Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/31f8a0-7e95-4fe2-8809-f78bdb6f60c2/1/ThbXu9aNLodH_aV4N_1HMc81pdM.roa
File: ThbXu9aNLodH_aV4N_1HMc81pdM.roa (raw, json)
Hash identifier: cKMscMUTj/Y9rDM3h0TgCV6/j+zVkhEdS8cFa3/oMio=
Subject key identifier: 4E:16:D7:BB:D6:8D:2E:87:47:FD:A5:78:37:FD:47:31:CF:35:A5:D3
Certificate issuer: /CN=80ebaf2cba8359438e434123dda7a5a396f5f519
Certificate serial: 3400D581
Authority key identifier: 80:EB:AF:2C:BA:83:59:43:8E:43:41:23:DD:A7:A5:A3:96:F5:F5:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gOuvLLqDWUOOQ0Ej3aelo5b19Rk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/31f8a0-7e95-4fe2-8809-f78bdb6f60c2/1/ThbXu9aNLodH_aV4N_1HMc81pdM.roa
Signing time: Sat 01 Jan 2022 10:56:35 +0000
ROA not before: Sat 01 Jan 2022 10:56:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42926
IP address blocks: 37.205.2.0/24 maxlen: 24
37.205.4.0/24 maxlen: 24
37.205.1.0/24 maxlen: 24
37.205.3.0/24 maxlen: 24
37.205.0.0/24 maxlen: 24
37.205.6.0/24 maxlen: 24
37.205.5.0/24 maxlen: 24
37.205.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 872469889 (0x3400d581)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80ebaf2cba8359438e434123dda7a5a396f5f519
Validity
Not Before: Jan 1 10:56:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e16d7bbd68d2e8747fda57837fd4731cf35a5d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ea:1b:97:79:de:9e:ff:ca:c6:b5:82:6e:bf:
3d:a1:0a:4b:0c:d8:58:4c:fb:cb:44:fb:7b:9b:0e:
7c:ed:35:4e:0a:1b:61:e2:7a:cd:e4:66:2d:6c:aa:
27:40:70:fa:af:fe:64:5c:06:93:6a:9b:69:f3:9e:
3e:46:e1:bf:0b:3e:36:98:f4:e0:c6:e8:48:ee:56:
ac:3c:90:32:be:06:33:c4:63:3a:b8:c5:66:56:cf:
c1:55:7a:8d:0b:95:74:f4:17:f0:44:3c:6e:f2:07:
df:16:5c:b1:e3:8f:dd:7b:62:91:0b:14:47:bd:25:
24:b8:83:0c:c9:c8:a7:fe:09:36:06:a0:c2:87:83:
2c:2c:a2:f1:69:e9:a9:31:e0:c3:9e:6a:85:3c:ad:
53:36:5e:b1:0b:9b:02:93:c5:09:22:26:52:66:60:
8b:21:ca:ea:23:f6:aa:e8:94:de:3e:5c:e0:7f:66:
7d:a0:26:9b:2a:ba:b1:83:2c:b8:74:fe:85:1d:d2:
bf:ed:9d:b4:4b:73:b0:c8:f0:5f:8b:24:5c:0f:d3:
dd:ea:15:4c:1f:81:80:b0:93:bb:d4:c8:76:39:c5:
23:19:bc:a2:3a:35:af:af:df:a1:67:34:96:73:46:
6c:2a:9e:61:57:a5:dd:ef:be:8b:66:18:66:a9:fc:
76:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:16:D7:BB:D6:8D:2E:87:47:FD:A5:78:37:FD:47:31:CF:35:A5:D3
X509v3 Authority Key Identifier:
keyid:80:EB:AF:2C:BA:83:59:43:8E:43:41:23:DD:A7:A5:A3:96:F5:F5:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gOuvLLqDWUOOQ0Ej3aelo5b19Rk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/31f8a0-7e95-4fe2-8809-f78bdb6f60c2/1/ThbXu9aNLodH_aV4N_1HMc81pdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/31f8a0-7e95-4fe2-8809-f78bdb6f60c2/1/gOuvLLqDWUOOQ0Ej3aelo5b19Rk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.205.0.0/21
Signature Algorithm: sha256WithRSAEncryption
39:38:d2:26:05:94:1c:02:d0:68:f9:19:ed:ad:8d:6e:46:bc:
c8:c6:ce:2d:5f:ec:da:32:36:4d:db:6c:dd:22:83:ab:81:5e:
76:94:9e:13:f5:da:7f:52:1f:96:25:65:26:5d:77:e5:20:f5:
be:74:62:97:13:4f:1b:4b:ce:10:2d:7d:4f:3d:b6:d4:bd:ce:
aa:04:11:3f:3f:0a:c8:99:03:2b:8b:14:8f:5a:27:a7:01:04:
f2:dd:97:ab:09:e4:b7:8c:73:7a:5b:3f:85:d2:6e:44:b8:09:
c4:61:5e:a1:5b:f8:1a:e9:be:e0:f2:63:1d:cc:f0:b2:ac:81:
d8:86:1f:5c:c8:ff:75:c8:ba:96:23:41:a7:46:c1:15:e3:c1:
52:c2:49:44:72:f1:5b:74:2c:3c:47:c8:55:74:18:3b:e4:4a:
43:e5:8c:ac:91:7a:5c:06:af:65:50:e2:0d:56:20:9e:a7:de:
0e:db:04:9f:29:31:87:dd:ff:9f:f8:a9:36:3b:19:e5:d5:df:
6f:04:c6:fe:2f:e4:b0:5c:c2:7b:ca:d7:93:b9:ad:c3:14:33:
75:8f:9d:e7:6c:54:54:c4:84:40:57:73:85:ec:55:14:bc:27:
5c:d6:9f:87:9a:fd:55:b4:d7:6e:f0:36:58:f1:87:0e:3c:a2:
a8:35:2f:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:23 2023 by rpki-client on console-fra.rpki-client.org