Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/5tfZ7D9XWW4t0566v904DhQX8Ao.roa
File: 5tfZ7D9XWW4t0566v904DhQX8Ao.roa (raw, json)
Hash identifier: mnxikmsQaZYDaviVDpjpxvCsvvJcLkGSAQfR1mhhl48=
Subject key identifier: E6:D7:D9:EC:3F:57:59:6E:2D:D3:9E:BA:BF:DD:38:0E:14:17:F0:0A
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01855CC4DD8690EC05876CFD6338DE89A6A1
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/5tfZ7D9XWW4t0566v904DhQX8Ao.roa
Signing time: Thu 29 Dec 2022 07:24:43 +0000
ROA not before: Thu 29 Dec 2022 07:24:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200723
IP address blocks: 37.63.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5c:c4:dd:86:90:ec:05:87:6c:fd:63:38:de:89:a6:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Dec 29 07:24:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6d7d9ec3f57596e2dd39ebabfdd380e1417f00a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:12:bd:ad:41:ac:84:3e:e7:08:1a:be:2a:af:
5a:d8:fa:70:bb:60:f0:24:45:29:d0:8d:2c:fc:c2:
64:1d:3b:ad:6b:10:d6:99:56:7f:1f:f9:cc:3e:b8:
b7:bb:05:3c:4f:3c:cd:95:64:b0:44:4a:39:08:87:
4c:b4:e7:ad:25:06:0a:1e:db:77:fc:72:91:7b:1a:
25:63:6d:f4:1a:a7:51:ae:13:e6:93:81:25:e2:01:
59:09:c9:fd:91:38:89:87:27:64:bb:09:a2:46:dd:
3c:60:39:02:27:f5:fe:cb:e7:ca:8e:83:5e:86:d0:
4f:87:68:a2:66:c0:f9:fa:82:c3:81:89:54:c5:af:
84:8e:26:e4:21:0c:a0:09:22:3d:59:02:78:c1:f5:
d4:9f:df:40:44:3f:a9:0a:dc:78:e8:ea:09:80:0a:
80:5b:a2:7c:2a:99:ce:41:ea:57:b3:64:54:a0:ea:
3f:ba:69:ac:23:76:41:f6:90:8e:fc:7b:8b:e2:3c:
08:79:b3:a0:d3:80:82:a8:bc:6a:31:ec:48:9f:bc:
6b:3b:20:04:81:1a:fe:c0:b3:31:2d:31:a0:32:cc:
58:1e:34:62:e3:d2:50:06:13:6e:3d:01:88:38:60:
35:aa:b6:d2:a0:cd:1e:41:82:86:a6:cb:77:0d:68:
b6:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:D7:D9:EC:3F:57:59:6E:2D:D3:9E:BA:BF:DD:38:0E:14:17:F0:0A
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/5tfZ7D9XWW4t0566v904DhQX8Ao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.63.79.0/24
Signature Algorithm: sha256WithRSAEncryption
94:8c:7a:4e:29:39:57:eb:65:4b:90:95:46:f9:16:b3:ae:12:
21:b3:3c:55:85:43:71:87:7f:18:86:c2:c6:63:e6:c1:9b:2c:
71:d5:90:8c:fc:6d:ab:8f:fd:8b:9d:85:44:0e:22:e2:0c:1b:
ef:9f:65:f5:5b:fc:54:2c:fc:ac:d3:76:9c:67:9e:5d:c7:aa:
2e:44:e4:27:c6:4d:4e:66:72:97:80:00:ec:8f:9b:8d:ff:14:
ea:8e:37:4f:b0:72:ea:97:a5:05:ab:7f:48:0f:7f:86:95:5e:
ae:58:96:68:d4:9c:88:0f:0c:48:a8:c0:f7:58:dd:2f:ae:97:
09:6a:24:fd:9b:f5:a8:75:40:0e:e9:c0:6b:bc:8b:ed:30:fc:
17:02:69:b5:e4:94:0c:30:e0:b4:77:db:f7:09:bd:2c:66:a7:
9f:88:c1:05:d4:93:67:b2:f7:ef:3b:03:38:61:bc:37:4d:e8:
c2:4c:f6:78:42:df:e3:2a:d0:5d:95:27:e8:7b:f8:67:27:ec:
19:1b:80:76:d1:5f:48:2f:a1:dc:02:57:e7:7b:6e:36:30:ed:
4c:92:16:22:a5:97:f2:c7:7c:67:cc:2c:48:64:ac:a7:45:0a:
47:43:8b:96:03:29:27:a6:2f:0b:2c:21:9e:8d:a3:33:a1:8b:
9f:0d:8a:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:18 2023 by rpki-client on console-fra.rpki-client.org