Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/361c57-ea42-47e2-a68f-ec967b511d7f/1/M5tdZO1mfwiSASzDtm4dcjz6g-E.roa
File: M5tdZO1mfwiSASzDtm4dcjz6g-E.roa (raw, json)
Hash identifier: ZAbRr736wdge09TGnyDbmTYIJjzbSQkcuUKzfJIfE4I=
Subject key identifier: 33:9B:5D:64:ED:66:7F:08:92:01:2C:C3:B6:6E:1D:72:3C:FA:83:E1
Certificate issuer: /CN=f8fbc8415821486e8fe0860b5bec3e9283b80385
Certificate serial: 0B04EFA8
Authority key identifier: F8:FB:C8:41:58:21:48:6E:8F:E0:86:0B:5B:EC:3E:92:83:B8:03:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-PvIQVghSG6P4IYLW-w-koO4A4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/361c57-ea42-47e2-a68f-ec967b511d7f/1/M5tdZO1mfwiSASzDtm4dcjz6g-E.roa
Signing time: Sat 01 Jan 2022 05:06:18 +0000
ROA not before: Sat 01 Jan 2022 05:06:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210150
IP address blocks: 37.18.48.0/22 maxlen: 22
37.18.52.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184872872 (0xb04efa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8fbc8415821486e8fe0860b5bec3e9283b80385
Validity
Not Before: Jan 1 05:06:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=339b5d64ed667f0892012cc3b66e1d723cfa83e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a9:d6:47:56:6b:26:54:a3:37:22:e2:4b:26:
2c:51:d2:cf:41:4e:91:1b:71:29:7c:8f:0a:27:0f:
70:74:2e:6e:b2:0e:38:9a:e0:5b:69:b0:62:ee:4e:
de:1d:65:bd:2b:66:e9:ee:39:c1:73:fa:eb:03:4b:
06:a0:d9:b0:ea:34:d2:6b:11:b8:ec:30:43:3e:49:
4e:2c:fd:59:21:a6:df:69:6f:b5:0a:3e:63:76:e6:
e8:76:b5:ef:94:14:ee:38:c2:16:c5:89:37:cf:62:
95:e1:06:76:5e:c9:e2:6e:1d:82:6a:d2:e6:75:78:
7c:ea:6a:cf:62:09:ce:46:a0:2c:1d:4d:35:7c:94:
18:74:c4:61:3a:45:8b:c3:3f:2f:bc:53:f2:b4:ef:
2a:a5:0c:d3:46:fd:47:5f:56:dd:f6:8c:f6:fd:18:
ed:73:fa:c3:34:cc:55:6e:78:79:48:c7:3b:d7:a8:
bf:55:1a:c8:1c:96:29:5a:67:08:b9:a9:76:b2:0c:
da:e9:5f:5e:1c:71:65:c8:ed:e7:bf:a3:36:74:eb:
e8:a0:7f:cd:e4:e9:8d:01:2c:33:05:40:4a:4f:f4:
1f:21:d7:de:af:48:e2:ee:3a:50:cb:d8:52:d4:47:
b1:42:c7:69:ea:7a:c1:da:9d:4c:e9:33:60:9a:5f:
20:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:9B:5D:64:ED:66:7F:08:92:01:2C:C3:B6:6E:1D:72:3C:FA:83:E1
X509v3 Authority Key Identifier:
keyid:F8:FB:C8:41:58:21:48:6E:8F:E0:86:0B:5B:EC:3E:92:83:B8:03:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-PvIQVghSG6P4IYLW-w-koO4A4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/361c57-ea42-47e2-a68f-ec967b511d7f/1/M5tdZO1mfwiSASzDtm4dcjz6g-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/361c57-ea42-47e2-a68f-ec967b511d7f/1/1-PvIQVghSG6P4IYLW-w-koO4A4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.48.0/21
Signature Algorithm: sha256WithRSAEncryption
27:21:d1:4d:59:93:d6:f8:b2:a8:36:1b:68:68:c2:b0:2f:1b:
7e:33:c0:be:d6:01:1d:4c:15:12:e1:da:de:06:14:6d:9a:ed:
0f:bb:a6:e5:8b:d5:ab:a5:02:91:62:70:38:1f:f6:8b:c9:e1:
a9:b7:67:61:64:d5:cc:3b:09:f0:02:92:b2:1b:c3:9a:da:5b:
ae:74:94:51:e6:9a:32:ab:dc:d8:01:c9:5d:ef:56:ef:ae:d9:
09:ee:2c:5d:2e:c7:58:91:2e:84:ed:c8:14:4b:26:95:5c:d7:
d0:91:12:79:3a:b2:bf:0c:23:af:3b:35:82:aa:4f:b8:01:24:
8e:5f:48:9d:02:39:5b:f7:e5:5c:39:f3:85:e1:ae:f5:81:ff:
85:c7:c6:1e:22:c1:12:89:7f:21:7c:6a:43:97:18:23:b5:c4:
2c:a1:4e:ea:91:52:1a:fa:88:30:43:d9:bd:93:e6:73:61:ad:
2d:2c:74:43:1c:aa:30:f5:a9:b4:50:be:f4:cc:c6:fd:0e:bf:
4e:3e:77:41:43:62:66:2e:b9:db:2c:07:85:83:2d:5f:b4:8a:
13:99:1c:6d:ca:3b:2e:f4:17:56:b1:1b:01:46:26:20:50:cb:
fe:a3:79:79:47:d7:fd:2d:00:21:ae:22:8e:a7:1e:fc:16:b0:
cf:7e:cc:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:20 2023 by rpki-client on console-ams.rpki-client.org