Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/e005c2-affa-458f-aaf8-8af56e733600/1/y04bAgtWvRLDyjvx-NHVW9amphQ.roa
File: y04bAgtWvRLDyjvx-NHVW9amphQ.roa (raw, json)
Hash identifier: izomSr1wQyN87ogfNt+R5ZdnDO4kQoPMIImMlfVLdCM=
Subject key identifier: CB:4E:1B:02:0B:56:BD:12:C3:CA:3B:F1:F8:D1:D5:5B:D6:A6:A6:14
Certificate issuer: /CN=4b57725b0a605d4ddcc464b70dcb3a162a5f055b
Certificate serial: 124AB81C
Authority key identifier: 4B:57:72:5B:0A:60:5D:4D:DC:C4:64:B7:0D:CB:3A:16:2A:5F:05:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1dyWwpgXU3cxGS3Dcs6FipfBVs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/e005c2-affa-458f-aaf8-8af56e733600/1/y04bAgtWvRLDyjvx-NHVW9amphQ.roa
Signing time: Fri 13 May 2022 08:23:01 +0000
ROA not before: Fri 13 May 2022 08:23:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51440
IP address blocks: 37.122.159.0/24 maxlen: 24
37.122.158.0/24 maxlen: 24
37.122.158.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 306886684 (0x124ab81c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b57725b0a605d4ddcc464b70dcb3a162a5f055b
Validity
Not Before: May 13 08:23:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb4e1b020b56bd12c3ca3bf1f8d1d55bd6a6a614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0b:aa:44:62:29:35:81:95:92:d1:5f:11:43:
52:27:3e:5c:47:dd:42:ff:e7:90:7a:3e:89:6a:53:
c6:db:79:d4:b9:a8:20:6b:e1:40:3e:c9:ee:2e:5f:
1b:83:4e:b2:d8:b9:cc:02:ae:a8:cf:83:20:cd:7d:
f4:be:6f:ed:20:66:20:e6:9c:f4:e3:c4:2d:27:af:
30:be:03:0c:b9:0b:52:e5:fc:80:0a:d8:bb:c1:f9:
7b:a1:08:cf:0c:83:2c:5c:6b:22:3e:9a:90:3a:a3:
24:a7:6a:eb:4b:a3:76:d5:db:2c:e8:d1:78:eb:70:
e2:b9:e0:5e:c4:34:3c:aa:76:43:11:ef:69:9d:7c:
9d:d0:b5:7e:c7:e5:61:e0:6f:d7:6d:19:4c:86:d3:
31:41:a7:a3:d6:70:f8:f1:00:14:d9:bd:d0:81:b5:
32:31:d0:08:44:c5:6d:e3:67:73:28:32:cc:07:92:
73:5d:12:0b:56:e8:21:e2:8b:20:36:d0:ba:34:d0:
49:28:c4:92:ae:df:60:12:66:0c:b1:a6:43:1b:90:
1d:60:ae:31:00:7a:97:87:7c:60:29:cd:a5:98:f2:
24:fb:52:8f:76:2d:39:c3:3f:36:7a:54:a3:32:72:
24:bb:92:23:09:f5:51:2f:94:c1:ce:49:26:e3:72:
16:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:4E:1B:02:0B:56:BD:12:C3:CA:3B:F1:F8:D1:D5:5B:D6:A6:A6:14
X509v3 Authority Key Identifier:
keyid:4B:57:72:5B:0A:60:5D:4D:DC:C4:64:B7:0D:CB:3A:16:2A:5F:05:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1dyWwpgXU3cxGS3Dcs6FipfBVs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/e005c2-affa-458f-aaf8-8af56e733600/1/y04bAgtWvRLDyjvx-NHVW9amphQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/e005c2-affa-458f-aaf8-8af56e733600/1/S1dyWwpgXU3cxGS3Dcs6FipfBVs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.122.158.0/23
Signature Algorithm: sha256WithRSAEncryption
44:43:f5:93:cb:78:19:0a:2b:79:9d:45:cb:87:21:b4:d8:c5:
14:8c:30:48:2b:87:17:74:80:c0:8f:46:e7:3b:ff:6a:9d:b2:
97:76:b2:2f:3f:ba:c1:b1:1f:29:7b:72:3c:69:44:11:fb:57:
26:ab:7f:bb:97:8d:9b:53:1f:b4:68:a7:19:ea:8a:e8:3f:86:
d6:23:82:21:2f:22:82:6c:6e:11:0e:16:5b:9f:e3:77:7f:f9:
22:d3:16:77:08:b9:58:72:0a:f9:94:32:fc:40:8e:bf:4f:9d:
5d:e5:84:5f:92:1b:13:90:c3:49:fc:95:76:72:44:f9:a0:e9:
19:c9:f6:cd:60:42:8c:e6:2b:86:85:a5:11:3f:65:81:ae:81:
15:45:ea:52:e8:19:ad:77:9b:84:c4:c3:54:39:c3:79:c3:bb:
8b:2a:50:83:d3:f1:d8:64:fc:53:c8:29:58:38:42:db:12:63:
65:a7:a6:43:8f:f5:b7:fe:05:e8:fe:c8:da:1f:57:e8:37:2b:
a2:1f:88:48:6c:e3:53:c5:b8:88:e8:b9:0e:9e:cc:b7:3f:1c:
b1:25:22:b0:3c:d7:58:32:d7:d1:23:ad:11:12:1c:fa:5d:df:
8b:a1:79:55:35:ff:b2:ad:dd:23:e9:2b:39:2a:db:64:28:b0:
3c:df:59:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:43 2024 by rpki-client on console-ams.rpki-client.org