Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/1rhdxUfBr9hM7Gbzlg0GlzpZiNc.roa
File: 1rhdxUfBr9hM7Gbzlg0GlzpZiNc.roa (raw, json)
Hash identifier: B/c9+mSlP/VgO1mpIUoLnBkkyM4CyvDZZLzrWxErpIs=
Subject key identifier: D6:B8:5D:C5:47:C1:AF:D8:4C:EC:66:F3:96:0D:06:97:3A:59:88:D7
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 486CF0A1
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/1rhdxUfBr9hM7Gbzlg0GlzpZiNc.roa
Signing time: Sat 01 Jan 2022 03:00:31 +0000
ROA not before: Sat 01 Jan 2022 03:00:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51167
IP address blocks: 37.139.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1215099041 (0x486cf0a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 1 03:00:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6b85dc547c1afd84cec66f3960d06973a5988d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b6:23:60:7b:43:f7:ba:65:6c:38:e8:41:5b:
f8:9c:17:66:e7:fe:33:0f:0d:6d:19:83:9e:70:53:
d8:7a:41:55:c1:62:70:25:ce:07:87:44:83:c7:39:
76:c7:c9:fb:10:0d:4f:cb:23:70:a4:e5:16:f4:b6:
b7:f7:37:4a:d2:a8:7d:69:54:c7:f8:e0:76:e6:82:
42:f7:8b:1d:bb:54:c2:ac:ab:26:4c:9a:ba:97:8d:
10:20:72:64:1c:db:24:32:6a:8d:89:26:a2:97:10:
50:cb:6b:16:46:f4:b5:69:1a:49:be:cd:6c:95:14:
36:5d:bf:38:b0:95:48:f0:78:e3:23:13:1c:dd:24:
51:be:2e:b5:39:f9:8e:23:13:07:ea:85:6d:cf:6b:
bc:4f:3f:5e:ce:95:4b:32:c7:aa:6c:a8:d9:63:a8:
9c:9b:9e:14:8b:bf:16:ba:52:ba:c4:22:4c:1a:29:
27:c9:1f:7c:24:7f:fb:0b:e4:02:93:43:6d:59:30:
b0:c2:55:ad:79:94:39:87:e4:65:f1:35:24:be:61:
b4:fe:e2:f2:4c:c8:39:a2:c1:19:4e:f5:09:98:9d:
c1:3d:77:01:5d:4d:6b:6c:2e:b8:ef:a6:6d:8e:7f:
06:05:cd:a1:9f:3f:a8:cc:a6:54:84:20:5d:f2:67:
a8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:B8:5D:C5:47:C1:AF:D8:4C:EC:66:F3:96:0D:06:97:3A:59:88:D7
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/1rhdxUfBr9hM7Gbzlg0GlzpZiNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.139.52.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:9c:b1:43:6e:94:d1:59:00:81:a6:d6:28:f2:b0:26:43:33:
c4:fb:15:b1:79:b3:ea:fc:f3:9e:13:87:a0:68:e8:0f:e8:27:
3c:ac:af:3a:c2:35:65:b0:2c:b6:3c:a7:30:2e:20:bb:af:fc:
dd:49:a1:49:e1:1c:d7:54:0f:38:4a:51:fa:94:29:03:69:44:
8e:61:d9:a0:e4:52:82:7c:90:8c:53:08:56:75:c2:33:a8:5a:
5d:8a:5a:55:47:94:ee:89:b4:57:b9:7e:8d:e3:c1:33:c1:1b:
8f:84:b1:58:1f:53:d7:72:1f:93:13:a4:02:11:6d:eb:a2:f3:
d8:7a:6c:7a:49:e9:1e:34:d1:33:a6:87:c0:30:19:27:10:12:
ed:c3:be:24:15:a8:1f:fd:48:10:e3:42:6f:10:be:d6:fd:95:
87:44:da:af:29:84:47:ce:05:36:c3:a5:7a:92:ee:69:e3:39:
dd:ab:67:42:0d:5b:52:12:87:91:35:44:50:0a:8b:fd:f7:48:
25:c7:06:d2:45:b2:e4:6f:04:df:b5:bc:dd:3e:4c:de:c5:97:
bd:6e:9d:73:c8:a6:a3:f5:f3:5e:59:bc:bd:6d:19:b7:92:97:
f5:22:25:f2:7a:16:52:44:3f:a5:10:ad:29:22:b2:d2:06:68:
22:e1:34:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:43 2023 by rpki-client on console-ams.rpki-client.org