Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/wDYuT_STTP9toYHTYba3dEKVYYU.roa
File: wDYuT_STTP9toYHTYba3dEKVYYU.roa (raw, json)
Hash identifier: yqzbmULg1lVNpLIZLnqPCnQqT34RFxLA8EZcux9ZPXo=
Subject key identifier: C0:36:2E:4F:F4:93:4C:FF:6D:A1:81:D3:61:B6:B7:74:42:95:61:85
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 032DDC82
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/wDYuT_STTP9toYHTYba3dEKVYYU.roa
Signing time: Sat 01 Jan 2022 09:57:13 +0000
ROA not before: Sat 01 Jan 2022 09:57:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 27630
IP address blocks: 46.37.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53337218 (0x32ddc82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jan 1 09:57:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0362e4ff4934cff6da181d361b6b77442956185
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:40:b1:b9:76:05:08:f7:b6:36:c0:64:b9:1d:
f3:5b:a2:96:82:b3:e8:8f:1a:d8:a3:5e:7b:8e:d8:
18:44:01:89:e2:14:79:f3:47:97:7d:1d:30:63:be:
9a:91:48:d0:e7:df:7f:be:ee:9b:4b:2f:66:c4:8c:
d1:da:78:4d:21:1d:d9:27:3c:d9:c7:f9:65:76:bc:
07:e5:6c:be:6c:4d:0d:68:35:d5:bc:53:3a:e6:2a:
91:94:37:d9:a5:be:5d:a7:d3:12:79:3a:c4:ca:91:
d6:17:ce:ec:99:8e:76:37:53:0f:db:60:ba:5e:35:
ee:41:37:b8:cf:a7:04:32:3a:d8:16:43:e9:18:58:
6d:67:73:19:81:0d:88:a4:9e:10:08:91:53:ec:8d:
be:f9:01:48:4e:39:a4:31:ea:28:79:68:31:2e:56:
fb:07:02:66:d7:b6:de:30:63:1d:28:c0:60:26:6f:
b3:96:2d:1e:64:19:3e:08:69:16:d0:4e:38:e3:45:
c8:97:5e:9b:0a:c0:fa:02:ac:8c:43:c9:77:f7:80:
66:e2:cb:cd:82:72:81:a5:ce:53:51:9c:47:01:7c:
2a:ee:8b:04:f3:57:f9:3e:f0:ab:64:9b:30:5c:c1:
b3:0a:08:13:d3:ee:9a:89:a3:ab:fa:b3:30:99:d0:
56:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:36:2E:4F:F4:93:4C:FF:6D:A1:81:D3:61:B6:B7:74:42:95:61:85
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/wDYuT_STTP9toYHTYba3dEKVYYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.117.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:0e:d8:e1:54:86:93:1a:15:de:45:5b:7e:d9:0f:55:b5:60:
a3:b6:9b:0d:d5:25:c1:42:31:ae:df:bc:92:6b:03:d0:73:01:
0f:73:67:d0:8c:f0:7d:e3:41:42:05:91:a4:10:f1:ab:e0:3c:
29:18:90:99:b4:d7:e5:aa:6c:9c:79:46:67:5a:a2:a1:76:59:
2f:23:93:74:44:32:9c:2d:d4:13:18:40:19:cd:e9:74:74:b2:
36:49:65:90:75:cc:79:84:1a:03:db:d4:6b:eb:83:a7:8d:24:
5a:06:48:ed:c9:fd:25:b2:59:40:7f:f1:35:f6:9a:0e:69:00:
1b:c7:b0:8f:63:70:f5:48:c4:92:56:97:dc:a1:cd:55:3b:d5:
94:80:ec:ce:45:d3:c3:12:b2:30:c4:43:43:f1:74:4b:3d:15:
20:39:fe:ce:26:f0:03:26:0e:96:ab:47:3d:53:f5:9c:aa:46:
2e:68:34:d5:78:6c:14:ae:55:f6:a4:5a:3e:73:33:72:eb:c6:
bd:2a:0b:29:0d:42:33:e8:63:f8:25:cc:0f:09:0d:a8:64:e1:
90:f3:22:40:b3:60:2c:36:70:13:7d:2c:b6:cd:99:e1:87:79:
d9:c2:77:3f:82:ff:86:e7:a2:52:9f:00:20:d2:5e:ee:5e:78:
fe:a8:f4:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:35 2023 by rpki-client on console-ams.rpki-client.org