Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/AnyD6HhwSoVo4wAOmh5UL5BLalk.roa
File: AnyD6HhwSoVo4wAOmh5UL5BLalk.roa (raw, json)
Hash identifier: l6oDXEHmtSyzMEC7XyE19WlcoiTkeVzrYuusQlEfrQo=
Subject key identifier: 02:7C:83:E8:78:70:4A:85:68:E3:00:0E:9A:1E:54:2F:90:4B:6A:59
Certificate issuer: /CN=d44de659759b0274124a7b481d0976840b7ade06
Certificate serial: 15D27840
Authority key identifier: D4:4D:E6:59:75:9B:02:74:12:4A:7B:48:1D:09:76:84:0B:7A:DE:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1E3mWXWbAnQSSntIHQl2hAt63gY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/AnyD6HhwSoVo4wAOmh5UL5BLalk.roa
Signing time: Sat 01 Jan 2022 04:58:41 +0000
ROA not before: Sat 01 Jan 2022 04:58:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39211
IP address blocks: 37.143.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 366114880 (0x15d27840)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d44de659759b0274124a7b481d0976840b7ade06
Validity
Not Before: Jan 1 04:58:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=027c83e878704a8568e3000e9a1e542f904b6a59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9f:ce:ac:8c:5c:56:4c:6e:4a:d2:29:99:40:
ba:57:d0:97:b2:ed:40:40:42:97:94:74:2b:7f:48:
cf:4e:27:44:12:58:c3:bf:75:c6:15:9c:d1:b0:ad:
1d:ea:29:2b:65:2d:f0:18:91:20:be:7c:a4:33:3c:
ed:36:68:e5:da:b3:17:2f:4d:4e:2f:59:a9:77:13:
29:f0:66:aa:36:f0:de:64:6e:f2:ed:d4:37:10:a7:
70:b1:74:6b:e2:ef:4b:8e:03:c5:4e:58:47:91:51:
92:e0:e0:fe:d7:cb:91:70:46:35:76:7d:c6:a5:26:
fa:07:ac:2b:50:67:8b:0a:79:cc:7c:1a:c1:37:37:
b6:c9:87:94:45:6a:f5:66:30:1b:cd:0c:80:e3:32:
da:8e:cc:e6:88:e6:97:e4:f4:bb:3f:85:50:44:1a:
62:50:41:55:77:a4:d9:23:af:11:da:bf:c1:3e:e5:
2c:61:69:c1:4b:5d:7f:f2:20:ef:1f:a8:74:0e:aa:
9e:05:f0:fc:6d:b5:8c:b6:90:d4:55:a2:31:32:37:
d3:b5:6d:9b:99:7d:48:47:f1:d2:f6:cd:91:1d:91:
ce:b5:38:62:de:2a:49:4a:8e:30:c9:aa:27:0e:af:
30:6f:c2:4b:dd:0c:11:e0:67:c5:f4:bc:64:e2:b2:
03:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:7C:83:E8:78:70:4A:85:68:E3:00:0E:9A:1E:54:2F:90:4B:6A:59
X509v3 Authority Key Identifier:
keyid:D4:4D:E6:59:75:9B:02:74:12:4A:7B:48:1D:09:76:84:0B:7A:DE:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1E3mWXWbAnQSSntIHQl2hAt63gY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/AnyD6HhwSoVo4wAOmh5UL5BLalk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/1E3mWXWbAnQSSntIHQl2hAt63gY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.174.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:70:e4:2a:4b:0a:f2:6a:ea:6d:07:47:54:27:92:b5:09:5c:
53:80:eb:4a:bc:6c:89:27:6e:d0:93:1e:56:aa:86:ac:45:a9:
37:ec:2d:cb:18:a0:9a:2b:97:1e:9b:2c:b4:13:6d:a6:77:d4:
9f:38:36:2c:f2:f4:d6:12:52:b7:3b:97:0d:3b:07:34:cb:02:
c4:bf:0a:f2:5d:d3:bd:56:69:46:0a:a0:d2:d3:15:d9:e1:80:
57:5b:15:14:75:c7:32:29:ac:8f:23:33:51:01:5e:99:dd:14:
8c:00:a2:d0:a2:17:a8:09:bc:06:83:23:4c:f6:5b:c2:a0:43:
52:8b:9a:37:40:bb:c5:3a:b8:f8:4c:ae:df:a4:58:2f:4d:99:
11:de:ec:bf:be:7a:a5:54:f1:bb:8b:da:cf:00:fb:f5:9d:ef:
4d:9e:12:ff:e4:e4:9a:c1:74:c1:6f:df:f2:63:4d:78:eb:9b:
88:7f:d8:15:a7:e7:b6:88:4a:1e:57:79:8b:0f:88:0f:fd:02:
9e:8b:f9:32:1d:6a:d5:11:52:b7:66:7b:c6:d6:9c:6a:b5:dc:
5b:c3:f5:27:05:6f:fb:7d:e2:41:67:b8:54:1f:a8:f8:e8:23:
f9:89:fb:0d:9f:ae:92:a3:05:d2:1a:56:bb:d4:32:13:63:f3:
52:a7:f8:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:36 2023 by rpki-client on console-fra.rpki-client.org