Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/cQ-8PpnVJCX_KOXsm2C7dthRNNQ.roa
File: cQ-8PpnVJCX_KOXsm2C7dthRNNQ.roa (raw, json)
Hash identifier: 3qNYRy3pwlOKCTCXWy2wpSYt6WtxOZq8kWqXA9y6ywA=
Subject key identifier: 71:0F:BC:3E:99:D5:24:25:FF:28:E5:EC:9B:60:BB:76:D8:51:34:D4
Certificate issuer: /CN=fa9b89f367d4fb950287701f62d4a039b7f6cb20
Certificate serial: 047745F1
Authority key identifier: FA:9B:89:F3:67:D4:FB:95:02:87:70:1F:62:D4:A0:39:B7:F6:CB:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-puJ82fU-5UCh3AfYtSgObf2yyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/cQ-8PpnVJCX_KOXsm2C7dthRNNQ.roa
Signing time: Sat 01 Jan 2022 10:02:03 +0000
ROA not before: Sat 01 Jan 2022 10:02:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198717
IP address blocks: 37.233.96.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74925553 (0x47745f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa9b89f367d4fb950287701f62d4a039b7f6cb20
Validity
Not Before: Jan 1 10:02:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=710fbc3e99d52425ff28e5ec9b60bb76d85134d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f5:5b:99:9b:c8:9f:e7:5b:ee:36:2f:0b:7b:
67:07:50:27:33:93:73:8b:a3:9d:d4:85:f9:00:8a:
34:73:55:56:7a:0a:8c:19:7a:9b:cb:74:ee:75:8f:
b3:be:d2:42:aa:1a:04:a4:d5:df:eb:da:2d:1b:df:
b4:6d:09:1b:01:0a:89:eb:1c:28:ed:6f:4d:d5:65:
ff:61:0a:7f:a6:36:a3:0d:d4:09:f5:64:85:8f:62:
56:f8:b0:2a:ea:df:03:b7:8e:de:1e:31:69:e6:b5:
bf:54:e8:27:32:32:02:78:f0:f6:fa:16:ff:b9:07:
a0:6f:09:f7:b6:39:9b:79:d6:ca:dd:5e:55:49:a7:
b7:2c:59:e7:31:65:3a:c9:fd:a8:35:f2:df:a4:99:
a5:aa:f2:6b:56:cf:f2:d5:05:10:9d:13:c7:1c:e0:
78:33:8a:d0:86:1b:ac:22:bb:e7:20:9f:a4:5f:1b:
c0:1b:1b:1b:3b:27:7a:ce:6a:f1:92:a5:68:55:54:
72:53:b4:73:25:58:40:5b:a2:04:25:d6:27:1a:46:
57:98:f0:37:3e:56:ec:76:9a:b7:c8:28:30:f2:9d:
57:a3:37:f4:13:bf:3b:3c:5b:5c:ca:a8:43:5d:96:
c1:4e:3d:9c:a8:1c:30:ab:5c:a1:e3:7b:48:8d:2e:
29:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:0F:BC:3E:99:D5:24:25:FF:28:E5:EC:9B:60:BB:76:D8:51:34:D4
X509v3 Authority Key Identifier:
keyid:FA:9B:89:F3:67:D4:FB:95:02:87:70:1F:62:D4:A0:39:B7:F6:CB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-puJ82fU-5UCh3AfYtSgObf2yyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/cQ-8PpnVJCX_KOXsm2C7dthRNNQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.233.96.0/20
Signature Algorithm: sha256WithRSAEncryption
20:3c:93:75:e3:3b:51:ed:ca:19:30:1d:ad:2d:a5:ac:19:df:
1d:50:06:3b:f1:0f:76:aa:ae:21:c3:f9:60:9d:09:cf:ba:aa:
8a:a8:4d:52:2a:d4:6d:c9:f0:89:42:f8:e8:0b:fc:bc:62:1d:
8b:9d:05:96:4b:9a:e5:7e:f6:99:11:99:2e:7a:fb:82:f1:6f:
54:38:cc:43:95:21:1f:0b:a0:41:8a:3f:67:10:86:00:39:9b:
2c:a9:f6:f6:1e:e3:d1:59:91:60:e9:cf:e9:4e:a8:d7:d0:c9:
07:91:c1:fa:2b:0c:ba:b3:39:da:9f:03:f3:32:48:6d:2b:72:
55:12:b2:6f:bc:af:0e:8a:08:69:1b:e5:6a:fd:16:93:1e:48:
92:d1:78:d9:14:9c:78:34:c7:33:cb:64:17:86:c5:c7:d2:21:
79:67:c1:89:a6:6e:37:14:51:8d:0f:5c:1b:01:12:13:b7:d8:
87:17:a2:5b:57:29:47:3a:f2:f2:c1:ce:2c:f8:f7:f1:41:b9:
5a:89:93:37:05:5c:76:0c:1b:33:7f:d6:c3:54:99:93:72:52:
8d:25:03:91:ba:7f:54:b5:1f:33:0c:8c:3a:95:22:51:0d:23:
bc:82:39:19:29:51:92:47:4c:bd:b9:14:aa:8b:f7:a3:3f:bb:
a8:54:a0:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:52 2023 by rpki-client on console-ams.rpki-client.org