Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/_PTxR0VnKdiQdW1yQAfwVy4I5So.roa
File: _PTxR0VnKdiQdW1yQAfwVy4I5So.roa (raw, json)
Hash identifier: 157tWgWeDnFKLIQEzW7+K35052fkl3p5v25KUxbCxXs=
Subject key identifier: FC:F4:F1:47:45:67:29:D8:90:75:6D:72:40:07:F0:57:2E:08:E5:2A
Certificate issuer: /CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Certificate serial: 03F262C9
Authority key identifier: 04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/_PTxR0VnKdiQdW1yQAfwVy4I5So.roa
Signing time: Sat 01 Jan 2022 03:01:58 +0000
ROA not before: Sat 01 Jan 2022 03:01:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212443
IP address blocks: 37.202.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66216649 (0x3f262c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Validity
Not Before: Jan 1 03:01:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fcf4f147456729d890756d724007f0572e08e52a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:a2:10:79:9b:a5:e6:63:28:44:e3:7f:c1:a4:
d6:ac:d9:a2:aa:b9:c4:26:33:24:fe:04:28:71:11:
7f:76:e2:3b:74:b3:db:30:1b:78:3e:ce:9f:f5:16:
c7:ad:4d:6e:a7:89:22:9f:09:36:8b:44:46:51:47:
08:41:64:53:07:ce:1e:ce:bd:15:84:d5:89:bd:6f:
07:23:2d:5e:b5:d8:ba:33:65:2e:12:c6:60:7e:fb:
99:eb:85:96:f5:97:74:f7:75:40:3b:21:81:58:19:
47:e0:73:66:51:19:3b:20:1c:89:6a:62:ee:d2:cc:
08:09:0c:b0:46:f9:d9:2f:0c:03:d4:9f:ee:b8:9b:
3d:de:3f:b0:9c:30:a6:08:3c:a0:74:07:68:8d:12:
ff:f2:d1:fd:3b:41:18:b8:e6:b5:f0:b0:68:38:2e:
a0:79:6c:d4:f4:8f:7b:30:20:b5:af:97:3e:1e:27:
47:04:0d:fc:2a:8e:a7:c0:e6:d4:40:48:46:9f:18:
3d:2b:95:09:93:3d:6a:52:ba:04:d6:53:df:70:a7:
e6:10:21:49:8f:e4:52:90:b5:e4:72:23:da:c5:cc:
09:32:c9:50:74:e6:64:f7:91:55:4a:32:7e:e3:20:
cd:26:c5:a7:29:50:20:6a:93:11:8c:22:77:5a:2f:
6a:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:F4:F1:47:45:67:29:D8:90:75:6D:72:40:07:F0:57:2E:08:E5:2A
X509v3 Authority Key Identifier:
keyid:04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/_PTxR0VnKdiQdW1yQAfwVy4I5So.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/BMvltGI9q0LxWpBQAtt85i6FTyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.15.0/24
Signature Algorithm: sha256WithRSAEncryption
85:c1:34:6c:95:f8:78:e5:bc:94:53:e8:d9:d5:a8:48:59:f7:
fe:dd:f6:c4:95:1f:d6:74:03:f8:f0:21:fc:d7:1a:2c:97:84:
22:3b:2a:54:4f:9f:86:57:7a:91:f4:ac:9a:3d:99:6c:84:44:
ec:98:5c:fc:7c:8b:a8:85:e3:39:21:79:05:5d:af:d0:3c:b0:
95:18:db:50:94:c9:08:56:81:5c:48:38:71:c0:88:35:64:2a:
51:08:c0:42:2d:1a:8c:68:66:97:24:c2:34:e5:84:d0:48:67:
d9:f2:3a:4d:7f:43:06:c3:b6:01:c8:ee:15:79:bc:38:06:e9:
67:54:57:df:42:e0:00:d7:9b:ec:33:6c:71:b8:60:b1:2b:42:
e7:0b:08:25:1d:3b:6c:dd:68:26:59:ed:1d:8b:f0:02:88:23:
18:50:3e:07:c4:87:16:7d:62:db:3d:6d:ae:eb:b5:bb:38:6a:
a4:ec:25:00:73:37:cf:e6:2c:b9:11:c0:32:2f:d5:32:59:1a:
65:e3:ae:6e:5e:64:65:e1:81:4a:3c:58:e4:9b:58:44:5e:84:
6e:03:21:fd:de:d9:01:92:46:dd:52:42:35:a5:6e:20:65:09:
08:e8:af:8d:74:a5:24:84:20:3d:68:8f:1d:39:1d:cd:47:82:
1f:7b:98:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:33 2024 by rpki-client on console-fra.rpki-client.org