Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/vhgpojixprXuPSnJ9kAnzv1tRvc.roa
File: vhgpojixprXuPSnJ9kAnzv1tRvc.roa (raw, json)
Hash identifier: 5be7+N9tPhOm2fTr5e/Wa7RlQA+EdSAyaoPLMAzM+xs=
Subject key identifier: BE:18:29:A2:38:B1:A6:B5:EE:3D:29:C9:F6:40:27:CE:FD:6D:46:F7
Certificate issuer: /CN=d44de659759b0274124a7b481d0976840b7ade06
Certificate serial: 15D508AD
Authority key identifier: D4:4D:E6:59:75:9B:02:74:12:4A:7B:48:1D:09:76:84:0B:7A:DE:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1E3mWXWbAnQSSntIHQl2hAt63gY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/vhgpojixprXuPSnJ9kAnzv1tRvc.roa
Signing time: Sat 01 Jan 2022 04:58:43 +0000
ROA not before: Sat 01 Jan 2022 04:58:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57785
IP address blocks: 37.143.172.0/24 maxlen: 24
37.143.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 366282925 (0x15d508ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d44de659759b0274124a7b481d0976840b7ade06
Validity
Not Before: Jan 1 04:58:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be1829a238b1a6b5ee3d29c9f64027cefd6d46f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:fa:56:1f:76:74:8f:ad:7b:a8:c7:a1:ee:75:
e1:b4:92:3c:a3:3f:e0:8f:b0:4e:85:b2:c2:6d:2e:
be:8a:62:59:cc:8a:03:3a:62:2b:16:76:b8:01:ce:
11:81:1a:18:5e:cf:fe:57:c3:45:7c:a2:d6:7a:e5:
86:b4:c1:00:c2:ab:20:1d:52:24:c8:07:2c:91:40:
df:e2:fb:c2:cc:50:c3:1b:1b:6d:fc:af:0c:be:ac:
a4:8d:bb:0c:28:a6:df:fc:e6:1a:4c:1e:4c:a5:54:
58:58:b3:9f:28:ce:0e:48:e4:ff:87:b1:c1:1a:19:
34:26:ac:ee:4f:0a:98:ff:aa:b3:66:2d:e8:c9:a3:
68:76:96:a4:25:22:be:ea:fe:73:4f:77:40:b9:62:
0f:07:55:70:dd:96:f6:70:8d:d9:7f:7f:9b:6d:0a:
64:3e:cf:42:bb:34:da:67:36:01:8b:c4:3a:14:10:
12:47:2f:f3:be:7d:5b:1e:63:6c:f4:fa:5b:fa:55:
7f:32:36:c3:9d:72:a8:fe:18:7d:37:06:44:7b:a1:
17:be:f4:c5:f9:3d:80:54:ec:19:0f:de:7d:c0:52:
8a:1e:cb:e6:f4:59:72:41:30:14:83:36:28:1c:fe:
4b:cd:2a:2b:6d:91:b5:ab:20:98:65:c5:6f:13:5a:
8c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:18:29:A2:38:B1:A6:B5:EE:3D:29:C9:F6:40:27:CE:FD:6D:46:F7
X509v3 Authority Key Identifier:
keyid:D4:4D:E6:59:75:9B:02:74:12:4A:7B:48:1D:09:76:84:0B:7A:DE:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1E3mWXWbAnQSSntIHQl2hAt63gY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/vhgpojixprXuPSnJ9kAnzv1tRvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/1E3mWXWbAnQSSntIHQl2hAt63gY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.171.0-37.143.172.255
Signature Algorithm: sha256WithRSAEncryption
2e:72:2c:e3:0e:e8:d6:10:10:b8:f0:28:9a:1e:e6:be:28:29:
3e:d3:d2:a2:e5:22:73:9f:39:b2:d6:40:cc:75:8a:14:4f:8a:
5f:ab:b1:d7:f7:3e:8c:85:41:a4:33:4d:c2:5a:ff:ad:86:bf:
61:75:d8:8a:fb:39:71:98:2e:2d:7e:18:85:ec:c0:ea:b3:fd:
2a:1d:7c:8d:18:3c:0d:cb:cd:7a:b6:79:7f:87:02:3e:ed:aa:
fa:a8:3c:ed:6a:bd:7f:f3:b5:f1:49:a2:87:b1:5a:d0:29:2b:
d5:53:c1:33:2b:df:01:c8:3a:50:7a:48:fd:81:b5:4e:63:c6:
46:c1:e1:7c:62:8f:d3:83:c1:54:be:bd:23:d4:04:54:53:98:
72:87:72:15:ff:b1:fc:c0:05:67:0a:32:d3:83:5a:30:24:ae:
96:b5:23:c5:eb:78:13:c7:b9:6d:8e:c7:96:19:32:b0:4e:7d:
a9:fd:25:2a:1a:76:8d:c5:77:cc:d8:6c:05:69:12:2d:3b:80:
eb:f8:9d:41:78:c7:ef:d2:98:91:ad:19:9b:77:73:cc:3d:ed:
fd:b1:22:e4:97:2b:93:a9:15:db:b4:14:cf:23:5d:de:1c:d8:
a8:d2:7c:a8:2d:ca:5c:49:3e:ac:57:9b:3e:f2:76:4c:ba:16:
1d:4a:90:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:36 2023 by rpki-client on console-fra.rpki-client.org