Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/jpIQsxzHAAZCbzbrJDGPvEwgLVM.roa
File: jpIQsxzHAAZCbzbrJDGPvEwgLVM.roa (raw, json)
Hash identifier: 385X5/VSxp3JaP2rVbhN2L1R9NI2Vhe2zGDGE2CXHCM=
Subject key identifier: 8E:92:10:B3:1C:C7:00:06:42:6F:36:EB:24:31:8F:BC:4C:20:2D:53
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 0182161583DB4693735641A86668BBC96C30
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/jpIQsxzHAAZCbzbrJDGPvEwgLVM.roa
Signing time: Tue 19 Jul 2022 10:51:24 +0000
ROA not before: Tue 19 Jul 2022 10:51:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29538
IP address blocks: 46.37.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:16:15:83:db:46:93:73:56:41:a8:66:68:bb:c9:6c:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jul 19 10:51:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e9210b31cc70006426f36eb24318fbc4c202d53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:3d:c0:a4:af:f9:61:36:14:b3:db:cf:bf:81:
c0:31:81:7f:f0:d5:91:a1:6b:a7:2f:95:57:32:6c:
07:55:81:64:ba:33:ab:ce:a0:a8:e5:42:fd:99:77:
6c:3d:3b:9c:5b:39:fd:d6:d5:7e:b5:cc:1b:ad:74:
4e:2e:92:3d:67:ec:f1:9f:6b:38:07:27:14:74:de:
ca:c2:0f:fd:b3:ef:39:34:e8:78:bd:58:5a:53:03:
d1:f1:81:a9:4e:ae:99:00:24:8f:c6:f9:99:2c:4b:
7e:85:21:53:25:02:76:9b:9d:c7:36:dd:8e:86:b6:
eb:e7:ae:e0:3b:46:40:20:59:a0:1b:d4:14:51:20:
c8:6b:7d:fe:da:bb:0f:70:21:48:7c:94:e1:d2:08:
be:f5:b6:b9:40:8f:58:31:3f:54:8a:57:cb:a0:42:
f5:93:d6:b6:76:c3:ef:b7:a3:4a:49:3e:ad:a6:06:
a3:c2:b0:8d:97:d8:46:07:a3:8b:e2:d1:df:fa:53:
5a:7e:a7:41:d5:34:7c:75:1f:12:03:38:ca:3d:6a:
4a:6b:8b:ac:a9:fc:eb:6f:25:e7:ae:dc:43:0f:65:
e8:af:8c:6e:90:0a:4f:18:c5:7d:6a:9c:5c:94:79:
6b:ac:f9:ed:71:43:2f:d6:b6:1f:d1:e6:cb:3b:21:
fd:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:92:10:B3:1C:C7:00:06:42:6F:36:EB:24:31:8F:BC:4C:20:2D:53
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/jpIQsxzHAAZCbzbrJDGPvEwgLVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.108.0/24
Signature Algorithm: sha256WithRSAEncryption
79:1b:fc:f3:a5:55:4d:bf:05:a5:a8:0e:ef:96:a8:1c:35:bf:
3c:05:0f:6f:7b:43:ff:cd:3a:d6:fd:0a:88:67:a4:8e:62:f2:
69:c2:0e:4f:a5:7a:e8:a9:dc:ca:43:a2:25:25:47:71:40:27:
e8:ae:78:18:3e:5d:13:9a:61:9a:d1:9c:01:89:c8:31:be:67:
91:e5:fe:5c:1b:e0:c0:b5:d9:a2:19:05:9f:65:63:bd:cb:9d:
e1:0a:f8:f6:35:53:3c:2d:95:52:2c:fc:87:06:c3:81:19:91:
29:90:9a:6a:3a:63:92:62:cd:40:e4:15:57:dd:ab:8b:e7:f1:
d0:61:91:ff:68:8e:ee:8a:5e:03:59:50:a1:bd:46:ee:87:7b:
d0:56:ce:64:1a:e0:37:2b:58:ad:a6:3a:39:05:6e:cd:1b:66:
ab:79:42:09:97:69:bb:40:6a:d2:5a:d8:7c:a6:8a:10:fe:5b:
ef:07:24:db:cd:0a:e1:94:e0:5c:0e:7b:08:ba:dd:06:8a:53:
bb:15:be:49:6b:2d:af:31:9b:bb:05:10:13:96:74:9a:24:55:
c0:3b:97:67:3f:70:34:2c:af:9c:59:98:8b:b6:2d:e6:5a:85:
55:20:0e:44:50:40:3b:b8:c2:33:e3:a6:96:3e:07:b8:03:8f:
75:e4:b9:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:35 2023 by rpki-client on console-ams.rpki-client.org