Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/svxZqyM57PuUQi2HlWBIHXWRyFg.roa
File: svxZqyM57PuUQi2HlWBIHXWRyFg.roa (raw, json)
Hash identifier: jeNnWRwZYVDoXMD/u73fxtSQbTJ0bPijp9wMsjAz7w8=
Subject key identifier: B2:FC:59:AB:23:39:EC:FB:94:42:2D:87:95:60:48:1D:75:91:C8:58
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 01836A9BA4D6775B22B7269C0E2BE4AB0D8E
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/svxZqyM57PuUQi2HlWBIHXWRyFg.roa
Signing time: Fri 23 Sep 2022 13:48:48 +0000
ROA not before: Fri 23 Sep 2022 13:48:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15723
IP address blocks: 46.23.103.0/24 maxlen: 24
46.23.101.0/24 maxlen: 24
46.23.102.0/24 maxlen: 24
46.23.100.0/24 maxlen: 24
37.128.203.0/24 maxlen: 24
37.128.202.0/24 maxlen: 24
37.128.200.0/24 maxlen: 24
37.128.201.0/24 maxlen: 24
5.10.240.0/20 maxlen: 20
185.81.216.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:6a:9b:a4:d6:77:5b:22:b7:26:9c:0e:2b:e4:ab:0d:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Sep 23 13:48:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2fc59ab2339ecfb94422d879560481d7591c858
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b7:60:61:27:0e:4d:7c:b2:c2:f4:5d:b2:3a:
53:44:06:10:a2:1f:84:d2:be:bf:ab:31:4c:eb:b1:
49:aa:da:08:70:d0:e9:20:b5:9b:64:0a:d2:5f:8a:
fc:71:24:f1:ab:b3:d7:33:08:25:b7:3d:13:54:a4:
e6:df:75:4b:29:6b:d8:8d:49:10:aa:b6:5b:81:22:
2d:73:b6:77:16:73:4e:f2:c1:6d:47:56:66:7a:9d:
64:5d:62:bd:f8:fc:e7:da:e9:9f:7a:e9:c6:0c:03:
1a:03:f4:8d:11:b6:4e:ef:de:f6:05:24:0b:af:27:
a6:79:fe:d3:2e:78:59:1f:45:c9:bd:41:3b:3f:c9:
9d:9b:35:f9:c9:75:e7:24:df:3a:ae:f5:de:9e:33:
28:f5:5e:f5:ab:67:f7:c9:10:e1:66:1e:8c:85:8a:
5e:a3:ce:40:d5:c0:41:06:13:ec:c7:17:4a:a2:67:
8e:9d:27:f6:4a:07:f5:80:6c:dc:02:bf:3b:91:5c:
d6:8d:fc:b2:b4:45:62:79:e9:a8:81:b2:d3:02:12:
fc:78:5f:b2:6a:66:96:a2:d5:4d:17:9f:ce:d5:fa:
ff:b7:33:74:fc:11:fb:45:dd:1f:91:7a:87:1b:19:
36:35:33:c6:ad:d5:d5:24:99:d0:a1:59:e5:04:30:
11:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:FC:59:AB:23:39:EC:FB:94:42:2D:87:95:60:48:1D:75:91:C8:58
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/svxZqyM57PuUQi2HlWBIHXWRyFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.240.0/20
37.128.200.0/22
46.23.100.0/22
185.81.216.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:10:56:59:03:8b:31:74:14:48:80:ab:7f:c1:51:99:b4:fa:
83:df:be:3d:d0:04:6a:cd:2d:f2:a2:aa:ab:6d:79:59:23:b8:
6e:4f:13:f7:5c:e4:23:18:60:b4:19:44:24:c1:98:43:88:8f:
f1:2e:ab:c2:d2:8d:d7:c3:aa:6a:60:1a:dc:a9:8d:85:d1:c8:
d7:bf:28:a8:b9:ff:f6:39:9d:96:a5:94:2a:04:68:63:36:08:
26:e9:f4:e7:1f:fc:e8:f9:58:f3:2f:02:e7:5a:f1:c9:67:b2:
00:b4:04:ec:11:8b:b9:dc:b9:dd:af:7b:c3:d9:4a:82:5f:6d:
a1:b2:25:f1:cd:52:f7:cd:e1:31:63:a1:57:e4:37:b2:ed:78:
a4:30:03:a8:3e:2d:4a:a2:a8:b6:87:ab:4d:a8:05:7a:2e:0d:
58:6a:ac:a2:28:b5:42:50:ad:92:c7:43:d4:61:05:5b:d8:e0:
85:d1:c7:ca:04:e2:3c:79:a6:57:41:55:bc:45:5b:35:47:6c:
b7:6e:78:9b:50:ec:86:d7:f6:b6:b8:9c:5a:cb:4e:fe:9f:66:
5c:bb:c7:2e:e1:e8:72:22:66:4f:e7:3a:2c:8a:f4:ea:c6:b0:
6f:d6:63:fd:63:7b:52:9f:b7:95:8a:d8:05:d6:fe:fe:86:de:
55:e1:cf:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:51 2023 by rpki-client on console-ams.rpki-client.org