Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/CtwsVQ3RUKJW097cX9bPOc8MTpY.roa
File: CtwsVQ3RUKJW097cX9bPOc8MTpY.roa (raw, json)
Hash identifier: vz7zr8xmACBaLzxBx1p3HKWVbT0tOD99rJBb19OGo5A=
Subject key identifier: 0A:DC:2C:55:0D:D1:50:A2:56:D3:DE:DC:5F:D6:CF:39:CF:0C:4E:96
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 38C33B
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/CtwsVQ3RUKJW097cX9bPOc8MTpY.roa
Signing time: Wed 13 Apr 2022 06:21:24 +0000
ROA not before: Wed 13 Apr 2022 06:21:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 87.237.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3719995 (0x38c33b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Apr 13 06:21:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0adc2c550dd150a256d3dedc5fd6cf39cf0c4e96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2a:4c:f9:3f:d7:f5:bf:69:2a:27:87:f2:96:
37:e0:66:4e:89:ef:d5:a3:81:3f:8f:2d:9a:4c:35:
3a:af:eb:6b:c0:cf:9b:d6:05:65:b2:79:65:ec:9a:
6f:6c:a0:50:44:96:ef:e9:10:0e:2c:fd:f3:0f:1a:
0c:5f:c2:65:59:69:82:6f:58:82:e9:b2:8c:06:20:
2e:1f:b1:f0:6b:4d:ed:6e:68:d0:01:9a:2a:f1:b9:
70:2f:53:50:1c:89:3d:9c:67:8c:8f:7e:9e:cd:35:
aa:0f:4e:c0:c1:0d:4c:a5:56:f9:a3:77:e1:e8:c4:
8a:f5:7e:be:42:1f:3a:e3:ae:86:20:be:79:44:30:
9e:1a:08:31:3a:34:6c:d3:ff:45:97:b8:c3:56:b9:
79:4e:47:4e:9a:87:22:03:be:1e:ff:e3:a1:0c:49:
4f:a4:b5:11:a7:21:b9:c1:57:36:7f:b9:49:03:f8:
e0:b2:b3:de:01:62:cc:6a:6b:60:8f:4d:1e:42:17:
45:31:7a:92:df:c3:45:31:85:d2:eb:a2:e0:93:7e:
6f:99:f3:14:2c:d4:44:6c:bd:0e:83:95:ff:38:96:
72:df:8a:49:23:f9:fe:9a:a8:9d:2b:bf:5e:6f:5e:
2d:51:55:b1:61:45:3a:02:58:21:3b:6e:47:50:16:
0e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:DC:2C:55:0D:D1:50:A2:56:D3:DE:DC:5F:D6:CF:39:CF:0C:4E:96
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/CtwsVQ3RUKJW097cX9bPOc8MTpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.237.167.0/24
Signature Algorithm: sha256WithRSAEncryption
29:e6:b0:56:16:31:6f:98:37:4c:d6:a0:e7:22:05:00:18:f6:
77:78:5b:7d:4c:95:db:8f:1e:f5:c8:24:75:9f:65:b9:69:fd:
af:e0:52:99:97:62:42:a2:2f:1f:b0:18:d9:aa:20:b0:5f:fd:
c7:f9:2b:79:cc:b5:ad:e2:e6:ca:8c:c2:74:d9:4b:d9:0e:14:
56:53:41:8c:55:e6:6d:8e:21:84:20:31:ec:8f:11:7d:75:c8:
ac:12:48:23:04:52:5a:11:51:23:8d:47:cf:fb:a8:9e:db:51:
d8:3e:86:52:df:da:b8:fd:d7:03:f0:64:01:29:06:57:77:66:
2a:64:a9:cb:36:e4:b8:e6:82:31:47:64:90:ce:ff:97:1b:a1:
94:a4:4c:1b:a4:90:97:19:10:a4:62:d7:fb:be:aa:66:4d:dc:
cf:7d:5d:19:e4:b8:78:1c:31:a1:5b:99:50:b6:89:8c:df:f2:
86:83:11:71:b0:df:8a:b3:93:c0:42:e5:59:cc:4a:e2:cd:ae:
ac:37:51:1b:cf:ac:5f:5b:5e:90:1f:cc:86:50:06:31:a5:81:
20:5c:b4:83:af:52:ec:4f:8f:c6:23:81:90:d1:ca:13:2f:12:
63:de:67:61:36:c1:64:6a:f4:01:8f:d6:6b:02:1f:68:27:e9:
d8:a6:f4:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:06 2024 by rpki-client on console-ams.rpki-client.org