Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/cf2ebf-2a09-43d2-a225-a165359a6211/1/nUTf3kxENbfCsfg-dBZnShYbu30.roa
File: nUTf3kxENbfCsfg-dBZnShYbu30.roa (raw, json)
Hash identifier: VnGdeVE5TeoEHDEifKUlFU2vBe0WpuLXVfMn88/V1hE=
Subject key identifier: 9D:44:DF:DE:4C:44:35:B7:C2:B1:F8:3E:74:16:67:4A:16:1B:BB:7D
Certificate issuer: /CN=4ee4057f9ea0140cef7ce4789369c5cf01f7c68e
Certificate serial: 04ADA49C
Authority key identifier: 4E:E4:05:7F:9E:A0:14:0C:EF:7C:E4:78:93:69:C5:CF:01:F7:C6:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuQFf56gFAzvfOR4k2nFzwH3xo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/cf2ebf-2a09-43d2-a225-a165359a6211/1/nUTf3kxENbfCsfg-dBZnShYbu30.roa
Signing time: Sat 01 Jan 2022 10:01:15 +0000
ROA not before: Sat 01 Jan 2022 10:01:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202757
IP address blocks: 37.221.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78488732 (0x4ada49c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ee4057f9ea0140cef7ce4789369c5cf01f7c68e
Validity
Not Before: Jan 1 10:01:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d44dfde4c4435b7c2b1f83e7416674a161bbb7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a5:b8:02:64:c4:ed:24:de:a9:0c:b6:60:7a:
24:ea:c2:4d:d0:32:56:17:06:2a:b0:19:8f:42:89:
28:c6:9f:0f:b6:a2:f4:b6:35:b5:7d:31:9c:26:88:
19:b2:42:20:09:37:7c:14:72:17:7a:7a:9c:8a:c0:
27:ba:d5:65:f7:24:96:43:d1:93:8c:09:4f:27:01:
ae:ae:e8:b7:b8:14:2a:6e:5e:2b:a1:0b:e0:f8:18:
1c:94:bb:29:5c:20:4e:93:87:a3:57:49:37:a7:fc:
a4:12:6b:c4:fa:47:7d:c5:d4:2e:f1:9c:14:e8:82:
c8:dc:ef:3e:55:e7:44:42:fe:da:e6:50:f7:0d:b2:
af:fb:7e:21:1d:f1:fc:ef:f0:fd:c6:1d:0d:8f:27:
6c:38:05:0c:b5:de:f1:ed:b9:06:fc:48:25:29:02:
93:d8:b5:92:ea:68:63:87:c3:94:4e:51:79:d7:91:
1f:3c:df:4b:fb:78:a3:62:91:46:6b:e5:03:5f:3d:
3e:7a:6a:43:22:4c:db:14:ca:31:ae:a4:b6:51:a9:
30:a0:67:1d:73:04:8e:b5:db:ca:3f:0f:8e:40:59:
57:1b:c6:1f:b5:7a:bb:c5:3f:22:cb:4b:97:27:5a:
dd:89:90:ea:61:83:e8:f9:6e:e9:87:d1:82:8a:0f:
65:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:44:DF:DE:4C:44:35:B7:C2:B1:F8:3E:74:16:67:4A:16:1B:BB:7D
X509v3 Authority Key Identifier:
keyid:4E:E4:05:7F:9E:A0:14:0C:EF:7C:E4:78:93:69:C5:CF:01:F7:C6:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuQFf56gFAzvfOR4k2nFzwH3xo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/cf2ebf-2a09-43d2-a225-a165359a6211/1/nUTf3kxENbfCsfg-dBZnShYbu30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/cf2ebf-2a09-43d2-a225-a165359a6211/1/TuQFf56gFAzvfOR4k2nFzwH3xo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.87.0/24
Signature Algorithm: sha256WithRSAEncryption
78:3d:fe:0a:7e:b5:5e:f0:7c:88:97:bd:70:e9:4e:a6:d7:7b:
05:e0:d2:f6:dd:f4:de:08:4d:d1:66:f7:0a:a9:d5:77:22:2a:
be:d0:cb:aa:67:23:e5:97:3b:67:1d:ab:24:d1:51:03:42:4b:
f1:85:05:f6:fb:37:69:06:34:37:72:f8:ff:0d:62:05:d3:6c:
58:e6:23:72:ec:f0:e0:d5:02:59:2a:24:6a:ce:2a:63:72:79:
e8:dc:4a:21:29:7d:79:21:07:86:ce:77:18:cc:ba:80:89:b9:
64:8d:5b:d5:bd:e1:ae:60:05:be:29:eb:c0:cb:a7:5b:2e:36:
d6:2e:16:d9:36:fe:75:dc:8d:34:2b:ea:90:04:45:fc:c4:3b:
2f:d9:39:56:12:ac:9f:37:81:6a:c6:05:97:8f:68:1e:9d:ad:
a3:87:65:9e:14:2c:8e:1d:e5:3c:63:01:9e:2f:f5:02:3e:98:
33:cc:4b:16:41:68:86:60:66:68:c9:a5:1c:3d:27:e7:02:8a:
39:70:cb:cf:09:e5:bb:96:02:3c:5e:13:0a:b6:49:ae:ae:3a:
28:4c:d0:13:33:96:7f:e6:f1:a4:fa:d4:3d:21:87:44:aa:81:
2a:28:29:c7:48:f1:c2:ad:05:06:a3:c9:a9:06:21:8f:ba:7d:
9d:84:8b:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:05 2024 by rpki-client on console-fra.rpki-client.org