Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/rd9ezTRqJL43sooVGsXffahVRmk.roa
File: rd9ezTRqJL43sooVGsXffahVRmk.roa (raw, json)
Hash identifier: 5I7tWq1RQWqPCGTfCx4PzRzXZ57MfzkK3SXKTCNh0+c=
Subject key identifier: AD:DF:5E:CD:34:6A:24:BE:37:B2:8A:15:1A:C5:DF:7D:A8:55:46:69
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 03C58636
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/rd9ezTRqJL43sooVGsXffahVRmk.roa
Signing time: Fri 18 Feb 2022 09:11:37 +0000
ROA not before: Fri 18 Feb 2022 09:11:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.92.44.0/24 maxlen: 24
185.92.45.0/24 maxlen: 24
185.92.47.0/24 maxlen: 24
185.92.46.0/24 maxlen: 24
46.37.98.0/24 maxlen: 24
46.37.97.0/24 maxlen: 24
46.37.100.0/24 maxlen: 24
46.37.99.0/24 maxlen: 24
46.37.105.0/24 maxlen: 24
46.37.102.0/24 maxlen: 24
46.37.104.0/24 maxlen: 24
46.37.103.0/24 maxlen: 24
46.37.112.0/24 maxlen: 24
46.37.109.0/24 maxlen: 24
46.37.108.0/24 maxlen: 24
46.37.111.0/24 maxlen: 24
46.37.110.0/24 maxlen: 24
46.37.107.0/24 maxlen: 24
46.37.106.0/24 maxlen: 24
46.37.114.0/24 maxlen: 24
46.37.113.0/24 maxlen: 24
46.37.116.0/24 maxlen: 24
46.37.115.0/24 maxlen: 24
46.37.117.0/24 maxlen: 24
46.37.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63276598 (0x3c58636)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Feb 18 09:11:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=addf5ecd346a24be37b28a151ac5df7da8554669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2b:9b:3a:07:32:73:f4:69:c7:d6:fd:43:01:
4f:e5:24:85:fb:44:8b:ce:c7:a4:ec:20:90:a7:db:
7d:92:0f:fa:16:c8:03:46:45:0f:83:6f:d6:67:ca:
5b:64:99:cc:f6:86:46:3a:f8:1a:20:44:87:31:f3:
1c:73:86:b1:a8:04:09:da:72:73:80:41:42:12:fd:
0c:a5:d8:ff:02:eb:5b:94:13:e2:45:06:cd:13:c6:
94:e9:d1:f0:98:e4:5c:11:1f:d8:6c:ad:03:c0:25:
79:ee:38:7f:5d:59:cb:49:ba:38:d4:51:d8:a6:4a:
e9:9d:45:e9:96:fd:69:04:c1:f2:aa:af:a6:84:d8:
f6:74:47:3b:3c:80:41:5b:e3:03:a6:52:94:60:23:
28:7d:37:89:e7:a0:46:fc:b0:ea:f2:1e:f6:c9:1a:
9e:44:0d:a6:51:89:97:bc:17:fd:70:d3:d5:13:ab:
37:2b:3b:f2:5e:3a:9e:83:93:da:e6:40:42:8c:ca:
29:b6:c2:70:4b:b6:31:e3:e6:fa:59:eb:56:1d:44:
b4:de:ff:dc:b3:0c:0d:62:d5:f5:78:6a:b8:32:6c:
ae:d0:30:6f:a8:1b:db:37:11:e0:fd:7a:c3:89:d3:
39:47:98:da:58:b2:58:4b:9d:72:25:25:f8:da:11:
2b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:DF:5E:CD:34:6A:24:BE:37:B2:8A:15:1A:C5:DF:7D:A8:55:46:69
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/rd9ezTRqJL43sooVGsXffahVRmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.97.0-46.37.100.255
46.37.102.0-46.37.117.255
46.37.119.0/24
185.92.44.0/22
Signature Algorithm: sha256WithRSAEncryption
49:89:1b:11:23:1c:8b:66:75:da:e4:38:7a:df:c7:de:27:ca:
9d:b9:a2:ea:62:d5:2c:ec:65:e9:1c:ba:31:ec:97:69:65:cf:
cc:bd:77:bf:0a:8c:4c:64:c8:76:e0:d4:2a:c8:6d:82:bf:6a:
bd:58:ab:77:d6:90:fe:5b:06:7b:7c:9f:0b:2b:cf:af:e6:af:
7a:54:f6:c2:3f:91:3e:a8:a4:16:67:a8:4b:2c:27:d4:38:80:
68:43:bf:9a:5b:f1:b6:44:7a:1b:52:84:95:69:ef:cf:c7:65:
86:93:34:46:56:33:2a:8b:65:b5:6b:c3:75:cd:ec:c4:78:3e:
8c:a7:33:e2:1c:f4:c3:29:10:9d:20:04:53:6c:2e:a0:b3:6b:
7c:3a:b9:fb:ba:22:8f:ea:62:c1:26:c4:9d:74:a2:e3:07:af:
af:f3:1f:b1:cd:ff:27:f1:9e:c9:b7:16:7e:b1:ca:c9:f2:6c:
cf:f1:16:81:de:35:c7:71:92:fa:54:c8:20:49:08:22:8a:d3:
6d:ea:f7:83:11:dc:2b:31:d4:d6:ae:e7:37:be:82:3b:3f:80:
3d:f1:c4:37:91:fd:a1:49:85:8b:f4:c5:2f:d1:8b:a1:30:9e:
63:86:34:d8:3d:62:a3:9d:bb:68:9d:50:52:1f:bc:e2:18:48:
4c:f2:91:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:35 2023 by rpki-client on console-ams.rpki-client.org