Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/6a8e5e-39b6-47e3-bbb0-b29f10cc0328/1/3GGJtdDPL3oLa-ILqupNDFSyd9M.roa
File: 3GGJtdDPL3oLa-ILqupNDFSyd9M.roa (raw, json)
Hash identifier: 7qDuPLd1u/bv/GNNoyPB9K4f4CHfSApyjYp455omX+Y=
Subject key identifier: DC:61:89:B5:D0:CF:2F:7A:0B:6B:E2:0B:AA:EA:4D:0C:54:B2:77:D3
Certificate issuer: /CN=01c38a06a39b20b8da40009237d76acdd28e71a5
Certificate serial: 19E67D86
Authority key identifier: 01:C3:8A:06:A3:9B:20:B8:DA:40:00:92:37:D7:6A:CD:D2:8E:71:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AcOKBqObILjaQACSN9dqzdKOcaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/6a8e5e-39b6-47e3-bbb0-b29f10cc0328/1/3GGJtdDPL3oLa-ILqupNDFSyd9M.roa
Signing time: Thu 10 Mar 2022 09:53:59 +0000
ROA not before: Thu 10 Mar 2022 09:53:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 37.98.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 434535814 (0x19e67d86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01c38a06a39b20b8da40009237d76acdd28e71a5
Validity
Not Before: Mar 10 09:53:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc6189b5d0cf2f7a0b6be20baaea4d0c54b277d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ad:8f:a8:df:f1:7b:d7:bd:4e:18:79:c9:42:
d1:85:41:04:a0:b8:de:fb:36:dc:05:70:22:35:fe:
8d:6d:6b:96:d0:b6:c8:3f:80:ea:4c:9e:b2:63:ec:
ef:d7:7b:a2:fe:cd:62:70:ee:ae:b8:cf:75:bd:70:
76:81:3f:6d:5b:7e:af:aa:f6:8d:2c:7d:ad:86:a1:
d2:cc:36:4b:9d:a8:73:10:ee:63:76:dd:8a:c7:06:
d0:8b:8e:72:0e:17:ba:ed:e5:12:65:94:fe:d0:c4:
ea:2c:a1:21:9c:3c:19:bd:e5:98:6f:0a:02:54:42:
ad:11:59:55:2b:bc:67:f5:ee:03:39:14:1e:cb:e1:
9b:c9:3f:fc:9a:10:ba:72:6f:21:ac:de:a1:1d:22:
7e:ac:44:84:05:16:1b:6d:72:bf:3f:4a:c8:08:ae:
28:94:c3:d7:19:58:37:d8:40:97:bb:c2:70:bd:77:
41:55:26:d9:18:f7:d3:b3:f4:b4:5d:44:7d:68:9a:
15:28:d7:20:fd:d4:96:db:a2:a6:fa:4d:4e:df:1a:
0f:ab:e5:64:8b:45:9b:92:77:93:fe:aa:32:ec:1d:
a4:76:7a:b3:1b:ff:bd:41:49:a0:1e:82:0a:38:13:
e0:4e:0a:6a:89:e6:32:67:8a:b3:16:a7:70:0b:9f:
0c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:61:89:B5:D0:CF:2F:7A:0B:6B:E2:0B:AA:EA:4D:0C:54:B2:77:D3
X509v3 Authority Key Identifier:
keyid:01:C3:8A:06:A3:9B:20:B8:DA:40:00:92:37:D7:6A:CD:D2:8E:71:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AcOKBqObILjaQACSN9dqzdKOcaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6a8e5e-39b6-47e3-bbb0-b29f10cc0328/1/3GGJtdDPL3oLa-ILqupNDFSyd9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6a8e5e-39b6-47e3-bbb0-b29f10cc0328/1/AcOKBqObILjaQACSN9dqzdKOcaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.98.236.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:e5:11:6b:ff:5a:9e:39:b5:2e:84:15:36:a1:cf:f8:13:15:
2e:9b:79:a7:3c:25:c2:49:78:a7:59:66:5d:4b:7d:35:b8:ea:
a4:ea:71:ff:9b:43:8f:de:f0:fd:0c:2b:f7:ca:43:41:79:a7:
82:f4:13:de:61:5b:5c:cf:d9:26:58:03:73:a9:50:d3:c4:20:
83:c3:e7:84:62:06:1a:cb:be:59:8d:db:33:18:d8:d2:42:bb:
a4:e1:a7:32:8f:7f:9c:f0:a5:c5:a4:c3:44:18:89:54:4f:e9:
e0:3b:17:b6:88:19:70:bb:95:5b:07:dc:89:af:c9:1b:89:a6:
05:11:fd:78:cd:3e:a0:0f:38:e4:f2:c4:7a:71:2f:a0:99:06:
50:65:2f:8c:c5:3e:df:97:f0:07:d7:cc:a7:b6:26:90:d9:13:
33:6f:03:bf:90:06:fd:d6:6a:8d:63:f8:80:72:12:d1:54:d8:
99:a4:eb:c6:27:77:55:ef:56:80:1d:cc:61:bb:09:90:21:9d:
f8:6b:2e:c2:53:1b:9d:11:d2:51:ce:fc:b3:26:f7:0c:fc:07:
b4:fd:a6:d5:75:fe:a5:31:1f:ed:b2:f9:3b:56:c8:5e:48:09:
cb:ed:5e:32:43:a8:c6:24:1f:a1:80:f6:8e:ee:20:b6:cb:15:
17:b9:66:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:25 2023 by rpki-client on console-fra.rpki-client.org