Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/dnmcYhxxANFPr0Wd7OSJAL4DPbw.roa
File: dnmcYhxxANFPr0Wd7OSJAL4DPbw.roa (raw, json)
Hash identifier: pSFci1ERb54LcBxu3Xk6eiIZDuXtm45RMOi0IH8DgSA=
Subject key identifier: 76:79:9C:62:1C:71:00:D1:4F:AF:45:9D:EC:E4:89:00:BE:03:3D:BC
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 032A9CF3
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/dnmcYhxxANFPr0Wd7OSJAL4DPbw.roa
Signing time: Sat 01 Jan 2022 09:57:11 +0000
ROA not before: Sat 01 Jan 2022 09:57:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25369
IP address blocks: 46.37.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53124339 (0x32a9cf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jan 1 09:57:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76799c621c7100d14faf459dece48900be033dbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:fe:3f:e2:b3:e2:16:ea:81:41:d1:52:8c:4a:
b8:9b:fa:40:c3:74:20:21:41:ab:35:1f:b7:a4:6c:
b2:7e:86:0c:18:8c:c5:11:90:26:3b:4e:e9:f1:bf:
c8:31:1e:68:89:33:4b:d3:94:f2:5b:c1:e4:e1:ee:
52:db:85:7d:f6:87:e8:9a:42:35:1c:66:19:13:ba:
a0:74:43:cf:28:d6:d6:de:82:91:df:51:42:95:6d:
d8:57:42:d7:34:41:29:e5:c8:6c:1e:74:3d:26:25:
0a:db:e9:49:eb:19:10:73:55:b6:43:17:05:a6:05:
e6:37:73:69:09:d4:1b:bb:e2:f8:4d:9d:10:e5:67:
ce:24:b5:55:d1:99:04:84:a3:5f:5f:1a:b5:1c:95:
05:ac:76:dc:a5:ff:0e:7e:27:87:40:f9:ff:ef:09:
1e:28:2c:69:76:26:3e:57:2c:8a:7b:92:6d:c4:90:
ef:5d:86:13:69:d3:1d:a5:01:41:a4:38:57:aa:1e:
31:11:6f:8f:12:37:3a:17:a8:d7:77:55:a7:38:6e:
11:33:b7:c1:a3:6e:72:a3:a4:c1:e6:73:60:a9:e2:
10:89:d3:d3:d4:0e:99:cb:76:fd:bf:ba:bf:e8:14:
ed:0d:71:95:28:5e:8c:0a:ce:38:c2:5f:80:0f:e8:
0b:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:79:9C:62:1C:71:00:D1:4F:AF:45:9D:EC:E4:89:00:BE:03:3D:BC
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/dnmcYhxxANFPr0Wd7OSJAL4DPbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.111.0/24
Signature Algorithm: sha256WithRSAEncryption
65:84:ba:b8:51:49:ef:92:e2:0e:1a:d2:73:5f:f3:65:08:5c:
94:2c:32:4a:71:9d:cf:e6:97:e9:d6:b3:03:38:32:3a:d7:d9:
a3:f9:00:71:f2:fc:0e:82:ae:26:31:f9:ee:cd:56:57:b8:67:
88:30:9f:fd:0d:ff:1c:50:c2:73:06:1f:da:7b:9f:db:10:7c:
50:aa:5c:dc:25:c6:66:78:18:a3:fa:28:3d:f3:d6:c2:44:1c:
87:04:9f:9e:20:31:a0:b4:da:70:60:9d:6d:7b:f2:96:0d:12:
b5:c7:eb:b7:89:c2:86:1f:08:bb:1f:e8:21:c6:14:08:94:c0:
10:90:05:32:9b:cf:53:b7:48:2f:f1:30:e7:89:89:47:d7:e3:
97:e0:99:25:90:aa:48:d2:e0:e5:b4:34:5f:75:58:44:4a:18:
f7:de:ce:5f:bb:f1:91:45:9b:75:07:06:f9:3e:5d:e9:2d:5b:
17:19:d6:06:12:4a:e4:10:07:42:64:f8:3e:39:e8:f3:c9:c0:
20:a1:ef:99:e8:dc:d6:06:ed:42:1b:d1:5b:5d:01:db:e8:94:
1d:87:ae:59:c1:02:47:03:1a:3b:66:45:bc:80:c5:0c:92:33:
1d:eb:12:fb:ef:00:43:8e:14:6a:83:b8:6a:f1:05:a3:59:33:
7d:5e:44:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:34 2023 by rpki-client on console-ams.rpki-client.org