Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/5c2c95-81d2-419f-a0d8-78552e8490d7/1/NV5yBfxpLlLwYZoGlUDwL91NOr8.roa
File: NV5yBfxpLlLwYZoGlUDwL91NOr8.roa (raw, json)
Hash identifier: dlABRmKJGtzHq0WWnVkDFS2bY8kSgLqu4jnDSpzB7IU=
Subject key identifier: 35:5E:72:05:FC:69:2E:52:F0:61:9A:06:95:40:F0:2F:DD:4D:3A:BF
Certificate issuer: /CN=02f3c0a781ca9c100499ea1445bc9dda09650a9c
Certificate serial: E83B58
Authority key identifier: 02:F3:C0:A7:81:CA:9C:10:04:99:EA:14:45:BC:9D:DA:09:65:0A:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AvPAp4HKnBAEmeoURbyd2gllCpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/5c2c95-81d2-419f-a0d8-78552e8490d7/1/NV5yBfxpLlLwYZoGlUDwL91NOr8.roa
Signing time: Sat 01 Jan 2022 11:03:29 +0000
ROA not before: Sat 01 Jan 2022 11:03:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15626
IP address blocks: 37.72.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15219544 (0xe83b58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02f3c0a781ca9c100499ea1445bc9dda09650a9c
Validity
Not Before: Jan 1 11:03:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=355e7205fc692e52f0619a069540f02fdd4d3abf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ac:90:03:b1:53:c5:c1:da:35:53:04:eb:3e:
d7:62:c1:d8:54:5e:26:32:03:3d:4b:c3:a1:2b:8a:
1f:b7:c7:bc:5f:61:70:e6:c2:59:86:10:9c:88:76:
72:d6:59:7b:3c:7a:77:9a:d2:c8:0e:0b:d8:8f:10:
8a:07:4d:61:33:ba:c4:18:01:fa:b3:d6:2b:b9:81:
fe:f6:c4:96:ee:49:d9:b0:27:e4:a7:eb:00:3c:aa:
af:98:93:c0:2b:54:59:3c:86:06:63:1f:df:ad:ec:
fb:da:25:ef:c4:41:10:ee:a9:65:ed:af:73:bc:f5:
55:a5:65:ec:70:ff:0d:26:ce:32:6c:72:6b:3d:97:
81:b8:7a:aa:e7:4f:b7:8e:c4:95:69:86:39:60:72:
0a:ee:96:5e:74:12:b9:1a:5a:63:72:e2:e5:35:e4:
5f:94:0e:a2:a6:a3:7d:a1:32:9e:fd:bd:62:29:c0:
12:7a:27:c3:8e:0a:db:68:59:a9:33:c4:2e:6c:55:
9a:43:4b:e2:9e:11:83:33:28:15:fe:04:8f:80:c0:
97:7a:88:1b:a7:55:a6:14:2f:26:df:d1:09:5e:a3:
8d:cb:c3:2d:9c:b8:61:c7:b6:cb:0e:8a:79:b6:16:
99:84:22:bb:09:4b:63:70:11:91:cd:43:2f:f5:04:
01:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:5E:72:05:FC:69:2E:52:F0:61:9A:06:95:40:F0:2F:DD:4D:3A:BF
X509v3 Authority Key Identifier:
keyid:02:F3:C0:A7:81:CA:9C:10:04:99:EA:14:45:BC:9D:DA:09:65:0A:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AvPAp4HKnBAEmeoURbyd2gllCpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/5c2c95-81d2-419f-a0d8-78552e8490d7/1/NV5yBfxpLlLwYZoGlUDwL91NOr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/5c2c95-81d2-419f-a0d8-78552e8490d7/1/AvPAp4HKnBAEmeoURbyd2gllCpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.72.128.0/24
Signature Algorithm: sha256WithRSAEncryption
61:32:61:f3:19:45:8a:70:aa:35:05:4a:f8:76:22:9b:c6:17:
2c:11:96:6b:dd:6f:01:0d:0b:d3:4e:ce:bc:b2:79:4f:b5:63:
2d:c8:23:a8:ca:c4:fe:03:2b:16:77:73:a6:02:d2:96:21:47:
4c:66:a3:14:77:5b:09:14:8e:9b:63:d4:d3:c5:8d:a4:91:dc:
85:66:e3:75:5c:e5:fb:d7:40:fb:af:22:4f:b0:2e:9c:3c:93:
1f:cb:b0:10:9e:ae:f4:15:b6:b2:67:2c:cb:f7:85:a4:c4:ba:
39:73:90:fa:ad:e6:ea:f0:f6:fd:69:eb:7b:3c:e5:07:e5:b0:
1a:f7:e5:35:f9:5a:98:f5:c4:5a:5f:74:e7:5f:01:9a:39:20:
93:df:f1:9a:1c:fb:39:8c:5b:c4:b3:af:8a:31:66:a0:96:f1:
c1:ce:c9:18:11:45:7f:f8:d9:d6:ce:b2:f9:ad:54:6f:22:5d:
1b:9a:52:cd:48:4e:49:4d:cf:80:5b:9f:a6:a4:79:28:79:f4:
5b:c4:ab:b6:37:76:9c:4b:87:56:ca:19:4d:c1:16:12:00:be:
2e:4d:a7:a3:4a:bb:49:11:36:8b:30:92:e1:bf:80:ea:76:2b:
bd:a3:3b:c9:03:c6:d2:b1:d5:65:5c:0c:57:ad:b8:d8:e6:51:
8e:e1:43:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:16 2023 by rpki-client on console-fra.rpki-client.org