Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/yLfIXshAZrVZnuGc2BWqr9iizeI.roa
File: yLfIXshAZrVZnuGc2BWqr9iizeI.roa (raw, json)
Hash identifier: WTuGGrCu0sQlSznwRFwL20f8BkOipxjhauEJn12k0N4=
Subject key identifier: C8:B7:C8:5E:C8:40:66:B5:59:9E:E1:9C:D8:15:AA:AF:D8:A2:CD:E2
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 0182F5C238956D53537180F731551457B838
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/yLfIXshAZrVZnuGc2BWqr9iizeI.roa
Signing time: Wed 31 Aug 2022 21:15:22 +0000
ROA not before: Wed 31 Aug 2022 21:15:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398343
IP address blocks: 46.37.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f5:c2:38:95:6d:53:53:71:80:f7:31:55:14:57:b8:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Aug 31 21:15:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8b7c85ec84066b5599ee19cd815aaafd8a2cde2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:75:cf:1f:3d:50:9a:ec:64:7a:bd:0f:37:bf:
6b:b3:b7:ee:1d:c6:28:11:1f:5f:6c:e9:b4:22:cf:
1f:f6:e4:6e:aa:c7:d5:15:16:11:d3:7b:30:00:78:
56:6c:4e:f8:67:38:e9:c2:f3:e8:51:f3:9f:90:60:
c5:5c:45:6a:3d:f2:82:2a:16:55:08:83:5b:eb:98:
bc:1d:1b:c7:66:de:f3:32:31:f8:80:cb:3a:ec:9b:
b9:77:c5:59:48:6d:c8:ee:4a:32:ce:79:3e:84:a4:
19:91:ed:58:c3:7b:13:be:32:e4:b8:8f:98:d8:ea:
24:55:04:2c:14:ab:7a:ec:1e:8d:a9:4b:ab:09:57:
ac:fa:07:0d:e0:07:e6:75:47:77:d8:a3:ca:6e:85:
87:7c:4c:24:cb:b7:4c:19:4f:01:a3:a7:b8:53:3d:
c6:30:43:fd:72:de:3f:48:28:d0:5c:98:bd:b7:cd:
4f:51:92:d5:d3:8c:f7:68:ee:07:fc:99:09:dc:a3:
bd:f0:00:7a:61:92:72:78:5d:3d:b1:b0:e9:67:e1:
f2:36:3a:e1:82:25:62:ed:9d:a5:9a:4e:dd:e3:24:
d7:c3:48:18:d3:8b:9e:c5:e1:b8:8d:44:cd:a8:2d:
7c:6f:26:0d:33:28:01:32:a2:f9:ed:34:08:65:31:
af:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:B7:C8:5E:C8:40:66:B5:59:9E:E1:9C:D8:15:AA:AF:D8:A2:CD:E2
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/yLfIXshAZrVZnuGc2BWqr9iizeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.103.0/24
Signature Algorithm: sha256WithRSAEncryption
36:74:b2:b4:bc:13:f7:7d:c4:1a:2d:d9:02:07:ae:31:af:a6:
a3:b2:e6:fa:0e:32:9c:e8:6b:96:84:8c:48:f4:d7:8a:cf:77:
58:b0:18:71:1a:62:5b:f0:ae:cb:54:f2:c6:fa:f0:77:11:3e:
a0:e9:41:67:dc:2c:57:a5:3a:bd:c6:fa:57:4f:30:65:bd:55:
ff:4e:99:dc:7c:99:65:43:43:b7:77:7d:e5:07:c9:9a:30:c3:
ea:59:29:32:32:6b:f5:a2:61:0e:a8:c8:91:47:96:03:d3:5f:
58:ff:8d:61:be:f0:af:2c:db:7a:fa:ba:17:74:c2:68:99:e9:
9b:a7:26:5c:99:91:1b:f3:25:28:fd:1d:6a:31:b5:42:21:2c:
ab:7a:86:ff:bb:04:eb:38:7c:b9:6f:0a:df:aa:b6:f3:47:7c:
1d:5a:5b:89:59:ca:88:a3:0c:62:32:7f:c5:c4:10:ac:7c:9f:
d2:98:f6:2f:5d:8b:79:da:56:b3:cc:67:18:76:33:9a:f4:5e:
46:f3:3f:c7:69:40:3c:ba:a2:5b:cc:1e:a0:23:ab:32:74:4c:
f9:37:33:aa:be:b6:82:53:55:1b:84:13:c0:18:03:8e:69:b0:
25:a7:fb:09:a7:ff:d6:90:1d:0a:5c:7c:32:8f:91:a8:4d:14:
af:d9:0a:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:35 2023 by rpki-client on console-ams.rpki-client.org