Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/SGfB6NPZxH5V6b-Dp0QLkNTrP-g.roa
File: SGfB6NPZxH5V6b-Dp0QLkNTrP-g.roa (raw, json)
Hash identifier: mt1upJu4u0kWwTTWF8nmng/47sOJevm3xmguofETOP4=
Subject key identifier: 48:67:C1:E8:D3:D9:C4:7E:55:E9:BF:83:A7:44:0B:90:D4:EB:3F:E8
Certificate issuer: /CN=c67e2a46e34f491433c8b62f319b902bddfde831
Certificate serial: 03B948BB
Authority key identifier: C6:7E:2A:46:E3:4F:49:14:33:C8:B6:2F:31:9B:90:2B:DD:FD:E8:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xn4qRuNPSRQzyLYvMZuQK9396DE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/SGfB6NPZxH5V6b-Dp0QLkNTrP-g.roa
Signing time: Sat 01 Jan 2022 06:57:34 +0000
ROA not before: Sat 01 Jan 2022 06:57:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211238
IP address blocks: 37.49.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62474427 (0x3b948bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c67e2a46e34f491433c8b62f319b902bddfde831
Validity
Not Before: Jan 1 06:57:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4867c1e8d3d9c47e55e9bf83a7440b90d4eb3fe8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:31:ec:6d:23:4f:5d:2d:95:a3:0f:5d:12:33:
bc:5b:8c:01:ca:fc:b0:83:8a:ed:fe:50:1a:a8:8f:
7e:97:a2:3c:b6:04:cf:d1:70:79:0e:9a:8b:f1:d2:
5c:64:31:33:e2:f5:7f:00:49:d6:7c:6f:c9:b8:ee:
ab:fd:dd:4f:6f:c0:1f:b9:45:85:3b:85:1c:5f:15:
49:b0:20:9d:e7:27:59:15:51:f7:ac:94:2f:2a:92:
ce:30:40:9f:d3:63:33:24:b8:c3:dc:aa:86:b4:89:
bd:da:cc:f4:61:e0:a1:2c:4c:5f:c6:2c:a7:f6:19:
66:31:33:0b:83:f5:63:b5:5c:38:ef:f0:ba:38:98:
0f:05:0a:17:95:17:61:15:43:6e:d3:a3:17:ed:6f:
6e:44:f1:93:e9:f5:b8:04:49:fd:33:f9:8f:ba:03:
00:d2:6a:1e:f7:52:dd:3e:a3:61:a7:70:be:66:18:
61:7c:56:7c:35:3c:89:19:f0:bf:bd:c9:cd:ff:cd:
1f:74:d4:6a:4a:26:a2:6b:ea:a8:05:3c:40:be:b9:
d0:26:b7:e9:3e:f9:ed:45:c1:38:e1:a1:a7:a2:88:
fb:75:52:2e:86:94:0d:d1:fc:e7:2c:c4:7f:f4:01:
e5:a7:f4:43:93:7e:cd:22:f8:59:6d:9f:2c:33:3c:
bb:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:67:C1:E8:D3:D9:C4:7E:55:E9:BF:83:A7:44:0B:90:D4:EB:3F:E8
X509v3 Authority Key Identifier:
keyid:C6:7E:2A:46:E3:4F:49:14:33:C8:B6:2F:31:9B:90:2B:DD:FD:E8:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xn4qRuNPSRQzyLYvMZuQK9396DE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/SGfB6NPZxH5V6b-Dp0QLkNTrP-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/xn4qRuNPSRQzyLYvMZuQK9396DE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.49.227.0/24
Signature Algorithm: sha256WithRSAEncryption
40:d7:2c:9a:02:a0:c4:31:2c:ee:f3:0b:d7:aa:fd:95:9e:e6:
93:92:69:e9:a6:af:8b:dc:22:63:cc:2f:b6:94:23:4a:0c:d2:
38:66:18:f0:fa:bb:b7:80:69:81:92:d6:10:7c:12:7d:ff:c6:
25:2e:0a:d2:0d:f8:88:e2:32:6a:af:58:71:15:c5:bc:47:fe:
9a:35:66:b5:4a:7f:09:81:96:59:3a:93:6e:aa:ed:05:ab:c0:
ce:74:68:d8:6f:2f:f3:ed:ee:26:23:49:7e:c6:34:ea:fa:53:
f5:f2:39:11:59:37:f5:a6:21:59:e1:20:ce:02:c8:f5:16:cd:
fa:ba:d4:a7:9d:ab:47:28:0f:40:60:e4:eb:b4:09:ea:af:b0:
38:36:3a:c7:49:f6:df:c6:d0:73:b3:c8:83:18:6c:7c:26:10:
8f:bb:d0:6b:a6:34:fa:87:71:57:f2:ca:52:09:3b:d9:ba:d4:
e7:bc:dd:31:2d:c5:9f:c5:5c:27:04:84:19:0b:ea:3e:38:67:
dd:84:42:6b:61:a8:0e:1d:10:7c:b1:19:d5:19:84:76:e8:55:
91:9b:ed:da:80:c2:ba:0e:f3:38:fd:b4:f0:1c:50:4f:9f:48:
ab:3f:d0:1c:94:82:11:89:71:8b:13:4f:da:7e:a5:49:b7:51:
80:5a:78:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:50 2024 by rpki-client on console-ams.rpki-client.org