Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/T2A20sGEnZvxHVl14F7rY3DghWg.roa
File: T2A20sGEnZvxHVl14F7rY3DghWg.roa (raw, json)
Hash identifier: G+Q1QimzRPOpgD0JsoFar1l+Xxyl/0SHr1MpWnH1Qlk=
Subject key identifier: 4F:60:36:D2:C1:84:9D:9B:F1:1D:59:75:E0:5E:EB:63:70:E0:85:68
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 1FEA8561
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/T2A20sGEnZvxHVl14F7rY3DghWg.roa
Signing time: Fri 04 Feb 2022 09:44:24 +0000
ROA not before: Fri 04 Feb 2022 09:44:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48314
IP address blocks: 37.114.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 535463265 (0x1fea8561)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: Feb 4 09:44:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f6036d2c1849d9bf11d5975e05eeb6370e08568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:03:cb:55:bf:d4:46:cf:b6:dc:02:f5:26:b6:
ec:17:ca:59:3e:85:6f:10:05:c2:96:0e:63:c9:3e:
e2:c1:16:fe:18:84:b8:5b:f8:bd:00:aa:c1:e6:3f:
22:be:71:d4:97:07:42:a9:7d:ec:4f:dd:06:81:18:
97:34:22:76:84:5d:8c:d4:ca:63:26:ad:96:03:48:
07:d2:75:66:4e:7c:26:fd:d2:4b:60:ed:9d:cc:0a:
8c:c1:97:f8:ac:6d:08:c7:ef:46:a0:92:e1:90:7e:
6a:71:99:a5:08:7f:22:7f:14:04:0d:3d:d0:20:3f:
b3:9b:3c:61:fb:05:c5:1b:b0:f0:29:e7:e3:63:5a:
69:5b:3b:f5:9a:4f:a7:30:5b:76:cd:76:d4:9d:67:
b6:e5:98:02:d7:ab:23:7b:05:b6:09:cb:21:37:07:
47:cf:0b:0a:bf:d7:09:1e:3f:e9:ce:30:86:82:57:
30:74:33:7f:3e:02:0d:6d:f1:92:53:4e:af:fd:da:
74:d3:e6:ee:76:a3:e5:d4:fc:14:3b:ba:97:ca:00:
05:6b:c7:4c:10:2e:3a:6d:8a:ac:b9:ea:5c:cb:cd:
80:f6:8f:bb:07:92:fa:b8:5a:8b:5a:48:02:eb:61:
33:f5:ca:96:f4:74:71:5b:0c:bb:fc:a7:8c:0c:00:
45:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:60:36:D2:C1:84:9D:9B:F1:1D:59:75:E0:5E:EB:63:70:E0:85:68
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/T2A20sGEnZvxHVl14F7rY3DghWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.61.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:51:92:54:81:7f:f6:cc:72:19:e5:74:44:87:c8:cc:04:e3:
b4:77:13:b2:f3:6a:63:7b:e5:2b:a3:fc:d3:a3:57:3d:28:41:
ee:0f:23:8d:1a:5f:99:16:96:57:1f:eb:f6:80:7b:08:4a:fd:
c1:53:b6:60:18:1e:7d:6e:55:4a:9b:c1:77:3a:2e:2c:ce:52:
2b:1d:02:9f:8b:77:41:26:09:4c:3e:75:23:22:1a:05:be:16:
12:8e:c6:77:af:35:6c:12:d9:9d:ec:25:ea:ec:2d:7a:67:d4:
99:ee:41:af:92:be:18:d9:87:52:a8:a5:65:11:5b:ba:90:04:
ac:ea:27:03:71:3b:4b:aa:3f:43:e7:4a:59:3b:32:3a:27:75:
b1:15:4c:59:dd:2e:9b:e9:7a:e0:32:82:d8:9f:89:80:ed:e2:
35:38:ca:10:49:55:01:aa:4e:ce:4e:b4:98:d9:d2:10:28:ba:
6a:0a:c6:a5:c1:41:1f:88:30:6d:ea:ba:7b:8a:e4:7c:26:18:
d3:13:65:ed:b3:e4:4e:b1:e3:2a:1f:33:2b:6f:21:1b:82:45:
d6:4a:7f:f9:f1:a4:4c:bf:0d:8f:a0:a7:34:5a:94:58:2d:3d:
32:ca:c0:ed:65:29:42:c9:7f:e6:04:90:0a:20:38:a9:c2:bd:
29:b5:80:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:57 2024 by rpki-client on console-fra.rpki-client.org