Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/57688e-a964-4933-8631-850f34906229/1/1cIcOMgY5ni9gtiFiFXb67PQ0zs.roa
File: 1cIcOMgY5ni9gtiFiFXb67PQ0zs.roa (raw, json)
Hash identifier: LyPw7A6m2jJ++ZiePa7N0va7gMr32LooAH5TOj8RM5M=
Subject key identifier: D5:C2:1C:38:C8:18:E6:78:BD:82:D8:85:88:55:DB:EB:B3:D0:D3:3B
Certificate issuer: /CN=311d62b7fd9fcfc87dfea987515767c838e21bb9
Certificate serial: 15B87356
Authority key identifier: 31:1D:62:B7:FD:9F:CF:C8:7D:FE:A9:87:51:57:67:C8:38:E2:1B:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MR1it_2fz8h9_qmHUVdnyDjiG7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/57688e-a964-4933-8631-850f34906229/1/1cIcOMgY5ni9gtiFiFXb67PQ0zs.roa
Signing time: Sat 01 Jan 2022 11:56:29 +0000
ROA not before: Sat 01 Jan 2022 11:56:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57734
IP address blocks: 37.49.234.0/23 maxlen: 24
37.49.234.0/24 maxlen: 24
45.146.32.0/22 maxlen: 24
2a00:a4c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 364409686 (0x15b87356)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=311d62b7fd9fcfc87dfea987515767c838e21bb9
Validity
Not Before: Jan 1 11:56:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5c21c38c818e678bd82d8858855dbebb3d0d33b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e7:ae:fe:0f:7e:1b:bc:74:a9:c4:f6:67:d0:
c4:96:e7:72:19:c2:7c:e0:a1:8f:2f:86:9a:b2:09:
1b:58:1d:aa:bf:a0:b4:bd:cd:bb:57:40:63:45:4d:
34:2b:6d:ed:0d:b9:ba:6e:a4:a0:7e:83:94:d2:42:
70:53:4f:c7:74:68:e0:8a:66:6b:53:24:70:d1:7d:
a3:06:77:9a:fb:6c:df:7f:f9:3c:74:1a:a5:c1:47:
94:e5:86:62:77:1f:28:17:bc:9f:04:97:1d:e7:63:
92:6a:75:8d:6d:21:9e:af:89:d7:0f:37:79:e1:e6:
11:74:56:da:55:97:2e:ce:28:e0:3d:91:1e:4b:96:
95:0b:06:98:79:40:8d:6f:48:3a:75:88:e9:7e:f8:
b2:9b:5b:bc:e5:a5:f3:8b:f8:79:76:d7:cd:08:92:
d1:53:5e:f2:8a:cd:d4:65:f3:ed:8d:1e:ce:3c:f4:
e6:c6:4d:10:ef:50:7f:2f:7f:86:7a:fe:1e:a6:60:
86:2c:9b:0b:8b:76:d1:d2:f4:60:97:fb:67:6c:e3:
6d:e9:93:d0:1f:eb:bb:51:e1:73:7e:fc:1e:26:2c:
49:ed:f7:e0:49:17:45:9b:5f:da:48:5d:b9:d2:50:
1f:4f:74:03:87:55:0d:2d:b8:69:6a:97:31:3e:31:
6a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:C2:1C:38:C8:18:E6:78:BD:82:D8:85:88:55:DB:EB:B3:D0:D3:3B
X509v3 Authority Key Identifier:
keyid:31:1D:62:B7:FD:9F:CF:C8:7D:FE:A9:87:51:57:67:C8:38:E2:1B:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MR1it_2fz8h9_qmHUVdnyDjiG7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/57688e-a964-4933-8631-850f34906229/1/1cIcOMgY5ni9gtiFiFXb67PQ0zs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/57688e-a964-4933-8631-850f34906229/1/MR1it_2fz8h9_qmHUVdnyDjiG7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.49.234.0/23
45.146.32.0/22
IPv6:
2a00:a4c0::/32
Signature Algorithm: sha256WithRSAEncryption
76:88:47:5d:b0:15:a1:c7:93:5c:55:63:04:cf:ac:88:8b:c1:
d9:47:6c:5c:6d:8a:a3:85:56:23:92:ff:5c:9f:e5:86:f7:b9:
b2:67:28:a8:e5:94:a6:75:1c:84:aa:3c:78:2d:7c:5a:55:56:
80:dc:5f:b2:7a:56:79:a9:b2:d1:8b:46:38:f6:6c:18:dc:b5:
8b:c2:23:45:75:ce:3b:f1:12:df:a5:fe:8f:cb:85:92:03:a5:
1e:8b:d0:43:55:ba:ef:c8:fa:9a:b6:f1:ba:64:37:b5:31:6e:
78:5c:ba:5d:58:7d:95:c2:5e:f5:53:0c:f9:f5:06:ea:c1:4c:
eb:d0:02:e2:b6:bf:3b:5c:df:65:03:bc:0f:cd:11:2c:c4:7b:
25:ea:e1:ac:26:12:74:9c:14:58:b0:20:f0:dd:2e:99:24:ee:
e9:9b:4c:d0:e3:c4:10:7e:d3:3d:03:d5:13:01:97:c9:02:c2:
14:ec:3b:62:21:7a:28:7c:7d:db:94:ae:27:91:20:77:0c:9d:
b4:d0:07:c8:0a:3b:79:23:94:62:9f:9e:cf:fa:5d:d4:71:57:
c1:bc:2e:96:8e:75:52:a8:19:29:2e:db:e3:b1:93:24:72:87:
f3:88:59:18:72:dc:ae:40:94:6c:c1:13:b6:8d:ea:64:3c:82:
39:e0:ac:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:37 2024 by rpki-client on console-fra.rpki-client.org