Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/dZjlS3R_j-S0kSOZjEekSjbemQ8.roa
File: dZjlS3R_j-S0kSOZjEekSjbemQ8.roa (raw, json)
Hash identifier: ZQLWsamwdrD9Bc+z2Dzs1ycxnn6UdgPpKzpPH3k9xZY=
Subject key identifier: 75:98:E5:4B:74:7F:8F:E4:B4:91:23:99:8C:47:A4:4A:36:DE:99:0F
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 03295296
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/dZjlS3R_j-S0kSOZjEekSjbemQ8.roa
Signing time: Sat 01 Jan 2022 09:57:10 +0000
ROA not before: Sat 01 Jan 2022 09:57:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23470
IP address blocks: 46.37.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53039766 (0x3295296)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jan 1 09:57:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7598e54b747f8fe4b49123998c47a44a36de990f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:db:6b:c2:bb:22:f4:21:b3:2f:7f:02:ae:ea:
31:01:ce:1f:5c:e7:39:57:c2:b4:30:af:44:dd:80:
2d:e4:cd:09:ec:c8:5c:0a:85:e3:26:b5:8b:8b:87:
45:fe:eb:0b:dd:a2:16:c0:8f:63:e6:95:63:c5:b4:
3a:0a:2b:c4:f7:f0:8b:45:ff:eb:25:c0:69:5d:3b:
e1:ec:a4:31:e9:ad:a6:3d:ae:60:8c:8c:00:ec:08:
e3:e3:e9:a7:07:11:7d:b3:e5:c3:b3:d1:5f:91:a6:
e1:4f:a6:ac:0c:8f:cd:d6:34:25:07:fb:a6:ab:6d:
a6:dd:9b:81:56:86:54:0a:09:45:17:32:04:fd:04:
f1:af:0a:3a:cf:14:41:c6:20:cd:b9:ad:3c:d4:be:
af:6b:01:5b:14:fa:99:06:bf:71:1c:45:45:24:07:
55:c1:61:95:58:0f:b3:f1:14:e0:6b:44:7e:f0:a9:
05:13:3b:ad:2a:fe:e3:69:d6:c8:46:19:3d:f7:1f:
0c:b2:1d:60:fe:b5:48:40:9c:90:04:ac:20:19:f8:
67:32:07:fb:16:c0:b4:05:23:49:c1:9c:b1:ed:df:
07:62:d8:7b:0b:ba:2f:81:3d:15:64:e9:0a:78:31:
46:f2:4f:ae:b1:16:b7:c5:e2:2b:a0:70:8c:be:c2:
7d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:98:E5:4B:74:7F:8F:E4:B4:91:23:99:8C:47:A4:4A:36:DE:99:0F
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/dZjlS3R_j-S0kSOZjEekSjbemQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.108.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:6d:79:67:a4:5e:2d:df:d0:ea:18:a5:2d:20:e5:0b:a7:ef:
43:5a:55:bf:f1:28:27:ae:2d:23:6d:96:15:69:d9:6c:20:43:
fd:33:d1:e8:fb:80:fd:c4:da:69:83:e8:c7:df:12:5a:ec:04:
0b:d2:59:53:e6:69:34:9e:9c:33:a9:7f:51:f8:34:ee:ad:b6:
dc:64:fc:3f:6d:66:81:14:9e:a9:1e:d2:92:9a:15:87:00:c0:
ef:51:90:e7:57:18:59:c3:af:47:47:45:df:02:1b:16:ef:50:
42:73:ab:c2:c4:df:fd:c1:02:ca:99:e4:0a:7d:53:e5:0d:d1:
67:72:a0:7c:27:87:9b:08:af:9b:7a:f2:45:20:4e:87:4f:8e:
d3:dc:e0:33:23:4e:35:b8:d2:19:4b:8b:83:80:87:22:78:6f:
d9:ad:74:af:b4:0a:0c:e6:47:19:70:4c:28:1b:81:52:dc:bc:
96:84:9b:12:32:83:fb:92:ab:38:12:cd:51:e7:6d:65:dd:de:
20:8a:82:be:d6:34:e6:96:a3:e0:49:89:32:77:c9:a3:24:61:
14:8b:3f:44:56:98:c8:f4:b3:7d:6a:12:36:1e:0f:63:68:26:
b6:7e:d3:99:c8:17:49:71:0f:68:66:7a:47:e7:d4:81:58:be:
4d:20:e2:f2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAylSljANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
M2NmMDg4NDkxOGE1MDIzOWVmNzA1MThlZTlmYzA0ZjFhYWUxOTI5MB4XDTIyMDEw
MTA5NTcxMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzU5OGU1NGI3NDdm
OGZlNGI0OTEyMzk5OGM0N2E0NGEzNmRlOTkwZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANXba8K7IvQhsy9/Aq7qMQHOH1znOVfCtDCvRN2ALeTNCezI
XAqF4ya1i4uHRf7rC92iFsCPY+aVY8W0OgorxPfwi0X/6yXAaV074eykMemtpj2u
YIyMAOwI4+PppwcRfbPlw7PRX5Gm4U+mrAyPzdY0JQf7pqttpt2bgVaGVAoJRRcy
BP0E8a8KOs8UQcYgzbmtPNS+r2sBWxT6mQa/cRxFRSQHVcFhlVgPs/EU4GtEfvCp
BRM7rSr+42nWyEYZPfcfDLIdYP61SECckASsIBn4ZzIH+xbAtAUjScGcse3fB2LY
ewu6L4E9FWTpCngxRvJPrrEWt8XiK6BwjL7CfZkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR1mOVLdH+P5LSRI5mMR6RKNt6ZDzAfBgNVHSMEGDAWgBTTzwiEkYpQI573
BRjun8BPGq4ZKTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzA4OEloSkdLVUNPZTl3VVk3cF9BVHhxdUdTay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTcvY2RmZjE2LTQ1OGEtNDdjMy04ZGZhLTIzMTU0OTQwOTcyMC8x
L2RaamxTM1Jfai1TMGtTT1pqRWVrU2piZW1ROC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTcv
Y2RmZjE2LTQ1OGEtNDdjMy04ZGZhLTIzMTU0OTQwOTcyMC8xLzA4OEloSkdLVUNP
ZTl3VVk3cF9BVHhxdUdTay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC4lbDANBgkqhkiG9w0BAQsFAAOC
AQEAp215Z6ReLd/Q6hilLSDlC6fvQ1pVv/EoJ64tI22WFWnZbCBD/TPR6PuA/cTa
aYPox98SWuwEC9JZU+ZpNJ6cM6l/Ufg07q223GT8P21mgRSeqR7SkpoVhwDA71GQ
51cYWcOvR0dF3wIbFu9QQnOrwsTf/cECypnkCn1T5Q3RZ3KgfCeHmwivm3ryRSBO
h0+O09zgMyNONbjSGUuLg4CHInhv2a10r7QKDOZHGXBMKBuBUty8loSbEjKD+5Kr
OBLNUedtZd3eIIqCvtY05paj4EmJMnfJoyRhFIs/RFaYyPSzfWoSNh4PY2gmtn7T
mcgXSXEPaGZ6R+fUgVi+TSDi8g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:34 2023 by rpki-client on console-ams.rpki-client.org