Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/8ixO4efVYBQbniwIZ21phNSNnoI.roa
File: 8ixO4efVYBQbniwIZ21phNSNnoI.roa (raw, json)
Hash identifier: ZeCXQdrT50BOOJQUjdFYn/YyNwzjZqAAlSr75xuQpTk=
Subject key identifier: F2:2C:4E:E1:E7:D5:60:14:1B:9E:2C:08:67:6D:69:84:D4:8D:9E:82
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 1F920AC3
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/8ixO4efVYBQbniwIZ21phNSNnoI.roa
Signing time: Sat 01 Jan 2022 14:06:38 +0000
ROA not before: Sat 01 Jan 2022 14:06:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47637
IP address blocks: 176.100.33.0/24 maxlen: 24
37.114.37.0/24 maxlen: 24
2a00:ccc4::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 529664707 (0x1f920ac3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: Jan 1 14:06:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f22c4ee1e7d560141b9e2c08676d6984d48d9e82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:42:29:83:71:2a:98:62:ff:83:85:f9:2c:92:
26:2b:63:7c:8a:65:02:39:fc:bf:cb:3d:63:17:d4:
b9:21:68:a4:16:ff:51:c7:49:a0:cc:b1:a2:8c:fa:
ec:6d:23:59:03:68:24:05:20:85:c7:d0:d6:cc:2e:
fc:c6:1b:59:72:de:cb:9e:29:01:09:ef:57:1e:04:
0b:33:50:ea:f8:d0:cb:28:89:1e:b6:64:e0:99:82:
0d:d2:27:25:43:31:45:e3:7e:9e:c8:c1:2e:1b:c3:
a9:3f:d6:f3:70:bf:56:16:16:8b:e9:f3:dc:26:ab:
65:c4:a9:a8:ec:cf:02:7f:09:3c:a5:46:16:41:4a:
8f:dd:a0:f3:20:b7:ef:7a:33:59:e7:1a:b9:a3:83:
0d:3a:98:ff:9d:16:cf:ec:16:d9:16:93:ac:07:97:
ad:d0:51:cc:6d:cf:40:7f:f0:45:17:5e:90:ed:36:
65:45:29:f3:de:ef:70:1c:14:81:d6:be:ee:a1:e5:
16:f2:98:97:48:2c:6a:0b:42:bf:f5:d9:34:12:91:
fa:e0:ea:26:2d:05:b2:8b:bb:03:b3:b1:32:fc:8c:
58:fa:b9:9a:c8:66:50:e5:dd:4b:df:ef:0f:0b:83:
76:9c:5a:73:81:e9:2d:9f:95:c7:0d:d2:fa:e5:be:
4f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:2C:4E:E1:E7:D5:60:14:1B:9E:2C:08:67:6D:69:84:D4:8D:9E:82
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/8ixO4efVYBQbniwIZ21phNSNnoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.37.0/24
176.100.33.0/24
IPv6:
2a00:ccc4::/32
Signature Algorithm: sha256WithRSAEncryption
83:6b:5c:b8:c5:7c:3a:04:af:d8:00:ae:d2:20:a9:12:3c:58:
22:c4:31:ee:d4:56:36:84:3f:5b:8f:73:8c:9e:06:e4:4e:1e:
ac:ca:da:5c:2f:3c:7d:56:ba:16:4f:05:4c:b4:f5:5c:82:af:
3d:e0:db:22:45:92:59:13:ec:cf:20:a8:61:8f:07:3c:df:63:
71:0e:20:51:3e:5e:c6:68:74:14:15:6e:d6:5d:27:b2:c7:c2:
55:89:9b:55:87:69:9d:75:75:a9:15:af:b1:e2:08:9e:f5:e2:
c7:2f:75:a8:ca:01:7e:87:70:1f:74:67:7f:fa:f8:4a:10:d7:
ca:ab:af:58:e3:e6:52:ec:bf:e8:43:85:ef:d8:fe:9e:c5:20:
6e:65:21:2a:50:b7:3f:b8:6d:f7:ca:ea:91:41:e7:0a:13:b8:
72:39:a2:74:77:9d:9a:48:73:b9:97:02:a9:11:f1:27:87:9c:
62:9d:1c:0a:21:ad:b1:63:d0:a8:53:bc:a7:46:4c:7a:58:e6:
a6:ed:3d:2d:44:18:1c:18:30:5c:75:fb:e7:7a:da:ef:ee:64:
56:8f:05:17:b3:a6:25:f9:38:51:12:94:b5:d1:c7:b3:18:4d:
5f:dc:78:0c:b4:25:67:30:49:08:cd:af:07:f6:89:9e:d4:fe:
41:47:85:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:17 2024 by rpki-client on console-ams.rpki-client.org