Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/vmetUsiuWSYN2swAT4yZmldMcwI.roa
File: vmetUsiuWSYN2swAT4yZmldMcwI.roa (raw, json)
Hash identifier: aq4bjQ+xpwrpkYUYS0My9yRIocUDuVCe/pw3db2xSSg=
Subject key identifier: BE:67:AD:52:C8:AE:59:26:0D:DA:CC:00:4F:8C:99:9A:57:4C:73:02
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 0335A0FB
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/vmetUsiuWSYN2swAT4yZmldMcwI.roa
Signing time: Sat 01 Jan 2022 09:57:18 +0000
ROA not before: Sat 01 Jan 2022 09:57:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211193
IP address blocks: 46.37.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53846267 (0x335a0fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jan 1 09:57:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be67ad52c8ae59260ddacc004f8c999a574c7302
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f1:fa:6b:3c:83:a5:c8:c2:d7:30:8a:ed:98:
52:e6:4d:97:67:7d:fa:0f:c3:fc:87:e3:f6:b1:8d:
9f:ef:37:64:db:51:13:3d:6c:c7:5c:5b:42:21:62:
9c:b6:11:e0:6b:c3:5c:f8:1c:fe:ad:9d:34:0a:b5:
dc:ea:17:77:04:17:4a:14:cc:9a:f7:78:cd:dc:4d:
80:98:aa:c3:ae:af:ec:a2:c8:6c:98:2f:75:47:b7:
07:99:0d:64:f6:1b:16:64:ff:2e:80:d4:86:93:89:
9d:4a:3a:74:d9:eb:23:18:ef:97:85:91:23:a2:b7:
f0:4d:3b:3d:9e:bb:44:32:5f:ef:1c:8a:d6:08:41:
ad:ce:a0:c2:d0:a7:4c:c6:a0:b8:c8:07:cf:93:45:
48:51:60:ea:ce:16:4a:cd:bd:51:0a:d9:62:9e:a5:
c1:39:de:02:9e:a3:06:b4:4e:16:bc:4c:67:7d:4a:
e8:74:fc:a4:8c:96:6e:05:4c:f6:91:59:19:62:2f:
3d:40:d7:9c:9e:3f:7f:28:bc:50:13:08:36:87:0e:
08:49:70:c5:07:f6:b5:da:7d:0c:c2:26:9b:59:dd:
a3:b0:58:bd:8c:8b:0d:d2:97:e7:63:f3:ea:c3:60:
73:3d:f4:03:26:64:f5:c2:88:89:e1:34:36:eb:6e:
0a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:67:AD:52:C8:AE:59:26:0D:DA:CC:00:4F:8C:99:9A:57:4C:73:02
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/vmetUsiuWSYN2swAT4yZmldMcwI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.99.0/24
Signature Algorithm: sha256WithRSAEncryption
68:9e:15:f9:96:21:a7:f2:67:3a:de:a0:fc:2e:72:06:6d:18:
e8:71:6f:63:25:27:74:08:85:d3:2a:cb:20:60:a9:34:56:c8:
e3:06:0d:c4:7f:ef:ff:26:f9:eb:0f:79:1c:71:4e:eb:ba:c5:
6e:ff:44:6b:40:8b:f1:6e:d3:a0:ca:05:72:7c:cf:10:2f:d2:
d5:d3:2d:09:7a:68:e7:1e:10:c0:97:9f:72:c3:b8:17:15:1b:
8d:54:c2:4c:a5:76:9c:18:9a:4a:ea:29:8e:f2:77:d8:9f:99:
99:b3:f3:37:6c:5a:d1:2c:6b:0b:1a:a1:75:ff:6f:6b:23:e5:
73:a7:12:c7:17:54:d8:0b:81:63:5c:fc:d6:47:be:12:66:45:
29:62:a0:83:09:ef:96:42:71:65:d1:2e:7e:85:5b:6a:c3:c9:
d6:14:86:7a:0d:7f:72:a0:ad:f5:0b:86:59:d7:14:1a:71:8e:
11:f3:9d:85:e7:1c:4b:b1:de:19:e8:57:d9:f4:9b:4d:b2:f9:
18:20:0a:fb:6c:1b:95:cd:b0:57:35:92:f0:5c:8f:e9:54:43:
61:12:7c:f5:d6:07:c3:7e:53:6f:65:b7:74:a8:8e:b1:7e:1b:
10:ce:7a:c5:b1:37:8f:ea:7e:df:d9:87:81:f6:22:f3:34:9d:
92:8c:67:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:35 2023 by rpki-client on console-ams.rpki-client.org