Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/31f8a0-7e95-4fe2-8809-f78bdb6f60c2/1/2K6HpenqRVBxDaV7KtGdf_Ymx_c.roa
File: 2K6HpenqRVBxDaV7KtGdf_Ymx_c.roa (raw, json)
Hash identifier: 1nt+jXIk0lwRKvT7tCp31AF2MnyVoYF9E0rpcHEV168=
Subject key identifier: D8:AE:87:A5:E9:EA:45:50:71:0D:A5:7B:2A:D1:9D:7F:F6:26:C7:F7
Certificate issuer: /CN=80ebaf2cba8359438e434123dda7a5a396f5f519
Certificate serial: 3541C447
Authority key identifier: 80:EB:AF:2C:BA:83:59:43:8E:43:41:23:DD:A7:A5:A3:96:F5:F5:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gOuvLLqDWUOOQ0Ej3aelo5b19Rk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/31f8a0-7e95-4fe2-8809-f78bdb6f60c2/1/2K6HpenqRVBxDaV7KtGdf_Ymx_c.roa
Signing time: Mon 23 May 2022 11:08:30 +0000
ROA not before: Mon 23 May 2022 11:08:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211225
IP address blocks: 37.205.3.0/24 maxlen: 24
37.205.6.0/24 maxlen: 24
37.205.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 893502535 (0x3541c447)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80ebaf2cba8359438e434123dda7a5a396f5f519
Validity
Not Before: May 23 11:08:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d8ae87a5e9ea4550710da57b2ad19d7ff626c7f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:76:d0:29:5e:53:58:58:1c:41:13:a5:a6:53:
cf:88:85:db:72:e3:76:52:33:9b:3e:6a:e5:f5:59:
c9:ad:89:ab:a7:ac:b9:33:ce:f6:50:ab:67:9b:21:
7d:e2:d0:9d:51:03:37:28:78:2d:ae:39:22:15:a9:
1b:bc:53:56:ae:f9:61:28:0a:e1:49:3d:9d:78:33:
c7:51:36:9b:d6:d2:99:0d:e3:18:23:d0:6d:89:b6:
b7:43:b3:f4:ca:02:fa:65:22:f1:12:e3:8d:4a:5f:
d9:44:79:94:ba:41:c5:69:48:08:40:18:03:75:71:
08:17:d3:a5:ae:b6:08:47:bf:e5:a9:68:17:74:38:
01:5a:f2:95:75:dd:b7:9a:fe:1e:cb:ca:39:f5:61:
ae:ca:8f:29:4a:b3:66:a1:c6:b4:03:b5:36:df:19:
be:33:8f:59:8c:71:74:6c:27:6d:19:4c:4d:de:cf:
51:83:b0:e7:77:00:19:54:ca:72:94:f9:5f:9a:f8:
2d:54:79:08:0e:66:96:fd:14:43:0a:80:97:9e:33:
b8:d0:15:85:92:3c:3d:f8:be:28:01:5e:a7:92:28:
52:68:2c:3c:ed:7b:8b:e5:ea:86:ce:b7:31:c9:93:
17:dc:e0:d7:4a:fb:a1:a9:5a:39:7d:90:5a:d1:12:
be:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:AE:87:A5:E9:EA:45:50:71:0D:A5:7B:2A:D1:9D:7F:F6:26:C7:F7
X509v3 Authority Key Identifier:
keyid:80:EB:AF:2C:BA:83:59:43:8E:43:41:23:DD:A7:A5:A3:96:F5:F5:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gOuvLLqDWUOOQ0Ej3aelo5b19Rk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/31f8a0-7e95-4fe2-8809-f78bdb6f60c2/1/2K6HpenqRVBxDaV7KtGdf_Ymx_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/31f8a0-7e95-4fe2-8809-f78bdb6f60c2/1/gOuvLLqDWUOOQ0Ej3aelo5b19Rk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.205.3.0/24
37.205.6.0/23
Signature Algorithm: sha256WithRSAEncryption
27:a0:9b:8f:73:c9:ec:62:72:f3:eb:dd:0e:64:6d:63:ec:57:
77:cc:c2:eb:06:49:65:cd:20:b0:06:26:c8:49:b6:bf:88:59:
a6:b4:92:a2:8b:d5:b4:e0:b3:3e:8a:50:e4:72:52:e6:82:b8:
b5:90:bc:bf:16:93:b8:1b:f4:9d:04:3e:ed:08:93:37:90:e2:
c2:b6:c4:4a:64:59:8f:24:27:25:b3:74:f2:36:9d:37:66:2d:
14:2b:a8:ac:76:8f:99:78:e2:f3:5c:e3:86:8e:c1:a6:67:a0:
2f:32:77:1e:ea:77:9a:83:a5:d5:11:b0:16:ae:92:93:52:bf:
36:25:01:28:f1:eb:0d:2e:50:4f:7b:ab:1b:11:c6:b9:b5:46:
69:ec:ba:80:d8:f4:b2:f2:08:32:05:0d:e7:10:3a:fb:a9:2f:
fa:74:5c:3c:cc:75:a3:13:5f:e5:15:88:0a:cd:4b:82:2c:4a:
8d:ec:2a:68:0f:93:ae:23:8e:ba:30:1b:c5:70:b1:27:26:c7:
c7:b7:24:e3:e9:65:16:3d:ba:a4:53:20:d9:bc:67:f8:16:94:
88:37:fa:7f:ce:b8:90:18:09:1c:bd:0e:c4:7f:87:4c:eb:69:
4b:4a:18:27:24:e3:66:e1:65:22:3e:62:65:34:bc:57:c1:6b:
58:59:98:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:39 2024 by rpki-client on console-fra.rpki-client.org