Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/361c57-ea42-47e2-a68f-ec967b511d7f/1/s97DGeREtrcXMTMCSNd3nM-EF8g.roa
File: s97DGeREtrcXMTMCSNd3nM-EF8g.roa (raw, json)
Hash identifier: IwfYl5ABC327QQu4yHRlLS3rVjCZ7y5OQQ26ffE0F0w=
Subject key identifier: B3:DE:C3:19:E4:44:B6:B7:17:31:33:02:48:D7:77:9C:CF:84:17:C8
Certificate issuer: /CN=f8fbc8415821486e8fe0860b5bec3e9283b80385
Certificate serial: 0183A1C3C781FF01A3829C26885A5243D8FF
Authority key identifier: F8:FB:C8:41:58:21:48:6E:8F:E0:86:0B:5B:EC:3E:92:83:B8:03:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-PvIQVghSG6P4IYLW-w-koO4A4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/361c57-ea42-47e2-a68f-ec967b511d7f/1/s97DGeREtrcXMTMCSNd3nM-EF8g.roa
Signing time: Tue 04 Oct 2022 06:51:45 +0000
ROA not before: Tue 04 Oct 2022 06:51:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210150
IP address blocks: 45.144.76.0/22 maxlen: 22
37.18.48.0/22 maxlen: 22
37.18.52.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a1:c3:c7:81:ff:01:a3:82:9c:26:88:5a:52:43:d8:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8fbc8415821486e8fe0860b5bec3e9283b80385
Validity
Not Before: Oct 4 06:51:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3dec319e444b6b71731330248d7779ccf8417c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e9:09:d6:29:1b:c6:2d:8e:05:ab:23:a5:a5:
bd:fd:d3:14:4c:15:e8:d2:89:ca:da:ae:e1:3a:c3:
28:21:02:fc:f4:22:08:61:2d:fb:99:67:ec:cb:22:
95:73:2f:64:74:a2:0a:2f:b7:b9:e8:b3:dc:7a:64:
3e:e1:91:bc:87:1c:af:95:0c:b8:a6:cd:77:a6:f8:
77:84:1d:52:0c:b5:5e:f8:85:43:c3:87:ea:31:a0:
01:99:aa:53:b9:04:1e:d4:bc:fc:8f:ab:b0:78:8f:
db:17:e0:b7:bd:94:02:a5:9b:45:77:da:2c:0b:48:
6e:72:71:4a:0d:49:a7:63:1a:7c:1d:99:c8:c1:82:
96:a0:a9:cd:b8:2d:ee:17:99:8b:07:df:e8:a0:ad:
c7:1c:fd:91:0b:c1:c7:48:e7:b1:e8:70:a9:d9:ff:
37:1a:d6:77:83:84:40:6b:97:7b:9b:b7:06:48:c8:
9a:95:61:34:d7:82:d4:91:8d:a5:92:2d:39:e4:17:
26:83:45:a6:83:35:58:e6:41:cf:2f:24:1e:e8:03:
15:1e:5c:7a:2f:be:17:cb:88:42:a5:c9:63:a1:9c:
d7:2d:98:38:4e:79:01:df:93:e5:2d:d5:77:cb:d7:
03:ac:f1:8b:ae:6c:40:6b:43:05:63:c6:9a:db:82:
06:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:DE:C3:19:E4:44:B6:B7:17:31:33:02:48:D7:77:9C:CF:84:17:C8
X509v3 Authority Key Identifier:
keyid:F8:FB:C8:41:58:21:48:6E:8F:E0:86:0B:5B:EC:3E:92:83:B8:03:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-PvIQVghSG6P4IYLW-w-koO4A4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/361c57-ea42-47e2-a68f-ec967b511d7f/1/s97DGeREtrcXMTMCSNd3nM-EF8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/361c57-ea42-47e2-a68f-ec967b511d7f/1/1-PvIQVghSG6P4IYLW-w-koO4A4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.48.0/21
45.144.76.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:e7:aa:34:9f:07:df:78:f2:50:ad:ed:bb:bf:8e:a5:d3:04:
2d:ee:e0:f8:da:67:01:84:e8:de:65:f7:4a:29:37:99:4b:43:
d7:13:f0:33:94:fb:32:b7:ce:0b:3d:49:81:13:9e:da:de:51:
e3:cf:47:63:26:50:a0:be:e3:14:56:8a:83:72:b7:8a:13:d1:
64:5d:58:df:63:ef:2f:f1:f5:15:14:1a:32:35:0f:f4:5a:eb:
10:10:9f:7a:ed:f2:20:ad:11:c4:73:6c:95:45:e4:99:f7:23:
89:cc:2a:cf:0a:6f:5e:55:9b:cc:c9:a3:70:db:d8:a9:23:7b:
e1:5a:82:17:79:5c:88:ae:68:2d:45:20:de:70:33:ae:8f:de:
54:f0:bd:63:7c:52:b8:78:a6:20:e2:1d:74:9a:ec:05:01:54:
09:a5:35:54:a1:6a:c0:c4:7c:5d:05:9f:70:f7:98:1a:ac:2c:
ea:37:08:24:71:2f:97:3b:be:d1:a6:93:b8:1a:ee:99:9b:5a:
1e:bb:a4:26:de:da:66:79:a7:43:a1:44:5a:a8:5a:86:19:f8:
97:1f:13:d6:33:ad:86:5f:48:d0:fd:94:1d:68:3d:b7:4f:46:
68:c7:26:fc:84:37:27:80:44:8a:1d:b5:1c:62:3b:d5:79:74:
78:be:3c:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:20 2023 by rpki-client on console-ams.rpki-client.org