Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/7DqI3SR6uFMabpVOn6Ex8K4ixAU.roa
File: 7DqI3SR6uFMabpVOn6Ex8K4ixAU.roa (raw, json)
Hash identifier: 2c3CHcp8Nr1rvqmTL1CzNrB8/PK6AGZ26Tl0N3/G/fs=
Subject key identifier: EC:3A:88:DD:24:7A:B8:53:1A:6E:95:4E:9F:A1:31:F0:AE:22:C4:05
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 43414316
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/7DqI3SR6uFMabpVOn6Ex8K4ixAU.roa
Signing time: Sat 01 Jan 2022 07:59:51 +0000
ROA not before: Sat 01 Jan 2022 07:59:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29691
IP address blocks: 37.235.50.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1128350486 (0x43414316)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Jan 1 07:59:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec3a88dd247ab8531a6e954e9fa131f0ae22c405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:49:32:21:ce:f6:56:3f:d0:d4:a0:49:61:46:
be:e9:87:0d:96:e1:6c:24:a0:16:7e:12:33:76:3c:
c1:f9:5e:d2:13:ec:0e:04:5b:fd:87:7d:92:63:c2:
65:93:a4:0f:e6:2a:2c:25:c8:99:08:c9:6d:d7:75:
76:18:57:5e:87:34:56:99:4a:e2:7f:6c:4d:74:6b:
b4:19:3c:97:f2:94:eb:74:95:74:6a:f1:e1:c3:d2:
3e:48:50:39:7e:16:ad:96:4a:42:af:62:66:ab:99:
33:ae:77:6e:27:17:04:55:06:ee:43:d3:c0:41:73:
46:39:14:5d:91:9d:ee:f1:2a:4b:b9:56:cf:c9:c4:
4e:66:d0:be:af:81:ca:c1:65:1b:25:6e:f8:6a:09:
a5:12:a2:bc:96:e0:e2:e8:4b:65:6f:fb:c3:71:43:
76:04:cd:67:85:3f:8a:42:05:19:5c:e9:9e:ca:21:
d9:d0:b8:82:95:d0:a6:5e:3c:10:e5:76:e9:fb:ca:
48:9f:97:1b:95:a4:b0:5a:c5:de:ee:2a:4b:bc:dc:
de:0c:01:01:13:ca:f0:89:b4:79:6e:f1:8a:69:f4:
58:e1:54:16:a6:94:60:f3:b5:42:44:1e:71:ef:ea:
b4:c9:97:21:01:77:2a:18:db:d8:4f:fd:48:71:40:
8d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:3A:88:DD:24:7A:B8:53:1A:6E:95:4E:9F:A1:31:F0:AE:22:C4:05
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/7DqI3SR6uFMabpVOn6Ex8K4ixAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.50.0/23
Signature Algorithm: sha256WithRSAEncryption
83:1c:a6:99:b2:f6:5b:c1:49:fb:e4:4d:4b:d0:83:d2:e2:71:
9c:73:6a:9f:09:dd:c9:f8:f7:c5:2b:ac:ff:f2:c0:26:d7:ea:
82:55:7a:b0:ce:90:31:e2:8b:fe:c8:3e:d3:9c:14:3f:2d:ef:
9a:e0:79:b2:2d:6a:b2:c5:d2:3a:66:57:8c:ed:fc:97:0c:b8:
8c:35:70:08:a2:ed:28:1f:aa:59:b6:e8:86:0f:ca:fc:b3:d5:
0b:43:f4:96:e2:7f:d5:40:f4:a1:ab:40:d8:e6:3b:d2:0a:7c:
71:fb:67:8d:e3:18:da:6c:0c:cd:25:a8:82:fa:d8:3f:f9:e6:
76:66:fe:52:66:0e:99:af:ed:89:0e:95:49:e4:f5:e8:8c:d9:
c6:88:8a:6d:d0:59:9d:e0:75:de:dc:66:e1:67:4a:a1:88:3e:
9b:21:58:df:1e:e4:7c:78:f0:d3:81:7e:46:3c:f8:29:3e:86:
33:75:4f:a3:2d:a7:52:d4:d6:e7:4c:7c:a0:f6:15:d9:7b:a1:
8e:c8:8b:d3:63:72:08:29:e7:a1:6c:85:36:60:24:11:d5:e6:
6b:c0:62:d3:37:3c:70:95:0f:76:fc:5a:9a:a7:b7:7f:5a:cb:
ea:78:e0:31:ac:f9:00:13:c3:25:e7:f2:89:6a:ba:dc:98:3e:
71:0f:f8:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:09 2023 by rpki-client on console-fra.rpki-client.org