Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/79cef8-43a1-4089-809f-dc984265567d/1/OZRyRmaT4y7-i9JAr5apdt7uKLo.roa
File: OZRyRmaT4y7-i9JAr5apdt7uKLo.roa (raw, json)
Hash identifier: Jv0AZqD/8i7xe0YCcuk4FYoDnkSkeVPC4qU8o0dczUc=
Subject key identifier: 39:94:72:46:66:93:E3:2E:FE:8B:D2:40:AF:96:A9:76:DE:EE:28:BA
Certificate issuer: /CN=06c44b821ab5db542cc536c1f88b84baf0621654
Certificate serial: 01843C918A23AA828A75B9ABEDD825D43A4D
Authority key identifier: 06:C4:4B:82:1A:B5:DB:54:2C:C5:36:C1:F8:8B:84:BA:F0:62:16:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BsRLghq121QsxTbB-IuEuvBiFlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/79cef8-43a1-4089-809f-dc984265567d/1/OZRyRmaT4y7-i9JAr5apdt7uKLo.roa
Signing time: Thu 03 Nov 2022 08:18:01 +0000
ROA not before: Thu 03 Nov 2022 08:18:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205814
IP address blocks: 185.128.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3c:91:8a:23:aa:82:8a:75:b9:ab:ed:d8:25:d4:3a:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06c44b821ab5db542cc536c1f88b84baf0621654
Validity
Not Before: Nov 3 08:18:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=399472466693e32efe8bd240af96a976deee28ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:dd:88:98:0a:b0:89:74:9f:f4:1c:6b:60:4b:
b7:ba:64:26:1c:e0:f4:70:b1:1d:f7:fe:08:b7:d8:
04:24:e8:75:15:ea:95:6e:04:92:d0:6b:79:ae:85:
bb:f0:5f:9e:86:a9:1e:f5:ee:91:4c:0d:92:1e:9d:
0a:d6:83:f4:90:8b:80:02:e9:95:fe:13:14:92:ef:
a1:8b:a1:7d:48:08:98:da:c3:ee:64:f0:50:b7:34:
f5:e7:6d:9a:8a:1c:f5:ab:3a:86:9d:77:82:6c:9a:
7f:5c:7c:6f:2d:f7:38:f8:f5:15:35:c7:22:ac:e2:
ce:29:6c:39:25:6e:97:26:58:e7:f6:2a:4d:a3:53:
2e:a1:70:c8:01:9e:d2:d3:3d:53:7e:84:76:0f:2c:
79:d1:42:42:38:9b:9a:91:c2:ca:8a:4d:19:d3:88:
08:59:30:a2:65:e8:20:8e:c8:10:6b:75:23:4f:bb:
05:88:bd:f6:f5:4d:f7:e4:cb:36:a4:d0:57:4c:42:
be:f2:ec:4c:c4:12:df:3e:a3:60:a3:eb:d8:5d:74:
34:c5:b5:25:a4:3b:55:e6:02:be:1b:21:b3:1e:19:
5e:79:57:aa:fa:c0:d2:be:2c:6d:a8:fa:c0:f5:28:
3e:dc:ac:2c:a7:c4:f8:f0:fe:7d:76:9e:57:f1:26:
71:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:94:72:46:66:93:E3:2E:FE:8B:D2:40:AF:96:A9:76:DE:EE:28:BA
X509v3 Authority Key Identifier:
keyid:06:C4:4B:82:1A:B5:DB:54:2C:C5:36:C1:F8:8B:84:BA:F0:62:16:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsRLghq121QsxTbB-IuEuvBiFlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/79cef8-43a1-4089-809f-dc984265567d/1/OZRyRmaT4y7-i9JAr5apdt7uKLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/79cef8-43a1-4089-809f-dc984265567d/1/BsRLghq121QsxTbB-IuEuvBiFlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.37.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:15:2f:2c:2f:5c:95:61:d1:12:cf:3c:d7:ff:44:29:20:b1:
f8:1e:50:34:79:55:2a:52:d9:88:26:53:44:a3:2a:c0:b0:e8:
89:a3:c2:db:9d:69:25:f0:25:b9:86:3c:35:33:ea:57:39:9e:
6c:4f:00:10:6c:e4:ce:aa:4c:6e:99:10:7d:47:77:8c:b2:81:
49:52:b8:98:30:81:62:8c:3c:c9:cf:94:d0:9a:ab:18:ed:63:
c2:30:63:13:9a:b0:ea:42:ca:e0:ce:d5:c8:ff:08:9d:7e:46:
1f:75:bf:d9:d4:8a:51:4d:df:bb:24:2c:a4:06:8c:d9:75:90:
b7:37:22:ad:a4:52:59:58:1f:aa:3c:46:d8:75:1b:e4:4a:88:
9d:e8:4e:9b:a9:a3:4a:a2:8d:36:fd:89:c2:3a:79:6e:17:93:
a9:db:f7:61:84:2d:84:22:d6:ef:db:13:8d:35:b9:43:03:99:
61:d5:ae:f0:ac:24:d3:27:8f:80:52:bd:4e:81:5b:c8:f2:03:
f0:41:72:ee:2c:e3:c6:11:2d:bd:19:b1:8c:e4:38:ee:a2:83:
fe:41:f8:26:31:2a:a7:24:dd:81:8c:06:56:e5:b0:cd:7f:17:
14:74:99:6f:aa:ab:8c:fa:44:3f:77:fa:fd:ca:0d:77:2c:b1:
f9:f8:a2:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:25 2024 by rpki-client on console-ams.rpki-client.org