Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a2df44-38b2-4d12-8347-78e997869952/1/1-wThspJdivhxLLoevXwRcGpzXo0.roa
File: 1-wThspJdivhxLLoevXwRcGpzXo0.roa (raw, json)
Hash identifier: zZRj78QGXl+4j/oAxwBkNuz9brTYDEJk0x/GK3LcqGo=
Subject key identifier: FB:04:E1:B2:92:5D:8A:F8:71:2C:BA:1E:BD:7C:11:70:6A:73:5E:8D
Certificate issuer: /CN=90b8a15466c3ff1e915d780a10b0baa9ad694860
Certificate serial: 055D326B
Authority key identifier: 90:B8:A1:54:66:C3:FF:1E:91:5D:78:0A:10:B0:BA:A9:AD:69:48:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kLihVGbD_x6RXXgKELC6qa1pSGA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a2df44-38b2-4d12-8347-78e997869952/1/1-wThspJdivhxLLoevXwRcGpzXo0.roa
Signing time: Sat 01 Jan 2022 16:11:03 +0000
ROA not before: Sat 01 Jan 2022 16:11:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15874
IP address blocks: 37.130.0.0/18 maxlen: 24
185.237.56.0/22 maxlen: 24
46.174.232.0/21 maxlen: 24
2a0c:1680::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89993835 (0x55d326b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90b8a15466c3ff1e915d780a10b0baa9ad694860
Validity
Not Before: Jan 1 16:11:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb04e1b2925d8af8712cba1ebd7c11706a735e8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:04:44:1d:75:94:7f:8a:ca:17:85:3f:ec:7f:
35:4f:a8:c1:1c:e8:fb:58:3e:8f:fe:33:3b:24:35:
aa:7f:37:52:22:9d:fe:67:18:e2:7e:e2:22:1f:dd:
ab:84:ca:a2:0b:60:10:6d:b1:b1:ab:f6:23:da:52:
14:97:d6:d0:38:a5:61:aa:c3:7c:2d:47:c0:37:1e:
96:74:97:66:9a:62:8e:0e:6d:ad:bd:27:42:f3:8e:
34:37:96:a8:e4:a4:89:4b:7b:60:f2:27:ed:55:05:
bd:9c:f5:86:70:08:81:b5:74:ac:d5:58:c6:76:8e:
91:2c:08:5b:60:2d:da:08:19:56:15:5f:29:4e:78:
c4:7c:10:a3:fc:79:5c:df:09:f8:6f:8c:d9:f0:12:
84:7f:a0:b2:a0:84:c5:c9:9e:59:5b:50:81:ae:d5:
06:04:39:f5:29:ad:25:34:c1:c9:c4:9a:eb:38:42:
a3:14:c3:a8:52:4a:d9:cb:93:90:9a:13:b1:81:a7:
84:52:25:66:48:19:b6:8c:b5:54:9e:fd:2d:4d:cb:
9e:b5:01:0a:f7:03:36:7f:4e:52:5e:08:93:f3:74:
02:2f:67:18:4f:44:07:1c:a6:c0:5a:cf:27:92:61:
5e:e0:70:53:18:5f:5b:2e:36:9b:7e:76:a9:7b:e6:
1d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:04:E1:B2:92:5D:8A:F8:71:2C:BA:1E:BD:7C:11:70:6A:73:5E:8D
X509v3 Authority Key Identifier:
keyid:90:B8:A1:54:66:C3:FF:1E:91:5D:78:0A:10:B0:BA:A9:AD:69:48:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLihVGbD_x6RXXgKELC6qa1pSGA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a2df44-38b2-4d12-8347-78e997869952/1/1-wThspJdivhxLLoevXwRcGpzXo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a2df44-38b2-4d12-8347-78e997869952/1/kLihVGbD_x6RXXgKELC6qa1pSGA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.130.0.0/18
46.174.232.0/21
185.237.56.0/22
IPv6:
2a0c:1680::/29
Signature Algorithm: sha256WithRSAEncryption
56:ab:69:78:e7:88:71:0c:d4:ed:2a:f3:2a:db:52:c8:25:34:
57:1b:9d:aa:40:24:b8:38:5d:87:84:a9:bc:eb:f5:09:cf:9d:
1e:58:50:cd:08:80:5e:d8:07:56:ae:35:d5:62:f8:18:d4:8e:
0b:56:b8:ce:d5:b4:0d:2b:bc:b7:9a:99:31:3f:d4:75:28:4a:
1f:23:58:f9:b8:0b:78:93:f9:26:63:3e:91:23:3b:f0:65:67:
b3:4f:51:c9:83:05:6f:89:c7:83:bd:6f:df:78:b8:67:3f:e9:
f0:c4:23:2f:6b:be:f9:24:6a:31:c2:df:27:24:04:6d:0f:d4:
d5:b5:73:36:0c:8f:03:0b:9f:a9:a4:6b:da:53:c3:47:aa:c1:
13:66:d0:b2:0b:a7:32:b4:26:ff:77:5b:22:37:2d:2a:97:0b:
0f:40:44:59:0f:43:e6:87:b3:54:e2:54:14:93:b4:95:1e:55:
25:e9:7c:3a:5c:a1:b4:7f:51:81:9a:c2:9a:66:75:f9:bf:92:
e2:cd:28:16:90:e3:36:16:3e:8b:2f:64:9b:e3:e7:93:5b:0e:
75:23:16:cf:76:25:cc:5c:f5:83:59:6d:f6:6b:5b:72:e8:0b:
f8:ca:af:b1:54:26:11:80:f4:3b:3d:21:ca:90:7e:b0:d8:30:
2a:f8:09:31
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:20 2024 by rpki-client on console-ams.rpki-client.org