Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/VzjpDw77UVnkPuOEHe-7nWRrPOs.roa
File: VzjpDw77UVnkPuOEHe-7nWRrPOs.roa (raw, json)
Hash identifier: 5fN/w+Qnkdp0ZfQMritHsYcM3Ii0+8e5cXvRF3qeeb0=
Subject key identifier: 57:38:E9:0F:0E:FB:51:59:E4:3E:E3:84:1D:EF:BB:9D:64:6B:3C:EB
Certificate issuer: /CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Certificate serial: 03F0208F
Authority key identifier: 04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/VzjpDw77UVnkPuOEHe-7nWRrPOs.roa
Signing time: Sat 01 Jan 2022 03:01:57 +0000
ROA not before: Sat 01 Jan 2022 03:01:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201443
IP address blocks: 37.202.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66068623 (0x3f0208f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Validity
Not Before: Jan 1 03:01:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5738e90f0efb5159e43ee3841defbb9d646b3ceb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:20:38:a7:a7:79:eb:09:21:8c:24:9d:2b:4c:
e5:e9:73:b1:7c:89:16:07:4f:80:7d:38:b9:74:15:
3b:ac:2a:ea:c7:d4:aa:e4:32:42:b4:79:9f:87:d7:
39:bf:ad:0c:c3:2e:62:bf:a3:81:ae:98:20:04:9c:
c7:d1:18:f8:d0:e0:34:6b:0c:ee:44:fe:1a:14:5b:
cc:8e:0c:f9:5f:5a:4d:1b:e0:93:f1:cc:dc:e0:92:
60:47:fd:c6:fd:d2:8c:a7:1c:af:6e:b4:73:c8:19:
ca:6d:69:62:97:bc:5d:d6:2e:df:43:30:3d:e0:53:
96:c7:53:b6:6a:67:9b:f2:af:7d:96:0b:9f:cf:be:
d8:99:8e:a9:d9:77:7a:e6:6c:27:9f:c4:b5:77:15:
11:ef:93:fe:c8:4b:e2:fe:ec:ce:47:d6:c2:2c:70:
f7:27:2d:28:c8:a3:cb:13:df:c6:6b:36:de:72:2a:
39:ed:66:69:24:70:2f:2d:d4:7d:dc:13:34:42:c1:
5c:14:16:df:61:8b:b7:2f:d7:f7:0f:5c:33:be:d3:
42:33:b0:26:63:f2:ce:16:51:44:30:3c:2f:fa:ad:
99:f9:0e:d7:f8:7b:8d:12:57:f1:65:62:fc:eb:63:
d6:f6:4f:59:69:d7:b1:f7:40:9d:a9:a1:c5:ed:d7:
fd:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:38:E9:0F:0E:FB:51:59:E4:3E:E3:84:1D:EF:BB:9D:64:6B:3C:EB
X509v3 Authority Key Identifier:
keyid:04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/VzjpDw77UVnkPuOEHe-7nWRrPOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/BMvltGI9q0LxWpBQAtt85i6FTyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.14.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:79:e3:a5:11:77:6c:64:58:51:bf:8d:82:3b:db:e8:0a:83:
1c:09:52:e3:4d:76:bb:17:86:28:50:b6:6e:66:bf:fe:0a:d3:
09:ee:8e:92:58:b4:11:29:e6:b8:47:a8:2b:fe:1b:eb:eb:71:
73:e5:1c:1f:1e:56:21:e8:1e:27:0c:b4:52:a8:72:18:74:f6:
1c:f4:ab:b1:dc:0f:5f:9f:01:86:19:f7:cd:71:6a:7d:48:8d:
d8:cb:f4:93:89:cf:34:78:92:32:ab:ca:0c:f9:01:1b:05:1c:
9d:15:c0:d1:8d:2b:f2:a4:bd:7d:01:ce:5f:90:0a:3b:9a:8b:
53:32:65:b6:40:b0:b7:78:ee:ed:27:c0:a3:61:eb:5b:23:f1:
aa:ce:68:65:d9:e8:f7:39:38:0c:98:c3:87:fa:d4:46:cd:93:
d0:be:b8:01:42:51:4f:f3:e6:f0:55:c4:68:da:57:46:23:5f:
58:4c:44:37:7d:4f:1a:eb:88:ec:c2:0d:5c:6d:29:8a:81:b1:
39:33:df:49:ee:76:fb:4c:4d:92:db:c3:52:8f:bb:a3:9b:0d:
80:c5:1c:56:26:7f:96:a8:71:68:76:d9:c7:6a:f1:9a:f8:3d:
e6:9a:76:f4:b4:28:73:c2:bc:e2:b0:4b:0d:47:24:14:ad:2d:
2b:53:1c:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:33 2024 by rpki-client on console-fra.rpki-client.org