Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/pTYslGLVhfHhTWc93yFGqvSXoyk.roa
File: pTYslGLVhfHhTWc93yFGqvSXoyk.roa (raw, json)
Hash identifier: V+s+o8VgBJAQm4vx6jSlUGiI/rjubEKMJgUBorZFqxo=
Subject key identifier: A5:36:2C:94:62:D5:85:F1:E1:4D:67:3D:DF:21:46:AA:F4:97:A3:29
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 032F7132
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/pTYslGLVhfHhTWc93yFGqvSXoyk.roa
Signing time: Sat 01 Jan 2022 09:57:14 +0000
ROA not before: Sat 01 Jan 2022 09:57:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44258
IP address blocks: 46.37.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53440818 (0x32f7132)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jan 1 09:57:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a5362c9462d585f1e14d673ddf2146aaf497a329
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:b2:8d:4b:01:d4:2b:ba:d7:b5:fe:9d:18:ac:
9c:ca:c8:8a:64:12:7f:9f:b4:f6:41:70:28:0d:3e:
f6:b3:5e:29:0c:bd:90:01:f0:44:a8:e3:8f:d2:2c:
6f:3e:43:dc:78:52:b6:74:97:61:57:11:39:47:61:
eb:7d:dc:f8:07:09:c5:e7:ec:4e:de:e4:df:12:1f:
fe:ca:1b:22:46:0f:d2:ba:1b:a6:2d:65:d0:7a:29:
91:ce:4f:4f:57:cc:7c:b4:53:a1:71:d6:67:c5:88:
4e:0d:10:b8:1c:b5:5b:28:d7:74:d8:cc:4a:64:cc:
9c:88:29:77:60:dc:94:04:7f:a8:70:c3:70:7b:e6:
0e:e7:6f:07:4e:bb:ec:74:0f:bf:2f:17:0b:e4:cd:
77:44:44:a0:e4:d3:9b:f6:ed:0b:6e:09:68:5b:73:
bd:40:34:83:9c:4c:3c:a1:92:11:ef:0a:c4:42:68:
f5:21:fc:1c:05:74:36:49:47:40:9d:81:ae:3a:16:
72:4c:be:33:40:e4:5c:7a:5e:5a:cb:bd:45:8b:4d:
fa:52:7d:7c:32:c5:1a:93:b6:d3:24:33:47:8b:6c:
7b:43:d3:77:01:bd:02:24:ea:1b:f1:cb:ca:19:54:
08:08:f0:c0:40:d9:df:d6:5f:43:a6:01:de:bb:91:
97:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:36:2C:94:62:D5:85:F1:E1:4D:67:3D:DF:21:46:AA:F4:97:A3:29
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/pTYslGLVhfHhTWc93yFGqvSXoyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.109.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:c0:90:ec:48:c8:bc:e4:8a:80:81:b3:64:28:bf:00:e1:cc:
72:7a:10:16:12:f3:35:5f:49:cb:cc:65:32:af:3c:02:4d:a3:
9a:75:1f:7a:ea:39:e2:b5:e1:de:fd:9b:75:19:d0:fb:d2:d0:
e8:cb:fd:c6:71:91:a0:de:c6:67:89:9a:1f:c7:fe:45:40:74:
54:02:5b:58:b7:d7:df:99:cb:4b:a8:6c:ec:85:45:d9:93:9f:
29:21:35:22:3f:14:fb:55:3e:fa:37:6b:fd:de:da:9d:1d:2a:
e9:3f:71:a6:7b:47:ae:81:b3:bc:87:e2:9a:84:d9:cc:ba:b2:
06:7b:e0:4f:8a:0d:3b:37:cd:33:6c:af:af:32:d9:28:3e:82:
28:c6:7c:7f:2d:99:62:74:7d:81:89:c9:5f:20:d3:1e:2c:d0:
e6:85:3e:f5:70:01:09:95:a8:43:cc:72:5c:8e:cf:88:ac:ce:
2d:8d:03:c1:02:ac:5d:9c:9a:6a:a9:7d:f3:ec:5b:66:ea:4b:
8b:b7:a4:dc:1a:e9:de:61:8c:43:3c:5e:c7:c0:54:53:ab:a2:
74:59:3d:d2:db:d7:bb:01:76:d7:42:2d:a9:06:ad:b8:58:6c:
dd:93:a5:d6:9e:09:68:1f:65:54:de:e5:b5:ef:e4:96:0d:d6:
65:ab:d6:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:35 2023 by rpki-client on console-ams.rpki-client.org