Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/TRmhxQQKt7WOD7wS_fj2P4wE9jY.roa
File: TRmhxQQKt7WOD7wS_fj2P4wE9jY.roa (raw, json)
Hash identifier: mGAU9S5Ew+d4osusUr3RsJlk3WZwWEXON+2W/09rmUY=
Subject key identifier: 4D:19:A1:C5:04:0A:B7:B5:8E:0F:BC:12:FD:F8:F6:3F:8C:04:F6:36
Certificate issuer: /CN=ad44be18ee3e0d2747670555e86b000965e8139b
Certificate serial: 07AA600F
Authority key identifier: AD:44:BE:18:EE:3E:0D:27:47:67:05:55:E8:6B:00:09:65:E8:13:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rUS-GO4-DSdHZwVV6GsACWXoE5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/TRmhxQQKt7WOD7wS_fj2P4wE9jY.roa
Signing time: Sat 01 Jan 2022 14:56:45 +0000
ROA not before: Sat 01 Jan 2022 14:56:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43356
IP address blocks: 37.218.198.0/24 maxlen: 24
37.218.199.0/24 maxlen: 24
37.218.196.0/24 maxlen: 24
37.218.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128606223 (0x7aa600f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad44be18ee3e0d2747670555e86b000965e8139b
Validity
Not Before: Jan 1 14:56:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d19a1c5040ab7b58e0fbc12fdf8f63f8c04f636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6a:97:99:06:06:53:f1:bd:a6:d7:40:07:75:
c6:e4:ed:5c:c5:86:89:eb:35:a0:37:dd:60:16:5a:
cd:99:8d:39:97:58:0f:ec:5a:e1:b9:48:57:9a:e5:
e0:ae:4e:dc:37:57:e0:06:e6:a8:2c:30:fa:02:dc:
73:83:bf:16:d0:2e:88:bf:3b:9a:ac:dc:c6:dc:25:
4b:ba:88:e4:ed:3f:f4:34:ee:3f:8c:9f:b2:ee:b4:
cd:72:01:8b:06:ec:f4:fb:85:2c:76:80:4e:1e:a0:
b6:03:d6:c9:54:8e:59:c8:21:cf:55:9e:02:75:e6:
4c:a2:ae:f7:74:f5:fd:ef:16:c4:1e:c3:31:bf:ed:
a4:f3:01:a8:9e:14:d2:74:e9:72:06:04:80:1e:7d:
f0:54:4c:27:f5:69:3e:e2:a6:76:9a:54:54:ae:2e:
dc:ed:17:0b:6a:17:72:17:c7:f2:82:7c:26:67:78:
16:55:a6:5c:00:3c:8b:6f:29:df:53:a5:ec:36:9a:
9a:10:39:72:13:06:94:1e:5f:73:8d:6b:a5:5e:77:
38:22:30:64:1c:37:a5:df:e7:f3:fe:18:8f:0a:fb:
14:35:5c:53:49:ac:93:49:3a:b3:79:03:73:52:81:
b7:44:80:25:54:80:ab:98:4e:a6:a5:99:50:bb:06:
c9:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:19:A1:C5:04:0A:B7:B5:8E:0F:BC:12:FD:F8:F6:3F:8C:04:F6:36
X509v3 Authority Key Identifier:
keyid:AD:44:BE:18:EE:3E:0D:27:47:67:05:55:E8:6B:00:09:65:E8:13:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rUS-GO4-DSdHZwVV6GsACWXoE5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/TRmhxQQKt7WOD7wS_fj2P4wE9jY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.218.196.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:4b:58:87:0e:6b:30:9f:7f:bf:2f:b0:80:e1:fa:23:99:c0:
fb:98:9c:0e:35:49:f4:6b:53:a7:38:2e:65:a7:0a:0b:53:00:
74:04:2c:00:b8:2d:4f:dd:0e:5b:72:63:ad:51:a5:96:3e:d5:
8c:21:eb:c5:d3:db:8c:17:82:89:31:f4:b3:8f:4c:88:b5:53:
82:b1:6e:42:5b:8f:7a:e2:33:00:ec:bb:9b:1f:ed:6f:3c:08:
b7:82:6a:7b:c7:0a:fe:83:37:4e:bf:10:df:09:ee:5d:9b:0b:
5b:de:84:e9:72:d9:db:32:ea:9c:83:d1:cb:3b:5a:0d:66:cd:
ed:22:97:06:1a:c7:65:52:0f:8f:cd:d6:07:63:db:94:e3:ec:
90:f8:57:0f:ea:60:7b:08:31:0d:2b:61:a0:c5:16:72:4f:17:
19:e3:af:22:8f:46:02:c6:06:19:40:94:04:cd:74:81:a1:d4:
15:b7:5e:dc:4f:8f:da:1c:e7:64:13:47:50:84:ab:84:4e:37:
71:14:dd:0f:08:7c:ac:88:32:37:4b:d3:d8:43:d4:fc:48:c6:
19:74:db:82:b7:76:fe:54:f7:4e:7c:db:b5:c6:c3:21:27:cb:
48:60:64:34:ad:45:8c:7d:8b:e7:1b:68:a6:f4:cb:f9:57:a0:
19:fa:fa:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:18 2024 by rpki-client on console-ams.rpki-client.org