Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/yGZO5cS3SHtY32_0Kw916YR7Rdk.roa
File: yGZO5cS3SHtY32_0Kw916YR7Rdk.roa (raw, json)
Hash identifier: tSD53bpHevDbOIpytljcWZW99QiW4I+xElf8CGxP+nw=
Subject key identifier: C8:66:4E:E5:C4:B7:48:7B:58:DF:6F:F4:2B:0F:75:E9:84:7B:45:D9
Certificate issuer: /CN=db46ccf5f8a5fe44f4bfd9ba66ba51246da8b184
Certificate serial: 0427D7C3
Authority key identifier: DB:46:CC:F5:F8:A5:FE:44:F4:BF:D9:BA:66:BA:51:24:6D:A8:B1:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/yGZO5cS3SHtY32_0Kw916YR7Rdk.roa
Signing time: Sat 01 Jan 2022 02:56:50 +0000
ROA not before: Sat 01 Jan 2022 02:56:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202193
IP address blocks: 37.200.80.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69720003 (0x427d7c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db46ccf5f8a5fe44f4bfd9ba66ba51246da8b184
Validity
Not Before: Jan 1 02:56:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8664ee5c4b7487b58df6ff42b0f75e9847b45d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:55:db:ab:ad:b4:8f:c6:c5:91:8b:c1:1c:c7:
ec:b9:7c:de:f2:70:18:42:50:33:55:fb:31:bb:3d:
f5:d8:04:8d:31:19:79:4c:40:ec:19:bb:fb:f6:5c:
e5:ef:4b:82:3a:ba:3a:c4:5d:54:59:81:79:a5:2f:
d1:06:5e:8a:f6:b7:47:cb:03:de:1e:c7:5c:a8:e9:
c1:bd:31:fd:2e:22:e8:ff:70:81:1c:0e:29:92:ab:
de:1f:e9:d8:6e:d0:7e:6a:82:96:f5:52:15:f1:05:
aa:b3:15:7e:4b:14:82:97:25:bd:01:29:ea:34:5a:
bd:f6:2e:ed:64:10:27:5a:86:80:06:bb:bf:4b:c4:
2e:ad:7d:83:58:21:6d:10:10:97:0c:75:22:f2:6f:
2b:ae:d3:62:e2:af:e3:77:c4:a7:0f:fa:8b:4f:5d:
99:e9:65:35:c7:22:59:6d:c4:2f:1c:61:49:e3:41:
56:84:e8:f4:ae:ff:76:8f:39:78:dc:16:89:e7:b1:
42:2c:dd:4f:10:71:64:f9:57:ca:f9:c8:39:f9:0b:
72:93:02:56:8c:9c:f5:fa:cf:7b:2c:55:ec:a4:1b:
44:4f:73:35:da:6a:0e:6a:87:5f:c2:07:2d:37:7b:
19:75:fc:33:f6:2d:5f:c7:1b:bf:95:bc:57:b7:9f:
37:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:66:4E:E5:C4:B7:48:7B:58:DF:6F:F4:2B:0F:75:E9:84:7B:45:D9
X509v3 Authority Key Identifier:
keyid:DB:46:CC:F5:F8:A5:FE:44:F4:BF:D9:BA:66:BA:51:24:6D:A8:B1:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/yGZO5cS3SHtY32_0Kw916YR7Rdk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.200.80.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:8c:e5:05:76:15:a3:99:46:4e:04:e8:4b:8c:6c:36:69:6b:
ef:e1:ca:59:4e:48:4b:0e:15:c7:dc:44:85:1d:ec:69:45:bd:
d2:16:66:6c:70:04:68:52:ad:1e:36:28:8d:76:7d:76:0d:56:
34:99:b6:1d:c3:1a:52:eb:c3:b8:0b:91:fd:03:53:34:08:1a:
5b:15:9d:f4:56:91:e5:cb:67:f1:72:ee:6f:9e:1c:cd:dd:43:
c1:ff:5c:66:dc:22:0e:6e:33:16:9d:55:15:15:fe:fd:e1:26:
cd:1b:f6:3f:24:57:26:84:bb:c2:e7:fb:41:20:0a:47:28:30:
f1:46:18:ee:23:9a:2a:e0:8c:1f:2c:b5:9d:ca:7e:da:92:85:
93:b8:2a:39:90:e0:89:d7:2b:c0:bf:fa:c7:a5:3a:e9:cb:f3:
71:25:21:22:0b:b1:8f:45:f0:43:e5:16:e4:d3:e4:74:14:45:
1f:c2:b4:2a:ba:5f:b0:3a:20:4d:70:1d:85:a6:33:72:7b:06:
ce:42:da:17:a5:c8:2e:95:0b:ea:40:b2:fd:1c:e7:dd:0f:b1:
10:62:ec:ad:d9:a1:c3:5f:05:fc:73:a1:73:f1:7a:6c:85:52:
43:59:2b:c7:97:db:9a:0f:d8:e8:75:f7:d8:93:cf:47:27:7b:
9e:f5:d8:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:58 2023 by rpki-client on console-fra.rpki-client.org