Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/bCwb0RhNJeffpH3AJK4PNqpDVl4.roa
File: bCwb0RhNJeffpH3AJK4PNqpDVl4.roa (raw, json)
Hash identifier: Bo3SfuhI6OygPlGFfQeygKR5g4kixiN9wHZ6DBgUnqQ=
Subject key identifier: 6C:2C:1B:D1:18:4D:25:E7:DF:A4:7D:C0:24:AE:0F:36:AA:43:56:5E
Certificate issuer: /CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Certificate serial: 01854334A66836F8C2F8C3E5513CBF37CB84
Authority key identifier: 6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/bCwb0RhNJeffpH3AJK4PNqpDVl4.roa
Signing time: Sat 24 Dec 2022 08:16:41 +0000
ROA not before: Sat 24 Dec 2022 08:16:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39521
IP address blocks: 37.128.252.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:43:34:a6:68:36:f8:c2:f8:c3:e5:51:3c:bf:37:cb:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Validity
Not Before: Dec 24 08:16:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c2c1bd1184d25e7dfa47dc024ae0f36aa43565e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:d3:13:2b:88:a4:38:cc:73:de:fa:ba:71:bb:
3f:51:42:3a:f5:43:68:3d:51:05:7a:07:8c:3e:51:
28:56:7d:5b:36:64:b8:68:75:cc:40:08:ea:ca:14:
5a:73:23:ac:ff:f2:f9:84:19:42:73:d2:9a:13:73:
2d:69:aa:fb:04:32:55:1f:5f:b4:49:b7:c1:6e:81:
1d:34:6d:84:6f:c7:51:55:19:29:d2:52:5f:11:ed:
d9:d3:14:26:6c:ea:5e:f0:a4:74:cb:4a:5d:ab:98:
67:9d:3a:85:78:5c:dd:88:f5:48:28:41:d2:22:42:
f5:ac:e3:9f:5d:ff:98:e5:76:ff:ec:f7:eb:76:d3:
45:33:52:fe:e4:40:6e:da:cc:72:86:3e:23:08:75:
44:cb:2a:7d:b7:7f:80:09:75:c7:63:79:e6:ec:36:
05:6b:aa:94:fd:a1:c6:aa:ae:f1:ae:42:37:87:c3:
63:ef:b0:32:9d:fc:0e:2c:66:bc:c3:d5:7a:c1:24:
10:6b:f9:99:a8:30:6b:c4:e7:be:d5:c7:5c:65:a5:
da:3f:65:4d:50:63:8e:16:1e:9c:02:90:a3:69:d5:
16:d3:dd:a6:99:74:c7:ca:2a:9b:7c:97:72:9d:51:
c0:47:2e:b5:ab:e6:fd:2c:01:c3:20:43:e2:2d:2f:
b3:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:2C:1B:D1:18:4D:25:E7:DF:A4:7D:C0:24:AE:0F:36:AA:43:56:5E
X509v3 Authority Key Identifier:
keyid:6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/bCwb0RhNJeffpH3AJK4PNqpDVl4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.128.252.0/22
Signature Algorithm: sha256WithRSAEncryption
54:80:99:ed:d2:0d:48:38:96:59:dc:de:25:5a:f0:37:d6:5f:
73:7c:5d:f7:e9:e8:4b:08:a9:f5:b8:c1:66:63:6c:50:94:d4:
0c:e2:d0:23:bb:b4:3f:f7:50:16:80:2b:0b:8f:8c:87:bd:a2:
4a:6f:ee:41:8d:e0:24:8e:f0:35:5f:11:6d:e3:37:d3:b9:93:
76:00:3b:1f:3a:ce:c0:a1:52:f7:5a:b4:64:b4:75:2e:56:3a:
c9:70:14:ac:59:91:24:30:ee:fa:9b:26:78:2b:8d:56:41:25:
de:ee:5f:2d:d2:87:a1:46:d2:9e:bd:e6:ec:bb:71:47:8f:69:
73:2f:f7:3e:d7:cc:2e:2e:19:e9:e3:db:40:94:29:53:96:d2:
aa:ae:20:43:6d:99:24:7d:d5:8c:3d:86:9e:51:d1:8f:86:a2:
55:e1:7f:6d:9a:97:b1:00:5c:cb:85:7c:69:66:83:a9:5b:c6:
9f:ab:9a:eb:26:f7:c0:b1:fb:ce:93:6f:d8:75:ac:a9:6e:01:
a3:43:29:45:8a:9f:40:46:b9:39:fb:43:da:9b:a6:92:ec:b7:
02:8d:2d:09:80:93:9f:e7:13:9a:1b:f4:9c:22:6a:c4:23:0a:
84:58:c5:55:a7:a4:92:2e:14:34:84:d7:b6:fb:6d:3b:31:da:
3f:f6:3d:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:51 2023 by rpki-client on console-ams.rpki-client.org