Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/be718b-92a9-444b-ae0a-f75e5d853176/1/br2TGAkYYYc6GBjIlB1ZKiAVB4M.roa
File: br2TGAkYYYc6GBjIlB1ZKiAVB4M.roa (raw, json)
Hash identifier: jw1oV7Zsn8fADNgGNNJYescERutBD2dWyS01Vcd9ynY=
Subject key identifier: 6E:BD:93:18:09:18:61:87:3A:18:18:C8:94:1D:59:2A:20:15:07:83
Certificate issuer: /CN=07ad752bdd91a0d31640c42304cae2a82f817c75
Certificate serial: 01825FE339B9C342D8F5E87D8DF9FA107274
Authority key identifier: 07:AD:75:2B:DD:91:A0:D3:16:40:C4:23:04:CA:E2:A8:2F:81:7C:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B611K92RoNMWQMQjBMriqC-BfHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/be718b-92a9-444b-ae0a-f75e5d853176/1/br2TGAkYYYc6GBjIlB1ZKiAVB4M.roa
Signing time: Tue 02 Aug 2022 18:48:23 +0000
ROA not before: Tue 02 Aug 2022 18:48:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204687
IP address blocks: 37.16.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5f:e3:39:b9:c3:42:d8:f5:e8:7d:8d:f9:fa:10:72:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07ad752bdd91a0d31640c42304cae2a82f817c75
Validity
Not Before: Aug 2 18:48:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ebd9318091861873a1818c8941d592a20150783
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ff:4e:2e:af:49:50:7e:c8:f4:f8:9f:3d:e9:
3c:9e:ea:0d:d9:18:8d:e8:85:82:48:a0:aa:e0:b5:
cc:1e:a2:07:11:3d:35:b3:7b:bf:fa:c5:38:8e:8b:
0d:33:d5:34:d1:89:75:4a:e7:b9:59:cc:6b:03:c7:
1e:8e:ee:ef:8c:0a:d9:43:0b:c7:6a:98:ea:5b:05:
8b:e8:50:b0:29:21:00:4a:00:62:5e:70:37:f2:50:
67:3b:34:f5:f3:11:71:a8:a8:54:34:c4:98:50:aa:
74:d6:ef:e9:b7:7f:af:37:a2:92:b9:c3:81:1b:12:
ac:8d:4a:32:bb:55:be:2e:0d:b6:df:55:34:ed:54:
17:8c:68:ef:da:87:85:ca:9f:11:57:54:16:15:5a:
c6:27:84:be:cb:f3:b3:b3:80:73:ed:31:8f:50:70:
e1:61:12:a8:a6:03:6b:28:6b:bc:a6:9b:b4:16:64:
ad:9f:d0:5c:c7:96:b9:f4:37:00:7a:41:2d:4f:6b:
49:6c:4f:14:1e:ea:05:75:cc:e3:a9:52:41:76:1c:
54:de:23:7d:d1:89:fa:80:df:5f:d7:9c:a1:d2:3f:
56:d9:63:18:36:be:a4:30:d5:4d:9f:f3:d2:19:6a:
d0:c3:c7:bb:13:4f:dc:2e:80:8c:4b:a6:03:83:50:
17:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:BD:93:18:09:18:61:87:3A:18:18:C8:94:1D:59:2A:20:15:07:83
X509v3 Authority Key Identifier:
keyid:07:AD:75:2B:DD:91:A0:D3:16:40:C4:23:04:CA:E2:A8:2F:81:7C:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B611K92RoNMWQMQjBMriqC-BfHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/be718b-92a9-444b-ae0a-f75e5d853176/1/br2TGAkYYYc6GBjIlB1ZKiAVB4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/be718b-92a9-444b-ae0a-f75e5d853176/1/B611K92RoNMWQMQjBMriqC-BfHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.16.74.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:7f:33:6c:db:e7:ad:3f:e6:15:93:8f:ec:a0:2b:db:72:80:
80:94:45:40:1a:30:c6:12:5a:13:55:14:7f:d8:17:55:3f:26:
3e:ac:88:4e:b2:b7:f3:1a:db:ab:15:3b:a5:6d:1a:32:5a:df:
e3:44:6a:33:bc:c6:d6:d1:4b:02:bd:76:d8:36:2d:2a:51:57:
e1:3a:b2:58:b3:81:93:25:60:80:1d:4b:c3:ce:65:ea:98:72:
23:2c:28:a9:d4:19:b4:47:d5:36:6a:04:9d:19:a3:a8:36:02:
48:23:a3:c4:8f:63:c7:57:ce:87:3b:e8:ce:ef:7a:14:6d:a2:
41:44:39:3a:0b:66:a7:f1:e1:6d:15:95:78:f3:11:0d:43:07:
cc:ec:fb:db:85:fc:ff:94:79:88:7b:b9:d7:fe:de:86:3f:84:
3f:81:93:c8:e9:32:f0:f7:97:31:0f:50:20:f0:69:3a:86:10:
68:56:b4:ad:53:c0:c4:8d:e6:57:f7:ae:ae:3f:db:48:c6:fd:
54:93:29:84:9f:81:a4:67:19:5d:86:51:f2:1a:ac:c1:36:37:
61:ec:4b:61:a2:e5:4a:04:36:78:07:ec:c5:a8:c8:36:02:aa:
32:b6:7b:77:d5:9d:86:8f:24:e5:a9:b2:16:2c:40:d2:39:53:
c7:e9:ec:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:56 2023 by rpki-client on console-ams.rpki-client.org