40:32:f0:
16:c1:f4:4e:2f:21:dc:f0:7c:ca:68:b4:b1:f7:46:61:1d:32:
92:77:b6:c3:4b:04:91:f5:75:1c:87:85:d8:04:f7:e7:bb:3c:
12:46:7d:c0:fa:cb:6b:7c:0b:d5:0e:02:a8:5c:3b:35:19:da:
9c:8b:50:bb:58:e4:e7:5d:fc:c9:d8:71:31:cc:d5:7b:f4:f8:
03:5e:60:a3:c8:9c:44:c2:d7:c9:e6:96:ee:04:5c:29:ae:de:
1d:11:95:80:8a:68:82:ea:50:1d:56:25:7e:a0:9e:03:6d:79:
55:80:62:83:cf:66:2f:c4:1b:e5:65:19:d4:c3:48:15:dd:94:
6d:1e:fe:e4:30:66:39:da:4c:d4:90:a6:e2:87:0d:a9:99:19:
e6:03:6f:df:ee:85:67:b1:54:2a:59:9b:17:70:d5:f1:59:5b:
b2:d9:b1:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:44 2023 by rpki-client on console-fra.rpki-client.org