Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/kt61vj-NyVf5iaioVA4rCGW-Z0I.roa
File: kt61vj-NyVf5iaioVA4rCGW-Z0I.roa (raw, json)
Hash identifier: hUMZvsxzdJwkg7D+kGwISARB3AqXoLOVAJqaLo5BVU4=
Subject key identifier: 92:DE:B5:BE:3F:8D:C9:57:F9:89:A8:A8:54:0E:2B:08:65:BE:67:42
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 1F99F153
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/kt61vj-NyVf5iaioVA4rCGW-Z0I.roa
Signing time: Sat 01 Jan 2022 14:06:41 +0000
ROA not before: Sat 01 Jan 2022 14:06:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210522
IP address blocks: 37.114.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 530182483 (0x1f99f153)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: Jan 1 14:06:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92deb5be3f8dc957f989a8a8540e2b0865be6742
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:39:94:62:76:28:ef:46:31:50:d1:28:02:97:
e0:a5:8e:9f:2f:38:9b:80:c1:c9:9e:11:64:e7:7e:
c8:fb:6d:d2:b1:94:61:b4:ef:8c:c3:12:9a:37:06:
26:9c:b4:f1:f7:8f:2c:0c:2a:e2:35:70:9c:5c:dc:
b1:fe:19:1d:f5:10:c0:4b:dc:4e:d1:64:10:cf:9e:
94:0a:d0:7a:89:39:14:4d:60:c6:14:18:bd:46:71:
fd:7f:21:04:ce:5f:f3:7e:60:5c:19:ef:aa:6e:2b:
bb:93:14:f5:bb:6d:8b:ab:28:48:8f:e7:00:58:4f:
e1:5b:8f:6c:74:19:9d:c4:45:45:7c:a0:d9:21:91:
21:47:f1:20:1e:2e:f9:b9:59:b8:8c:3f:53:68:b2:
cf:d2:8f:54:0e:f5:63:45:18:bd:a0:24:d1:c4:6e:
55:d2:10:f0:5d:7e:b7:62:18:d8:64:29:86:a1:23:
37:11:1f:ad:0a:51:98:37:c8:0d:a4:0b:e5:73:bd:
1d:0e:60:c6:e8:6c:44:61:d9:51:26:ea:d9:d1:c2:
60:c7:4f:30:d2:f6:07:a6:d2:a1:0d:b1:5d:ba:07:
a5:d4:ff:c5:06:3b:d0:5b:b4:32:6a:e6:ec:40:d8:
98:d7:e8:0e:24:8f:90:6e:8d:74:07:79:87:07:a7:
f7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:DE:B5:BE:3F:8D:C9:57:F9:89:A8:A8:54:0E:2B:08:65:BE:67:42
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/kt61vj-NyVf5iaioVA4rCGW-Z0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.41.0/24
Signature Algorithm: sha256WithRSAEncryption
be:13:ec:7c:40:fa:0c:0c:4b:35:f3:f1:c8:07:b9:85:cd:72:
fd:b0:5a:ba:04:d8:91:58:45:ce:94:08:57:c1:ac:59:5c:fd:
c2:2d:9f:51:c7:85:5a:7f:d3:59:3e:6f:cb:5a:16:18:83:53:
60:ba:0f:48:30:6a:fd:88:e4:88:f8:1a:5e:ca:6f:73:fa:5b:
9d:87:97:e1:a6:16:6b:8d:20:16:10:c1:f6:b1:9e:90:e6:aa:
66:c6:e8:68:ef:ed:22:f7:bb:e3:4b:af:c6:47:08:73:ac:bd:
f5:04:a8:85:37:65:b0:91:80:d6:02:a4:14:df:17:72:51:7f:
ce:66:1a:91:75:35:84:f7:15:1f:f7:57:d3:a3:b5:8a:01:45:
93:5c:6d:dc:b9:3d:ff:4c:77:a7:ca:e0:9d:a3:a8:36:ab:d9:
cd:56:f6:fa:e4:e5:1f:3a:68:6a:63:b4:0c:a8:97:a0:12:b6:
89:e9:6f:1b:d3:e7:82:ce:63:bf:8d:02:dc:20:2c:cf:d0:98:
bf:f8:02:44:4c:13:ba:10:63:7d:78:78:c1:63:0c:8c:fd:ea:
b9:06:da:5c:0f:7c:cb:fd:51:a5:f0:77:05:df:7f:8e:fe:7b:
49:75:60:a9:dd:c9:ba:24:bc:87:9f:05:71:e0:9c:34:03:98:
b3:cc:88:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:18 2024 by rpki-client on console-ams.rpki-client.org