Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/8R-y3s51wNVdKpvIkdsZqyFQe8I.roa
File: 8R-y3s51wNVdKpvIkdsZqyFQe8I.roa (raw, json)
Hash identifier: glLA8Isjjk+z+8O9UsssI/62lwFK56jiHxakZUSqhpQ=
Subject key identifier: F1:1F:B2:DE:CE:75:C0:D5:5D:2A:9B:C8:91:DB:19:AB:21:50:7B:C2
Certificate issuer: /CN=380b283a0513940d520a680b8b3d14dbc367770d
Certificate serial: 0184A4437A540390B7C72E1835E6327524EA
Authority key identifier: 38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/8R-y3s51wNVdKpvIkdsZqyFQe8I.roa
Signing time: Wed 23 Nov 2022 11:33:16 +0000
ROA not before: Wed 23 Nov 2022 11:33:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210636
IP address blocks: 37.77.58.0/24 maxlen: 24
37.77.57.0/24 maxlen: 24
37.77.56.0/24 maxlen: 24
37.77.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a4:43:7a:54:03:90:b7:c7:2e:18:35:e6:32:75:24:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380b283a0513940d520a680b8b3d14dbc367770d
Validity
Not Before: Nov 23 11:33:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f11fb2dece75c0d55d2a9bc891db19ab21507bc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f5:5a:e5:25:ad:e0:6a:1d:32:9b:7e:33:2a:
59:c6:9e:31:56:ea:c5:ea:e4:d7:c3:f3:eb:5b:62:
c3:68:05:a8:7f:61:e1:4b:87:72:f7:f0:6e:12:44:
fe:5a:da:78:78:70:3a:33:9e:c9:ec:8e:a8:9b:4f:
b3:d9:99:69:1e:d1:68:5a:b6:48:9b:78:76:66:01:
8e:cc:06:15:67:06:9b:b5:08:5c:c4:85:eb:34:5e:
72:ff:4c:e8:f5:c9:09:b6:4b:83:cf:37:f9:2b:ba:
9e:b3:53:86:44:c5:69:98:b5:3b:bc:65:53:cd:9d:
00:bc:2a:6e:62:84:5c:ac:8a:4c:f2:cd:1d:96:a3:
36:ec:11:45:13:6e:d6:b0:9b:48:8f:44:9f:ba:c8:
d7:dc:37:8f:e3:b5:c0:a8:40:fc:ac:f4:d1:63:fa:
6c:68:2f:ec:69:83:3a:38:3b:41:44:c6:79:f8:83:
45:c7:64:09:e1:61:43:02:51:8e:04:72:e6:db:31:
68:61:e3:99:f6:82:b3:2d:92:34:f0:c9:11:00:d6:
45:ff:4e:a3:20:54:1e:cd:82:fa:5d:48:4d:ec:1e:
e4:9b:29:b6:24:81:d1:c5:92:b8:ff:e0:16:83:94:
5c:07:4a:01:f7:53:85:5b:11:ef:f2:48:ef:28:21:
a0:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:1F:B2:DE:CE:75:C0:D5:5D:2A:9B:C8:91:DB:19:AB:21:50:7B:C2
X509v3 Authority Key Identifier:
keyid:38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/8R-y3s51wNVdKpvIkdsZqyFQe8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/OAsoOgUTlA1SCmgLiz0U28Nndw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.56.0/22
Signature Algorithm: sha256WithRSAEncryption
32:1f:b0:cd:5a:5a:2e:3a:6e:54:8f:08:e6:16:a3:dc:7e:71:
30:03:52:dc:36:1f:55:28:c9:36:66:e0:23:94:e2:84:c9:be:
ed:be:e4:85:5f:96:c1:17:4e:14:b1:0c:24:45:1b:0a:89:a1:
87:f1:9b:44:56:3f:af:91:11:cb:f0:fe:1f:f6:b1:6d:2b:19:
93:ef:b4:33:63:f7:de:c1:3c:cf:ef:68:96:ac:24:6d:41:2a:
a2:c2:a4:0f:d9:f9:08:68:a5:67:dd:6a:ff:cd:43:c9:2a:19:
4b:30:ea:8e:8a:05:96:85:74:53:70:5c:4b:50:c4:40:44:e0:
20:7e:a4:e2:46:07:c4:dd:04:f0:15:e7:2f:6f:f0:b6:7f:66:
4b:4c:13:0e:cd:30:b4:eb:91:1d:bb:88:02:60:77:bc:de:55:
e7:85:1a:ec:bf:0b:3f:46:79:fc:50:87:9d:01:f6:3f:03:bc:
82:65:4f:e9:bd:62:18:f1:1a:95:24:0d:6b:f7:da:0c:14:4c:
56:2b:cd:a2:50:02:ab:ba:c3:26:7f:df:2a:77:88:d4:7e:ef:
7f:87:f3:00:d6:77:66:0b:63:97:b5:f1:98:7a:ab:ea:b5:6c:
8e:fc:9d:4b:ad:1d:3d:42:ae:64:45:d4:e4:54:5d:6a:84:fb:
cc:c0:d9:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:24 2024 by rpki-client on console-ams.rpki-client.org