Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/tt9atZeYYYX7Db2sKuhkZIN1xzI.roa
File: tt9atZeYYYX7Db2sKuhkZIN1xzI.roa (raw, json)
Hash identifier: JB9ZdPkXYRH8m/zVGRg9ajNR57atRYZIduUKHzzovxI=
Subject key identifier: B6:DF:5A:B5:97:98:61:85:FB:0D:BD:AC:2A:E8:64:64:83:75:C7:32
Certificate issuer: /CN=380b283a0513940d520a680b8b3d14dbc367770d
Certificate serial: 01850FBAD73226154E785C494776C46EABD3
Authority key identifier: 38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/tt9atZeYYYX7Db2sKuhkZIN1xzI.roa
Signing time: Wed 14 Dec 2022 08:23:01 +0000
ROA not before: Wed 14 Dec 2022 08:23:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210636
IP address blocks: 37.77.58.0/24 maxlen: 24
37.77.57.0/24 maxlen: 24
37.77.56.0/24 maxlen: 24
37.77.59.0/24 maxlen: 24
37.77.63.0/24 maxlen: 24
37.77.62.0/24 maxlen: 24
37.77.60.0/24 maxlen: 24
37.77.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0f:ba:d7:32:26:15:4e:78:5c:49:47:76:c4:6e:ab:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380b283a0513940d520a680b8b3d14dbc367770d
Validity
Not Before: Dec 14 08:23:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6df5ab597986185fb0dbdac2ae864648375c732
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:e1:d8:73:7b:93:4d:14:9d:65:75:fc:37:81:
ba:09:63:38:f8:d3:3c:cb:03:c7:ab:f9:61:21:8d:
2f:7a:be:ba:de:90:62:74:54:c6:5b:c0:4a:17:ca:
61:8d:2c:63:9c:88:51:72:65:5a:7f:94:29:05:2c:
87:7e:8a:4b:07:26:87:5f:31:99:1f:a9:4d:b1:ee:
3c:39:b6:2a:da:b7:2d:5a:ae:92:e5:63:74:b8:ef:
48:2b:e0:47:07:9f:67:ac:05:52:88:cb:5b:b7:39:
db:d7:e8:d2:66:b1:39:87:89:cf:9f:cd:4e:22:35:
de:89:f0:d9:25:89:6b:45:31:d3:e9:70:1c:c4:d1:
9d:b3:6b:33:c2:ee:c7:56:99:31:ce:db:e3:87:6d:
8f:f1:68:16:2d:bc:75:a2:70:b4:0f:76:70:f2:8f:
ad:dd:f7:28:04:02:6e:1c:c1:4c:a8:1b:13:fe:dd:
18:80:69:fc:e1:73:91:44:ba:bb:67:50:02:80:9d:
b8:4c:a8:0a:2e:d4:dd:d1:5d:ad:b9:9f:fc:b0:97:
82:e4:43:0b:46:e8:09:30:9a:0d:2b:b7:ec:5f:86:
08:f2:97:9b:37:53:68:76:bf:5e:82:46:a6:50:e9:
63:ad:a8:6b:ea:d8:13:de:b0:f7:f7:40:1e:32:d4:
e1:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:DF:5A:B5:97:98:61:85:FB:0D:BD:AC:2A:E8:64:64:83:75:C7:32
X509v3 Authority Key Identifier:
keyid:38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/tt9atZeYYYX7Db2sKuhkZIN1xzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/OAsoOgUTlA1SCmgLiz0U28Nndw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.56.0/21
Signature Algorithm: sha256WithRSAEncryption
ad:87:6e:52:9a:81:e1:45:bc:8d:cd:b2:ac:a9:45:53:07:74:
3f:9f:b8:d4:0b:45:48:e5:51:76:17:97:8a:ae:33:0e:5c:ae:
cb:be:aa:19:79:e1:21:98:ad:7d:15:a7:4c:57:7a:24:28:db:
bc:af:ad:25:5b:72:5b:09:c1:9b:40:40:e7:65:0c:dc:e1:af:
a2:ba:f6:38:4b:6a:12:86:32:25:c2:e7:c6:3f:f4:bb:3d:7d:
08:74:6a:41:16:76:27:54:81:cd:4e:10:48:ee:5f:19:53:e9:
f3:7a:e3:03:b6:27:9f:dc:12:5f:01:29:9b:70:a7:0c:2b:6f:
4e:c4:82:f5:0d:88:17:51:52:08:14:31:41:01:81:6b:3d:be:
69:2e:e2:d3:33:f3:38:56:ac:7e:d5:3b:c4:57:dd:32:87:96:
3c:aa:de:f0:7d:8a:9b:4e:40:2a:76:2d:87:a4:4e:c1:5e:f4:
a5:10:ad:94:24:4f:d7:71:a8:50:54:3a:f4:96:0e:40:7e:1a:
ab:e8:c8:88:92:b8:15:3c:6b:96:16:56:f7:7f:70:b0:ba:91:
1c:ba:ee:12:02:b1:77:35:bc:14:f1:6e:ff:92:1f:f7:c2:c2:
97:16:83:3c:2a:3a:2d:e9:66:56:27:3b:48:d2:16:54:c6:5b:
b8:18:7e:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:49 2024 by rpki-client on console-fra.rpki-client.org