Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/5c2c95-81d2-419f-a0d8-78552e8490d7/1/OjUc1HF_A5D0GOH6ygsvliVpeWM.roa
File: OjUc1HF_A5D0GOH6ygsvliVpeWM.roa (raw, json)
Hash identifier: nQ0wefkLNj2vk59wSLzui9+I78enh1cYk0q0wMS9WgA=
Subject key identifier: 3A:35:1C:D4:71:7F:03:90:F4:18:E1:FA:CA:0B:2F:96:25:69:79:63
Certificate issuer: /CN=02f3c0a781ca9c100499ea1445bc9dda09650a9c
Certificate serial: 02086465
Authority key identifier: 02:F3:C0:A7:81:CA:9C:10:04:99:EA:14:45:BC:9D:DA:09:65:0A:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AvPAp4HKnBAEmeoURbyd2gllCpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/5c2c95-81d2-419f-a0d8-78552e8490d7/1/OjUc1HF_A5D0GOH6ygsvliVpeWM.roa
Signing time: Thu 05 May 2022 13:27:41 +0000
ROA not before: Thu 05 May 2022 13:27:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 37.72.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34104421 (0x2086465)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02f3c0a781ca9c100499ea1445bc9dda09650a9c
Validity
Not Before: May 5 13:27:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a351cd4717f0390f418e1faca0b2f9625697963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:70:bc:c3:04:13:ee:2f:d3:2b:4d:9a:35:4b:
98:ce:e8:31:18:99:05:10:33:c5:04:76:b3:e4:dd:
f3:f4:e3:6a:4c:6b:e6:3e:d0:d2:32:97:3a:e7:88:
6b:c5:e1:97:b7:b1:54:19:7c:90:8b:ca:54:80:18:
9d:f2:cf:9c:f1:0f:c8:b8:7e:83:86:ac:42:09:f1:
52:54:8e:87:ca:ff:d9:e0:01:38:be:76:ae:45:6d:
36:f0:94:72:2f:e9:21:2a:4e:3b:b8:fb:4e:27:e3:
ef:f4:7a:34:2b:58:5e:a4:a2:5a:db:59:cf:ce:f8:
cd:c5:58:77:01:4b:e2:b2:55:86:c1:8a:e0:9f:87:
34:b6:25:e9:3b:9e:8c:4f:98:b5:ab:91:b4:ed:c9:
2d:56:b8:dc:f9:b5:31:c5:68:04:2b:c2:8e:c9:f0:
a3:f4:82:ad:e9:33:cf:40:10:c7:22:97:e0:1a:80:
c8:3f:f8:63:43:ab:18:87:4d:cc:86:b2:05:2d:fd:
19:8c:a2:6a:39:2c:02:3d:47:aa:d9:b3:f5:8c:67:
b5:2d:42:9b:f2:4c:78:41:03:cd:6c:77:3c:6f:74:
1d:f9:03:e6:3c:23:59:b4:5c:98:50:21:aa:4f:33:
bd:40:5c:a8:15:5d:1b:10:f6:35:81:e4:9f:27:86:
86:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:35:1C:D4:71:7F:03:90:F4:18:E1:FA:CA:0B:2F:96:25:69:79:63
X509v3 Authority Key Identifier:
keyid:02:F3:C0:A7:81:CA:9C:10:04:99:EA:14:45:BC:9D:DA:09:65:0A:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AvPAp4HKnBAEmeoURbyd2gllCpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/5c2c95-81d2-419f-a0d8-78552e8490d7/1/OjUc1HF_A5D0GOH6ygsvliVpeWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/5c2c95-81d2-419f-a0d8-78552e8490d7/1/AvPAp4HKnBAEmeoURbyd2gllCpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.72.128.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:8e:b8:52:f5:f2:06:00:bb:a4:47:f3:a3:4e:87:4c:41:f8:
07:9f:ef:54:5e:d7:07:f4:20:76:b3:e5:d8:33:1d:0c:83:24:
70:8a:11:2f:b3:70:d8:50:5d:c4:11:7a:ab:76:22:61:9c:8b:
25:a3:a1:73:37:28:5a:74:c4:53:f1:3b:5a:9a:74:b8:6e:42:
73:d4:19:29:25:2f:32:d3:26:35:80:a1:86:fe:5d:ea:b5:f5:
7d:7b:8c:3a:1b:b9:e8:88:8b:bc:55:4f:3d:26:71:7c:5b:68:
19:79:11:50:23:50:a1:bb:c0:ca:87:6c:75:01:dd:7e:d3:b9:
b5:4a:ba:7b:cb:14:6a:52:5c:4b:05:95:67:20:8f:ff:d6:f6:
89:ad:0e:3b:d1:be:ea:71:f2:84:d3:9f:b1:ee:60:d5:5d:ed:
a6:18:09:0c:00:f7:2a:1a:17:15:4c:fb:71:0b:2f:b8:af:61:
5f:be:aa:ca:9d:ec:3f:68:c9:9d:82:5b:b9:f0:a6:24:6d:97:
cf:4c:ec:f1:f7:28:74:b3:40:c3:5f:fd:6c:19:bd:59:00:c7:
2b:13:cb:24:70:fd:f0:dc:3d:e2:85:e8:f2:9c:8d:da:00:f3:
64:43:2c:5e:b3:9d:88:c2:a2:11:47:a1:42:4b:dd:9a:7e:cd:
98:5e:85:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:58 2023 by rpki-client on console-ams.rpki-client.org