Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/8a344e-0ed8-42b2-a744-a9e8468710a3/1/LmmC4CQXf59zwSIulpW6B3nNmeM.roa
File: LmmC4CQXf59zwSIulpW6B3nNmeM.roa (raw, json)
Hash identifier: yfhg0iOHtJtVLiF4N2da/gBIre4rXq5xV5EkepmsYqg=
Subject key identifier: 2E:69:82:E0:24:17:7F:9F:73:C1:22:2E:96:95:BA:07:79:CD:99:E3
Certificate issuer: /CN=c8d335041718b18830b1f58c15d3518510fe6118
Certificate serial: C8948D
Authority key identifier: C8:D3:35:04:17:18:B1:88:30:B1:F5:8C:15:D3:51:85:10:FE:61:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yNM1BBcYsYgwsfWMFdNRhRD-YRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/8a344e-0ed8-42b2-a744-a9e8468710a3/1/LmmC4CQXf59zwSIulpW6B3nNmeM.roa
Signing time: Thu 24 Mar 2022 10:50:07 +0000
ROA not before: Thu 24 Mar 2022 10:50:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29286
IP address blocks: 37.1.168.0/21 maxlen: 21
37.252.200.0/21 maxlen: 21
2a03:b7c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13145229 (0xc8948d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8d335041718b18830b1f58c15d3518510fe6118
Validity
Not Before: Mar 24 10:50:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e6982e024177f9f73c1222e9695ba0779cd99e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:75:72:ea:68:51:40:68:3b:9c:b8:6d:58:21:
0a:aa:7d:30:22:8c:7b:95:61:c7:e7:05:1f:70:ff:
76:0f:bb:69:99:9f:c2:92:b7:83:18:43:a1:36:2c:
91:dc:b4:c8:c0:58:d8:df:a6:95:a0:98:42:63:55:
e3:a6:9c:dd:45:e0:2e:8b:3f:91:30:a7:ae:ba:a2:
04:c1:f5:e6:31:04:1a:54:ed:b4:50:df:60:f6:e8:
d4:27:87:39:8a:62:7f:a9:40:fb:dd:67:28:c7:ca:
e4:e0:67:b5:f4:65:4c:19:1f:43:57:fa:2c:b0:10:
e7:5c:31:76:92:be:db:53:ea:d1:8f:35:ce:a9:55:
7e:a3:cf:66:b4:28:42:ea:b0:58:d1:96:32:4e:13:
5e:6f:78:7a:d4:4d:e9:98:1f:a5:d1:cb:f6:30:3a:
9d:1e:7c:2f:97:97:ea:a5:ef:d7:14:31:62:8d:12:
40:d4:f9:ee:17:c2:5e:51:5b:5a:1c:a4:e4:17:08:
cb:ac:d1:7f:53:e4:7d:10:72:b7:dd:8d:99:40:52:
57:be:46:3f:34:09:f9:1a:8f:ab:17:2b:93:43:62:
71:89:23:e7:3c:49:30:04:25:9e:36:b9:4a:8b:82:
0e:ae:0c:27:ea:fd:ed:6d:79:a8:c1:b5:83:7e:4c:
48:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:69:82:E0:24:17:7F:9F:73:C1:22:2E:96:95:BA:07:79:CD:99:E3
X509v3 Authority Key Identifier:
keyid:C8:D3:35:04:17:18:B1:88:30:B1:F5:8C:15:D3:51:85:10:FE:61:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yNM1BBcYsYgwsfWMFdNRhRD-YRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/8a344e-0ed8-42b2-a744-a9e8468710a3/1/LmmC4CQXf59zwSIulpW6B3nNmeM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/8a344e-0ed8-42b2-a744-a9e8468710a3/1/yNM1BBcYsYgwsfWMFdNRhRD-YRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.1.168.0/21
37.252.200.0/21
IPv6:
2a03:b7c0::/32
Signature Algorithm: sha256WithRSAEncryption
95:d3:29:a9:86:d8:de:69:9c:8e:b7:66:fb:aa:cf:9f:a6:bc:
08:37:51:c1:75:a9:b8:90:70:88:bd:a7:bb:36:c7:3c:f8:70:
bd:c7:01:6a:a1:d1:c8:83:53:61:00:35:65:2a:31:e7:59:8c:
53:c0:75:dc:d6:5a:a6:8b:85:8d:cb:4e:b9:2c:62:eb:50:5f:
00:69:da:fc:36:e8:ee:5b:b0:6e:61:a6:75:ff:fc:98:40:a4:
ff:98:d4:1c:07:a5:9f:e4:b9:d1:2a:bb:ca:1b:c6:b8:a2:14:
f7:64:87:2c:96:96:e3:a9:fe:03:9e:ce:96:fe:03:65:3b:3e:
24:6f:40:09:4c:9d:79:2d:fe:fc:d0:5e:ec:f5:77:34:be:13:
d9:b2:c9:39:58:5a:97:29:63:3c:3a:f0:a7:a3:27:be:af:40:
39:6e:df:5f:f7:01:9f:6d:5e:d8:a5:84:7f:92:41:66:98:63:
50:27:5f:ff:ba:3e:7c:17:6a:7e:af:e0:95:8e:3d:6b:78:7b:
1f:e6:7a:30:8f:9a:cf:9b:fd:2a:3e:aa:61:53:7a:50:6b:15:
43:c7:21:a2:25:40:fd:f4:5b:f0:36:2e:ef:44:ee:ab:75:8c:
0b:0f:44:b9:71:b5:d5:a2:97:b6:24:84:76:68:1b:07:36:02:
c3:40:23:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:15 2024 by rpki-client on console-ams.rpki-client.org