Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/97iAqyfy33xepRJC3ziHoahZzco.roa
File: 97iAqyfy33xepRJC3ziHoahZzco.roa (raw, json)
Hash identifier: BpanaHjib+Y74NmA5+dqtOzOtuVjiUn6yPtYxsAGdSQ=
Subject key identifier: F7:B8:80:AB:27:F2:DF:7C:5E:A5:12:42:DF:38:87:A1:A8:59:CD:CA
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 433DDDB4
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/97iAqyfy33xepRJC3ziHoahZzco.roa
Signing time: Sat 01 Jan 2022 07:59:50 +0000
ROA not before: Sat 01 Jan 2022 07:59:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24851
IP address blocks: 37.235.55.0/24 maxlen: 24
2a03:f80:44::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1128127924 (0x433dddb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Jan 1 07:59:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7b880ab27f2df7c5ea51242df3887a1a859cdca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:cb:65:29:5c:38:fb:35:66:54:6c:af:e8:1b:
75:dd:5d:d8:9a:37:18:f0:e3:39:b6:cb:ec:33:4a:
08:50:b8:3a:32:bc:6b:4c:38:e6:b5:48:03:9d:b0:
47:74:cf:b6:5a:e2:b1:3d:fb:76:f3:a7:7e:08:a3:
1c:8a:e3:c5:16:dc:15:03:07:81:b3:1a:25:3a:02:
87:8e:38:cf:ed:e7:cf:a0:a2:88:16:68:77:87:7b:
6a:82:67:0b:06:1a:12:f3:ac:d8:7c:4e:68:88:99:
ee:1b:55:4e:1d:5c:4e:c8:a6:83:15:c3:85:66:4c:
00:00:5e:92:4e:41:02:80:0d:7c:86:8f:ee:21:88:
a0:f4:11:50:70:8a:a4:87:f2:72:86:41:eb:00:36:
23:67:18:76:42:e3:b6:59:d2:4e:51:28:97:a7:75:
91:a2:e3:00:52:87:9d:ed:dc:29:87:d0:47:70:95:
d6:2a:87:0a:d8:4c:06:e3:ac:d4:00:47:a8:06:3d:
c4:fe:79:b1:58:b7:ff:9e:36:c4:2c:22:6d:87:10:
77:bf:83:36:d9:e0:7a:4d:42:56:ca:47:04:62:b9:
fd:4e:33:db:e1:9b:22:be:56:b5:e4:99:56:11:b1:
b5:d8:72:ac:13:bb:0e:a6:74:59:d5:3f:68:dc:21:
ef:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:B8:80:AB:27:F2:DF:7C:5E:A5:12:42:DF:38:87:A1:A8:59:CD:CA
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/97iAqyfy33xepRJC3ziHoahZzco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.55.0/24
IPv6:
2a03:f80:44::/48
Signature Algorithm: sha256WithRSAEncryption
a4:a2:c3:be:52:64:a9:49:65:87:64:eb:b5:93:c1:82:50:e8:
1a:f1:dd:a1:2b:f4:49:1f:a9:80:f5:eb:b0:07:83:0e:67:63:
62:de:a8:2c:d9:11:2f:b4:aa:45:74:b6:07:55:59:e4:c1:8d:
12:ef:88:12:5f:41:e8:70:8e:b0:3c:84:d1:f7:06:60:f9:02:
38:92:ec:95:5c:14:af:83:fd:95:d8:ae:20:b3:89:6f:2c:63:
58:b8:c1:7d:89:d4:0b:63:0e:d8:ae:b7:1f:69:44:b5:d1:91:
8d:e1:bc:2d:63:44:33:73:15:66:1c:91:53:41:c9:72:c7:cf:
b6:eb:5f:2c:21:93:d4:26:fa:ab:c8:21:28:97:19:80:e6:14:
86:56:55:fd:8a:62:40:f4:8d:79:8f:91:03:12:14:d5:d6:7f:
c6:df:94:21:fb:6c:ed:4c:15:74:ba:e8:2f:07:44:f0:75:a0:
43:53:9a:9a:e9:3c:ba:22:53:e6:3e:65:24:70:f1:a9:20:63:
74:b4:9e:13:00:69:db:de:7d:14:4b:c2:03:a2:d6:c0:ab:6f:
62:36:25:0d:11:c9:09:55:f0:c2:b5:20:6d:e0:f0:88:8a:74:
01:ca:a0:47:bf:44:c7:68:a1:f5:48:c4:4b:d6:cf:ef:ea:0b:
b4:91:1f:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:58 2023 by rpki-client on console-ams.rpki-client.org