Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/8ZncOv-MjiHM0G0YBL_e1__P2Ko.roa
File: 8ZncOv-MjiHM0G0YBL_e1__P2Ko.roa (raw, json)
Hash identifier: tkF7gdnW06wG1ORV+DFW+yb5K0IOPNO5zL5Br3a2jEk=
Subject key identifier: F1:99:DC:3A:FF:8C:8E:21:CC:D0:6D:18:04:BF:DE:D7:FF:CF:D8:AA
Certificate issuer: /CN=db46ccf5f8a5fe44f4bfd9ba66ba51246da8b184
Certificate serial: 0181CF5785E5C924BB33E205BBFB6F40E53B
Authority key identifier: DB:46:CC:F5:F8:A5:FE:44:F4:BF:D9:BA:66:BA:51:24:6D:A8:B1:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/8ZncOv-MjiHM0G0YBL_e1__P2Ko.roa
Signing time: Tue 05 Jul 2022 17:10:28 +0000
ROA not before: Tue 05 Jul 2022 17:10:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202193
IP address blocks: 37.200.80.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:cf:57:85:e5:c9:24:bb:33:e2:05:bb:fb:6f:40:e5:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db46ccf5f8a5fe44f4bfd9ba66ba51246da8b184
Validity
Not Before: Jul 5 17:10:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f199dc3aff8c8e21ccd06d1804bfded7ffcfd8aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4a:e7:bc:75:7c:ad:74:1b:1e:ee:90:8e:86:
da:a8:bf:6c:a8:53:16:9a:9e:53:67:06:e7:d0:b3:
6b:32:b4:11:ec:10:04:72:c5:ad:d2:21:c9:79:42:
75:27:2b:e3:9b:b3:37:d0:d8:40:2b:55:31:7c:18:
b1:ad:f2:e6:34:65:51:50:0e:89:1e:c9:8a:9f:50:
47:72:39:5c:79:fb:f5:80:e8:8a:61:4d:0a:bc:bd:
a8:8a:41:76:5b:6e:27:1c:f1:b6:20:61:83:a8:b9:
d9:e0:f9:fb:c8:7a:67:05:88:52:a3:e6:34:e5:e1:
44:f8:b7:30:d2:81:d4:36:23:c6:eb:7a:8a:b6:75:
01:88:95:da:5f:34:67:81:b3:9e:89:cb:fa:d7:22:
80:30:c8:06:ee:e3:43:fc:bc:11:4e:65:dc:62:62:
69:94:51:c9:a4:d7:a3:6b:f4:58:4e:e8:33:e5:40:
f7:01:84:66:53:f4:85:d7:bd:c3:c2:a7:fe:a2:af:
08:13:19:9b:d3:74:ad:05:1e:7d:d5:e4:39:8d:07:
7c:5d:64:61:65:01:3f:9f:f8:b3:e8:45:d5:71:a0:
67:60:ef:36:fc:69:14:1a:3a:26:71:4d:ef:34:d3:
48:b6:7d:37:2c:54:83:5d:5c:bb:c2:11:18:d5:e0:
3e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:99:DC:3A:FF:8C:8E:21:CC:D0:6D:18:04:BF:DE:D7:FF:CF:D8:AA
X509v3 Authority Key Identifier:
keyid:DB:46:CC:F5:F8:A5:FE:44:F4:BF:D9:BA:66:BA:51:24:6D:A8:B1:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/8ZncOv-MjiHM0G0YBL_e1__P2Ko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.200.80.0/22
Signature Algorithm: sha256WithRSAEncryption
16:c7:12:fc:f9:41:3b:f8:e9:50:18:c7:6b:1d:15:1a:66:a2:
21:09:30:7c:4a:06:46:6f:be:4e:dd:03:0e:d1:38:49:f4:58:
e9:37:1b:23:60:ef:9d:71:14:41:43:fd:93:db:2f:ef:9f:6f:
f9:03:a9:97:93:e0:3b:96:df:27:d8:e4:9e:9a:2f:10:1e:59:
ea:da:1d:6f:a9:b4:6b:0d:89:41:7a:65:1c:fa:96:84:53:6f:
b7:94:c6:b2:74:3f:63:51:ff:56:2d:7d:89:36:85:00:56:31:
47:fc:85:ef:8b:98:72:dd:50:68:3b:8c:ba:14:f3:60:3c:c5:
a5:d2:8e:be:89:cd:5b:63:51:b8:8f:65:a7:a6:ef:63:8f:1f:
9f:16:25:9e:93:f7:c4:ee:87:2c:57:1e:7f:56:00:8f:b1:b2:
0e:98:bd:0c:c1:2a:5c:e7:2f:ee:29:29:bf:7b:1a:95:28:af:
db:89:a7:51:5c:6a:ad:fc:c4:15:2c:03:c3:5e:21:bc:d6:9b:
5a:3c:14:e6:fa:38:ad:a2:0d:e7:33:73:fe:40:4a:f4:87:8b:
49:c2:6e:c1:76:f8:9c:c1:37:eb:0b:70:01:58:d5:f7:bf:d5:
8d:e4:e7:02:7b:24:bd:2f:96:d1:c5:c7:20:95:9c:01:b9:e7:
ee:a5:e3:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:41 2023 by rpki-client on console-ams.rpki-client.org