Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/nqW63EFkq4cCMPaZ_c1qjO29fAU.roa
File: nqW63EFkq4cCMPaZ_c1qjO29fAU.roa (raw, json)
Hash identifier: c7EIEjjR+Swjd9SYf3UlnufEyuTInXbwd4uuGE8p3WI=
Subject key identifier: 9E:A5:BA:DC:41:64:AB:87:02:30:F6:99:FD:CD:6A:8C:ED:BD:7C:05
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 432838A9
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/nqW63EFkq4cCMPaZ_c1qjO29fAU.roa
Signing time: Wed 25 May 2022 07:09:13 +0000
ROA not before: Wed 25 May 2022 07:09:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62342
IP address blocks: 37.156.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1126709417 (0x432838a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 25 07:09:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ea5badc4164ab870230f699fdcd6a8cedbd7c05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:eb:c6:31:83:b4:00:7e:bc:69:36:60:cc:7b:
71:cb:88:86:ee:7a:93:03:06:2d:d5:02:19:d8:7d:
7c:d3:82:78:95:b5:c0:cd:53:bd:fe:b4:ec:20:55:
14:f2:5f:1c:5c:71:f2:2e:c8:e2:fc:7e:f5:76:e8:
1a:c8:7f:0b:30:f8:3c:d7:3d:10:c3:18:ab:fc:82:
c7:39:c2:94:13:e5:0a:52:1e:7e:fa:f2:9c:8c:3d:
91:de:fc:c2:6b:c9:42:14:81:bb:fc:61:b6:d5:5a:
ff:99:f5:5f:e2:ac:d7:b1:83:b0:fc:a3:eb:19:88:
97:8e:d1:81:c5:6f:eb:0f:73:51:48:f0:5a:81:eb:
1c:ad:84:ef:52:3b:eb:19:76:d5:e2:79:b1:89:e9:
f8:3a:33:b7:8b:53:0a:06:8b:8c:69:05:de:59:d2:
d3:99:d2:4d:2c:33:0c:f0:e0:1e:ee:c1:d8:c7:11:
7a:23:ab:d1:64:3a:95:38:a5:bd:64:47:d1:7e:fc:
6b:a2:2f:fa:e8:e0:cf:c4:06:2d:70:4d:b9:64:15:
63:34:13:7b:0d:2b:d5:09:28:e8:fa:f0:fc:b2:f8:
c5:32:52:da:f6:ef:2e:96:ff:fb:fe:c6:89:6c:e5:
94:ea:3a:b1:0b:24:b1:04:80:cb:29:87:5a:73:06:
ad:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:A5:BA:DC:41:64:AB:87:02:30:F6:99:FD:CD:6A:8C:ED:BD:7C:05
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/nqW63EFkq4cCMPaZ_c1qjO29fAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.36.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:f3:87:78:8a:48:9d:be:fb:85:1b:dc:88:64:6d:a9:a1:f6:
b1:39:99:46:1b:b7:f1:f2:92:e6:0d:ac:3e:2f:57:cf:9f:f7:
a7:22:5d:b5:0b:59:a7:02:3a:1d:0a:54:82:b8:b1:06:92:fa:
85:b1:cb:a9:c6:03:61:d0:53:e1:b3:ed:40:eb:c4:c7:44:9f:
54:a5:2c:16:c5:cf:f0:29:56:8c:5e:e1:66:a9:8c:7a:f1:f6:
3b:30:ca:5a:a0:31:87:4c:18:8e:8c:7f:08:0c:a2:5a:db:0d:
93:c8:34:7c:92:a2:69:79:67:75:8e:ed:73:9e:38:65:61:6c:
77:c0:45:8e:87:53:44:e3:f9:ed:69:7e:66:a6:36:20:e6:63:
d3:c2:50:45:99:e0:25:af:46:f3:f8:18:c8:cb:41:50:de:c9:
b9:a6:ac:ed:64:bb:96:40:3d:38:3c:58:22:17:2a:58:fb:5a:
73:f8:e1:82:a8:50:d7:53:8e:f4:b6:d9:47:53:97:eb:ab:8b:
86:4d:53:f0:51:40:36:83:ec:dc:07:b2:eb:db:49:5c:dc:52:
88:c9:15:2c:f8:44:cc:e1:55:32:89:62:7c:c3:c6:0d:f2:61:
76:71:68:c2:dd:6c:03:bb:47:28:a4:f2:30:39:d3:5e:64:69:
3e:29:28:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org