Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/Bt7uMVq7oiA5qg4XjhDjupzfhC4.roa
File: Bt7uMVq7oiA5qg4XjhDjupzfhC4.roa (raw, json)
Hash identifier: QwwKhO95OtcyWMUVDuk0T6eVnp0sRnTzjd365N2Gg00=
Subject key identifier: 06:DE:EE:31:5A:BB:A2:20:39:AA:0E:17:8E:10:E3:BA:9C:DF:84:2E
Certificate issuer: /CN=d1f6e4370111cfbf968404854227b8092851450d
Certificate serial: D0E8CE
Authority key identifier: D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/Bt7uMVq7oiA5qg4XjhDjupzfhC4.roa
Signing time: Wed 23 Mar 2022 09:04:55 +0000
ROA not before: Wed 23 Mar 2022 09:04:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29286
IP address blocks: 37.1.184.0/21 maxlen: 21
37.1.190.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13691086 (0xd0e8ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f6e4370111cfbf968404854227b8092851450d
Validity
Not Before: Mar 23 09:04:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06deee315abba22039aa0e178e10e3ba9cdf842e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:da:9a:91:89:63:72:8b:1f:a3:2d:70:60:75:
b2:ac:1d:59:0e:7e:fb:64:77:04:dd:33:ea:be:b9:
98:c6:21:bd:57:3f:4c:86:9a:42:f2:af:56:59:42:
48:47:9a:5b:6a:69:de:d3:57:64:16:6d:3e:50:9c:
55:45:f0:fc:e1:ac:15:f6:25:f0:c4:40:1b:2b:e7:
ba:3e:5d:a0:cb:1e:3a:4d:2a:44:ac:ae:15:b3:c2:
04:e6:1b:62:8a:d9:c9:5e:2d:f4:01:9b:86:c0:56:
d0:63:ce:02:46:2d:10:6e:49:08:82:35:69:66:18:
9b:3f:45:f5:1c:36:10:a8:06:e1:4c:78:46:80:e8:
57:01:11:1c:1f:8b:bc:05:6e:54:72:3b:63:82:ef:
2e:2e:39:8d:73:9c:2e:34:b5:e0:c8:e9:ad:b4:15:
f6:64:ef:c2:87:a2:3a:a0:85:01:ab:d9:c1:b7:8e:
63:38:b2:58:b6:23:59:18:e8:22:70:a0:b5:44:ad:
4a:fe:11:77:0b:89:d2:16:55:ae:7d:79:83:7d:22:
33:c8:65:0e:14:8b:0c:73:19:a4:60:ab:2f:6b:c9:
97:4e:4e:22:77:a5:1d:4e:50:0c:fc:87:ac:4b:80:
e2:e6:60:60:56:56:b2:42:57:a7:17:07:08:e1:03:
9f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:DE:EE:31:5A:BB:A2:20:39:AA:0E:17:8E:10:E3:BA:9C:DF:84:2E
X509v3 Authority Key Identifier:
keyid:D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/Bt7uMVq7oiA5qg4XjhDjupzfhC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.1.184.0/21
Signature Algorithm: sha256WithRSAEncryption
04:04:d7:8d:b3:34:a5:61:4b:02:4c:e5:05:cc:19:36:24:3a:
e5:71:16:74:55:32:c7:b5:14:00:57:d7:f4:b4:ad:8f:2e:76:
70:cb:62:48:a6:71:0b:77:79:be:83:aa:5e:0d:47:40:71:c0:
ba:d8:35:ca:89:e6:c7:40:02:59:4a:c1:14:ac:4f:60:8d:cd:
c1:fe:84:f2:18:fa:9f:4c:45:f9:a1:15:ba:9c:89:81:00:c4:
44:71:3d:e3:39:be:40:96:16:0f:67:b6:4b:e6:72:e7:29:04:
58:76:87:84:8a:68:c7:4f:5e:01:93:f9:e6:2f:92:34:aa:69:
a8:2d:29:eb:b9:f8:ea:a4:11:91:23:c9:63:1c:9b:6a:24:6e:
85:0b:85:91:87:fc:49:cd:fe:91:b0:26:a4:c9:6f:56:96:53:
5e:04:d7:fb:6f:2e:ec:21:0f:a8:03:6a:7b:f8:20:31:a2:35:
65:1e:6a:35:43:2b:f1:b5:f1:24:3b:dc:e4:d7:50:03:c3:82:
34:73:35:63:a4:71:b0:93:78:70:e5:d8:be:44:cc:ea:e2:34:
43:1f:b1:98:af:e6:f7:c3:8f:8f:9b:0a:f5:2e:95:69:ed:3b:
43:88:10:12:49:16:75:f8:3d:3b:03:71:95:68:50:12:ad:f0:
2d:9d:42:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:30 2024 by rpki-client on console-fra.rpki-client.org