Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/gHs9dvkNYHS_2ZM52m3017_zf48.roa
File: gHs9dvkNYHS_2ZM52m3017_zf48.roa (raw, json)
Hash identifier: nCJo8uAuUa5mdqPs8iTg2VMnuQuXWkm2iWc7f1JfvqM=
Subject key identifier: 80:7B:3D:76:F9:0D:60:74:BF:D9:93:39:DA:6D:F4:D7:BF:F3:7F:8F
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 20A4736E
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/gHs9dvkNYHS_2ZM52m3017_zf48.roa
Signing time: Fri 22 Apr 2022 08:48:39 +0000
ROA not before: Fri 22 Apr 2022 08:48:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213250
IP address blocks: 37.114.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 547648366 (0x20a4736e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: Apr 22 08:48:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=807b3d76f90d6074bfd99339da6df4d7bff37f8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:59:c3:da:7b:fc:4a:7b:04:5c:b0:54:55:01:
c1:e3:68:49:51:b7:91:42:1a:af:66:38:25:43:b2:
25:46:5f:15:a8:2f:07:c7:6f:3f:6e:06:8d:15:25:
26:c8:47:45:f1:a6:ac:d9:90:5a:da:22:e1:80:83:
0c:2a:7a:c9:18:ad:77:e6:b9:3a:17:96:2f:6b:d5:
6d:51:d6:15:ef:71:4d:6b:f7:87:73:a0:34:e7:a4:
00:fa:49:8c:8b:4e:33:fa:e8:c9:08:72:e8:15:e5:
3b:69:09:eb:a9:c3:15:3b:df:8d:1a:f4:6a:96:40:
b7:f1:f7:1d:fd:55:c5:f2:25:ba:bd:54:92:50:45:
aa:e0:8d:12:1d:b8:2f:73:e7:68:90:f6:35:d6:83:
27:47:92:e2:fe:34:b0:9e:35:82:16:2e:48:d7:19:
02:34:17:0e:8f:76:2c:6d:db:45:28:67:5d:47:56:
c9:d1:84:69:99:68:55:b9:18:7d:d0:4e:e1:49:6c:
a1:eb:77:fa:17:91:2e:9a:4c:01:ee:27:aa:c1:e5:
2e:b3:66:40:73:2a:08:78:10:66:67:37:bf:f8:6a:
45:18:93:43:90:17:ae:02:71:80:79:01:76:97:65:
e4:d2:59:c2:29:4e:4c:6f:fa:ab:bc:3a:7a:0a:b9:
82:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:7B:3D:76:F9:0D:60:74:BF:D9:93:39:DA:6D:F4:D7:BF:F3:7F:8F
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/gHs9dvkNYHS_2ZM52m3017_zf48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.37.0/24
Signature Algorithm: sha256WithRSAEncryption
07:c4:c7:58:c5:30:89:a9:0e:f9:18:dc:58:80:97:93:0d:e4:
8a:49:92:25:7d:13:48:83:3b:d7:c6:5e:c4:39:2b:05:81:e5:
5f:bd:15:48:d2:49:9f:8f:91:a1:c7:38:a7:21:b4:70:e2:c3:
b6:53:e2:3c:83:c5:1a:2a:b0:41:b0:ff:08:fa:8b:df:69:0d:
a6:23:f8:d2:06:3c:21:47:5d:ee:d6:88:37:81:8c:d1:00:c4:
cb:2d:88:d4:cb:db:73:dc:62:77:9f:37:2d:12:78:84:fe:14:
95:2b:52:47:9b:9c:13:d8:7e:fe:c6:e1:49:6b:d5:32:4e:43:
56:08:61:ac:6f:6f:9e:96:20:1f:41:38:a6:af:a0:0d:35:4a:
46:81:5a:fe:75:31:e1:dd:50:d3:e9:f6:01:13:70:b8:00:f0:
f6:a1:f1:9e:6c:02:90:f2:55:c1:61:ac:d7:e5:2b:c9:29:85:
87:29:f6:87:71:08:38:15:89:d6:5d:41:80:b9:47:a3:bc:b1:
29:d2:16:a7:89:73:44:3b:aa:d0:af:31:93:cd:c3:f5:d8:f4:
de:9f:d0:db:9f:d5:43:b6:59:08:88:b2:03:1c:b8:ea:59:d7:
e3:54:1e:a6:4b:33:ba:91:20:8d:61:f8:af:68:7f:7f:67:56:
dd:d8:27:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:18 2024 by rpki-client on console-ams.rpki-client.org