Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/964411-d327-4136-ab43-306905fafe0e/1/N_ckva5uPPMfQmTiK58y_eY9M0A.roa
File: N_ckva5uPPMfQmTiK58y_eY9M0A.roa (raw, json)
Hash identifier: z3OIW2sI7PN+hZd5RyWjXfMxh+HD6/s31C0q4jbMqKM=
Subject key identifier: 37:F7:24:BD:AE:6E:3C:F3:1F:42:64:E2:2B:9F:32:FD:E6:3D:33:40
Certificate issuer: /CN=efc34233ed96424a516e2bf9d39171b62e44b441
Certificate serial: 0DBACD20
Authority key identifier: EF:C3:42:33:ED:96:42:4A:51:6E:2B:F9:D3:91:71:B6:2E:44:B4:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/78NCM-2WQkpRbiv505Fxti5EtEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/964411-d327-4136-ab43-306905fafe0e/1/N_ckva5uPPMfQmTiK58y_eY9M0A.roa
Signing time: Sat 01 Jan 2022 10:55:29 +0000
ROA not before: Sat 01 Jan 2022 10:55:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57928
IP address blocks: 37.157.8.0/21 maxlen: 21
193.41.95.0/24 maxlen: 24
2a00:bf40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 230346016 (0xdbacd20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=efc34233ed96424a516e2bf9d39171b62e44b441
Validity
Not Before: Jan 1 10:55:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=37f724bdae6e3cf31f4264e22b9f32fde63d3340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:79:c8:99:9d:fd:09:c4:2c:e0:ef:ef:b1:c5:
76:4d:57:f0:50:d3:7f:59:fd:52:d9:85:23:60:03:
db:08:08:51:31:84:ad:89:34:63:27:ee:16:86:fa:
46:71:6b:5c:ae:ca:28:2c:3a:5e:86:09:16:9d:91:
e2:8c:28:5f:1f:02:9f:4e:7f:f7:99:2c:80:31:46:
02:5d:05:b7:34:2e:1f:2a:ef:35:76:59:9a:1b:9d:
b5:dd:96:98:73:18:30:b3:bf:65:46:95:03:2e:5b:
07:3b:97:3a:6f:d8:94:3b:74:90:c7:ec:71:86:83:
9d:d8:ab:ee:66:bf:07:a2:7a:70:c4:05:5a:5c:ad:
98:65:8b:ab:d4:8e:f6:fd:22:64:b1:2d:ec:0a:a8:
0c:96:36:55:dc:1c:fa:ca:04:1a:2b:ff:5f:63:3d:
ab:e0:f8:b6:48:d9:d1:23:57:b1:c6:57:4a:53:8b:
95:39:0c:89:95:0c:7d:0c:4d:6f:66:68:ae:c6:02:
a9:27:30:5c:10:17:f4:41:5c:98:08:6b:17:16:41:
12:05:54:af:f7:19:6b:ce:c8:cd:34:bb:a9:97:66:
fc:ed:1a:12:ef:78:90:93:25:c7:56:c5:e2:ee:fb:
93:32:5b:36:5e:84:78:13:84:fc:40:b1:93:d2:96:
3c:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:F7:24:BD:AE:6E:3C:F3:1F:42:64:E2:2B:9F:32:FD:E6:3D:33:40
X509v3 Authority Key Identifier:
keyid:EF:C3:42:33:ED:96:42:4A:51:6E:2B:F9:D3:91:71:B6:2E:44:B4:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/78NCM-2WQkpRbiv505Fxti5EtEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/964411-d327-4136-ab43-306905fafe0e/1/N_ckva5uPPMfQmTiK58y_eY9M0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/964411-d327-4136-ab43-306905fafe0e/1/78NCM-2WQkpRbiv505Fxti5EtEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.157.8.0/21
193.41.95.0/24
IPv6:
2a00:bf40::/32
Signature Algorithm: sha256WithRSAEncryption
6b:d8:c5:bf:f8:39:d0:38:03:7f:0e:6b:a5:6d:bc:98:84:0e:
2a:c3:c6:3b:2a:e6:ac:30:49:2b:45:fd:e6:2b:77:99:58:eb:
19:d9:55:3b:44:48:22:a1:8b:0c:c9:d8:24:47:52:c0:08:87:
0f:68:30:29:38:70:c4:19:fd:f4:90:87:26:65:23:29:e3:03:
9b:5c:16:38:f8:82:8a:4f:11:b8:e2:07:da:f1:97:a6:36:d4:
e9:bd:0c:8e:8e:c6:2e:75:94:38:c2:60:02:f9:0e:e5:b1:2f:
b9:46:4f:3d:d7:89:73:b4:93:a1:99:65:98:a7:aa:25:b8:94:
0b:7f:ca:f5:db:9e:c5:23:a8:01:2f:fd:cd:e5:b6:bc:5f:21:
cd:ab:2d:19:df:01:bc:55:8a:77:b9:24:be:dc:8a:bc:c7:a2:
44:cb:9d:64:d5:34:1f:1f:b2:5d:2b:fd:66:05:11:48:2a:e0:
79:ae:3c:05:6a:a2:5d:02:24:83:fe:fd:80:c3:69:ba:f8:e2:
34:23:8b:07:8e:67:5d:70:58:ec:9f:fa:26:3c:1d:b0:c5:74:
8f:68:dc:f2:56:c5:02:87:36:2f:a9:7f:ba:ae:a4:12:37:9d:
af:f4:42:de:1f:f7:3f:65:96:0a:09:ee:b8:15:74:68:40:cd:
f4:de:c1:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:59 2024 by rpki-client on console-ams.rpki-client.org