Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/6a8e5e-39b6-47e3-bbb0-b29f10cc0328/1/urda87DiL0UKCuJ-a6fHU-ki6LM.roa
File: urda87DiL0UKCuJ-a6fHU-ki6LM.roa (raw, json)
Hash identifier: 9drz0ehd+7kdjIIR5g/2d7KNDicJ+bccF1AdezIpN3Y=
Subject key identifier: BA:B7:5A:F3:B0:E2:2F:45:0A:0A:E2:7E:6B:A7:C7:53:E9:22:E8:B3
Certificate issuer: /CN=01c38a06a39b20b8da40009237d76acdd28e71a5
Certificate serial: 19F0FAC0
Authority key identifier: 01:C3:8A:06:A3:9B:20:B8:DA:40:00:92:37:D7:6A:CD:D2:8E:71:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AcOKBqObILjaQACSN9dqzdKOcaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/6a8e5e-39b6-47e3-bbb0-b29f10cc0328/1/urda87DiL0UKCuJ-a6fHU-ki6LM.roa
Signing time: Mon 14 Mar 2022 13:10:20 +0000
ROA not before: Mon 14 Mar 2022 13:10:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 37.98.233.0/24 maxlen: 24
37.98.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 435223232 (0x19f0fac0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01c38a06a39b20b8da40009237d76acdd28e71a5
Validity
Not Before: Mar 14 13:10:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bab75af3b0e22f450a0ae27e6ba7c753e922e8b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:05:d9:a5:0a:95:e4:dc:c8:28:0b:f4:4a:7c:
be:b1:18:a8:06:56:f7:e3:9b:b4:6b:3b:80:f7:c7:
b4:47:ac:6b:b6:4f:e7:03:ad:b5:40:bb:e0:67:5c:
32:8a:16:c0:2a:2b:9e:77:4b:41:a9:8e:d8:51:67:
be:dc:a0:97:b2:98:e1:a9:0f:0a:84:11:80:a7:af:
ae:07:91:a0:ad:c3:22:bc:39:c5:38:3f:64:c1:66:
30:67:44:33:58:56:93:24:08:a0:19:a9:df:cc:4c:
41:ff:ef:89:91:2a:0a:8c:c6:6e:85:84:d4:66:cc:
2c:c8:2b:7a:70:e8:02:66:b6:c4:b2:1e:39:43:85:
bb:74:01:b4:39:31:5e:71:df:7d:db:6e:37:e2:e7:
64:77:04:b0:a6:7d:01:c7:7e:c5:d1:4e:d4:cd:09:
73:3f:71:d9:67:cb:a9:17:63:37:04:5f:8a:03:32:
43:6d:78:8e:f1:cd:75:05:4b:6f:92:93:f5:d1:72:
e3:25:2c:ec:56:41:a3:8b:3b:cd:dc:c0:19:6e:c0:
dd:26:30:fe:31:8a:ad:a6:1a:26:45:f9:a5:f3:db:
f8:80:43:ab:9a:b2:e3:dc:74:0f:07:20:aa:7e:c8:
c7:02:34:55:3f:82:2a:3a:f5:d1:15:f2:c2:ba:78:
4e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:B7:5A:F3:B0:E2:2F:45:0A:0A:E2:7E:6B:A7:C7:53:E9:22:E8:B3
X509v3 Authority Key Identifier:
keyid:01:C3:8A:06:A3:9B:20:B8:DA:40:00:92:37:D7:6A:CD:D2:8E:71:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AcOKBqObILjaQACSN9dqzdKOcaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6a8e5e-39b6-47e3-bbb0-b29f10cc0328/1/urda87DiL0UKCuJ-a6fHU-ki6LM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6a8e5e-39b6-47e3-bbb0-b29f10cc0328/1/AcOKBqObILjaQACSN9dqzdKOcaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.98.233.0/24
37.98.236.0/24
Signature Algorithm: sha256WithRSAEncryption
90:b3:a2:a8:c9:11:6c:e6:24:89:5d:ec:4a:7e:38:ad:e4:52:
23:ff:2d:89:82:fc:e9:76:bf:02:2c:5e:83:3d:02:a6:c7:e3:
2d:28:7f:09:74:0e:4a:c4:87:93:f9:bc:31:34:7b:c2:8f:a2:
a9:c7:1a:26:0f:25:88:fa:f5:fe:02:9a:a7:e5:ca:79:60:80:
42:05:fa:1e:a7:53:fc:ed:32:d3:f2:b5:6d:51:33:51:ed:f8:
94:05:11:85:10:49:32:32:2e:c3:60:7d:77:e8:61:fa:42:2c:
73:ec:da:0e:56:65:49:19:c6:61:d9:9b:b6:b4:3a:97:df:a1:
fd:48:92:75:4a:23:e4:80:5a:9d:7e:26:09:e6:fe:3a:b0:ab:
69:d6:9c:b3:b0:66:03:19:56:1c:6e:cf:dd:df:80:40:84:9c:
7d:f0:7c:10:1e:96:fb:4e:44:dd:ba:0e:07:3c:d3:e6:b1:21:
2d:66:ee:07:30:59:11:ad:4a:96:50:ae:44:35:2c:84:ce:4f:
b6:9c:7c:91:36:42:75:f6:51:63:66:4e:d4:75:b4:84:5f:7f:
cf:3c:d6:ef:c7:69:71:1f:7c:44:d9:16:70:4a:8d:a1:11:f3:
79:a3:01:74:f5:41:35:9b:5e:24:b9:f4:62:4c:a5:15:26:31:
ac:e6:fe:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:12 2023 by rpki-client on console-ams.rpki-client.org