Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/q95hxEPuZzxdempRrTgHn6MFSXc.roa
File: q95hxEPuZzxdempRrTgHn6MFSXc.roa (raw, json)
Hash identifier: eA37hKmzRe6SQBpM+WW8ne3l2ndJmNiDwjgSFB9NZ/4=
Subject key identifier: AB:DE:61:C4:43:EE:67:3C:5D:7A:6A:51:AD:38:07:9F:A3:05:49:77
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 01839E8DA2A8D88F0B77DBD917FEE539A866
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/q95hxEPuZzxdempRrTgHn6MFSXc.roa
Signing time: Mon 03 Oct 2022 15:53:45 +0000
ROA not before: Mon 03 Oct 2022 15:53:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210703
IP address blocks: 46.37.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9e:8d:a2:a8:d8:8f:0b:77:db:d9:17:fe:e5:39:a8:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Oct 3 15:53:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abde61c443ee673c5d7a6a51ad38079fa3054977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:07:c9:2d:1b:44:6b:5c:40:aa:b6:cb:a1:a6:
2d:ec:20:07:e6:92:4c:0e:7c:ef:0c:56:90:b3:8b:
06:d0:1f:c0:9f:19:29:60:e7:d3:0a:57:f2:ad:92:
6f:f3:2b:a7:f9:06:54:47:6a:d9:5d:0d:1c:02:47:
9d:aa:b7:3d:f0:23:40:ba:77:32:4a:c6:7a:f6:55:
72:57:ea:fc:1f:e0:30:0b:78:6c:d1:80:74:92:19:
24:89:ab:9a:f8:30:d3:d1:fb:bb:53:4b:dc:65:01:
fa:3d:96:76:db:50:ea:65:d0:d6:cc:24:e9:73:74:
d5:23:f3:ad:f9:90:bd:37:ba:8d:6d:03:de:34:c6:
88:32:05:4a:4c:ae:40:9c:0a:34:cb:f5:5e:5b:dc:
56:5a:e2:fd:cc:94:09:7b:4f:ea:ec:02:7f:1a:86:
ef:2d:b1:81:57:1c:91:6f:87:87:75:b8:56:f6:f3:
75:c1:5e:81:c1:6b:ad:b0:2c:05:60:09:e8:38:ff:
82:a0:00:05:89:a2:21:50:a4:fc:67:c9:cf:2e:99:
5d:bb:a8:2a:88:3c:2f:6a:9d:e0:b3:03:0c:c4:b8:
56:b8:d2:84:32:a4:34:08:33:40:f6:65:c5:51:ab:
68:b4:eb:35:03:86:db:36:2f:82:47:0b:aa:ea:24:
78:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:DE:61:C4:43:EE:67:3C:5D:7A:6A:51:AD:38:07:9F:A3:05:49:77
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/q95hxEPuZzxdempRrTgHn6MFSXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.103.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:b1:a8:ed:ce:b9:db:07:49:7b:5e:86:c1:ed:5c:20:3a:f9:
39:42:b9:b1:8c:48:f3:70:3b:77:8b:b0:2d:ac:d5:ff:08:8a:
10:09:9a:cc:40:67:71:05:c6:40:ac:e9:72:84:06:4d:85:4e:
ff:90:5d:59:12:85:81:9d:ce:f6:d8:be:c3:a8:3d:9a:4a:51:
4e:c8:86:83:71:47:1d:56:20:66:54:cc:c0:15:5e:21:e1:f9:
a8:03:58:8f:63:76:15:4e:a1:e6:6b:03:69:12:87:42:8f:9f:
9a:ea:f4:dd:31:86:44:04:3e:f7:3d:59:86:61:cb:0c:9b:bb:
e0:5e:39:92:1e:e3:be:7d:48:c9:2d:87:9d:90:0d:63:1a:37:
70:cc:59:e2:c9:94:e4:3b:3e:1f:e2:02:ae:5a:c2:9b:93:1f:
a6:49:9a:5f:1d:e7:d1:a9:d0:ed:ca:5c:ca:0f:6a:b8:69:9b:
bf:5d:ab:57:1d:e5:c1:cd:d1:59:9d:19:9b:f7:2a:d2:b4:31:
d1:89:b6:5d:19:b3:18:19:15:2e:0b:7f:88:97:f1:39:0b:6e:
33:ce:72:59:36:d9:e7:79:20:67:c0:1f:8b:45:5a:b0:90:d4:
96:80:50:ba:cc:32:b1:77:33:42:2c:f3:a7:15:aa:9e:e8:c4:
26:68:da:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:35 2023 by rpki-client on console-ams.rpki-client.org