Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/6vpTXdYoc7Wg2dNcWp4MOZeBkak.roa
File: 6vpTXdYoc7Wg2dNcWp4MOZeBkak.roa (raw, json)
Hash identifier: lGmoYs9giFKWwMsWv5l+fqo9ZjIQaqR74hhF1Qi35ag=
Subject key identifier: EA:FA:53:5D:D6:28:73:B5:A0:D9:D3:5C:5A:9E:0C:39:97:81:91:A9
Certificate issuer: /CN=b3c51b0c063cfc16943fc9a47e2c805990f6eaae
Certificate serial: 0EEE9E32
Authority key identifier: B3:C5:1B:0C:06:3C:FC:16:94:3F:C9:A4:7E:2C:80:59:90:F6:EA:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s8UbDAY8_BaUP8mkfiyAWZD26q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/6vpTXdYoc7Wg2dNcWp4MOZeBkak.roa
Signing time: Sat 01 Jan 2022 15:04:41 +0000
ROA not before: Sat 01 Jan 2022 15:04:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206659
IP address blocks: 185.168.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 250519090 (0xeee9e32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3c51b0c063cfc16943fc9a47e2c805990f6eaae
Validity
Not Before: Jan 1 15:04:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eafa535dd62873b5a0d9d35c5a9e0c39978191a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:01:6e:cf:f6:ec:a6:d7:81:ca:e5:2e:97:12:
85:ab:ce:bd:30:85:ce:9a:17:65:be:69:89:1a:6b:
8c:8f:d5:bb:db:fd:dc:47:03:d7:c7:54:5f:f4:9e:
ca:e4:15:c5:a0:b1:d2:22:f6:b4:91:64:fc:71:26:
d7:ac:69:d9:9f:82:1a:9d:f1:f5:97:fa:f4:01:85:
f4:b6:8b:9e:ee:1c:01:cd:d9:03:bf:63:f4:0c:f4:
4a:28:ef:ef:a0:82:a0:bd:fe:04:04:1a:f0:c8:84:
05:48:c3:df:6e:52:b7:8e:58:8c:b3:6a:bf:c5:c7:
07:26:39:2a:7e:8a:81:6d:ee:9a:cb:ae:46:0a:d0:
c1:84:3e:15:b2:80:87:c2:36:5c:9c:d4:df:62:7c:
a7:ff:8a:42:87:83:24:e3:c4:2a:0e:55:cb:f8:db:
10:9b:a1:86:16:ad:e1:9d:3f:96:de:4f:0d:3e:47:
87:90:49:a1:04:4d:97:f3:78:fa:5f:2c:7c:fe:7a:
a6:bc:53:fe:cd:cc:6b:7e:e8:39:1c:43:a9:f5:54:
34:64:e7:52:aa:34:00:45:ff:e7:47:67:97:b2:28:
54:b0:2e:98:e7:36:c9:70:75:c1:05:c9:8a:d7:71:
83:69:55:2a:03:ee:f1:ce:5c:f5:b1:00:1f:e0:3b:
d6:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:FA:53:5D:D6:28:73:B5:A0:D9:D3:5C:5A:9E:0C:39:97:81:91:A9
X509v3 Authority Key Identifier:
keyid:B3:C5:1B:0C:06:3C:FC:16:94:3F:C9:A4:7E:2C:80:59:90:F6:EA:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s8UbDAY8_BaUP8mkfiyAWZD26q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/6vpTXdYoc7Wg2dNcWp4MOZeBkak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/s8UbDAY8_BaUP8mkfiyAWZD26q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.37.0/24
Signature Algorithm: sha256WithRSAEncryption
47:ee:a7:1b:31:3d:c5:a9:6d:21:d7:8e:08:f6:f1:f9:72:03:
49:46:2b:da:79:c7:c4:15:97:93:36:3b:5d:b9:cd:d5:14:d0:
16:4b:6d:ff:88:07:ad:11:0e:51:2a:6d:6d:7c:0d:f3:42:31:
db:99:25:d5:b7:79:99:ce:55:e8:7a:2f:bc:19:d1:d3:e6:4d:
73:0e:03:b8:12:fb:0f:05:88:a9:c6:bb:12:e6:76:1d:52:fc:
cb:93:31:06:84:87:3d:56:8e:76:a2:58:34:a0:7e:81:21:36:
42:79:c6:a3:01:3f:ec:a3:d9:46:58:91:2f:62:1c:3b:e8:bc:
09:18:d2:c0:11:34:5f:34:41:70:40:1b:f1:f1:40:86:ec:f8:
4e:15:6e:ef:20:c9:59:fc:98:fb:4e:26:12:69:47:41:5c:e4:
16:c9:d9:85:ab:04:0a:f8:25:4f:a2:5a:0c:1e:ef:99:9a:5b:
76:ef:c4:37:34:5c:8e:28:76:00:d9:c9:f3:43:f1:22:aa:79:
9e:69:f8:f5:95:34:40:91:3e:75:84:a3:c8:23:56:06:4f:20:
80:f1:b0:92:9c:fa:dc:63:49:82:ab:f7:a1:b9:66:23:e5:63:
50:94:19:4f:b3:82:f3:f4:d7:10:5a:d5:3e:10:e7:19:9c:cd:
09:92:3f:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:49 2024 by rpki-client on console-ams.rpki-client.org