Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/79733f-5332-451b-86af-142a2b98f4c8/1/N5bJo_DbDodlGjDD8o6_7nmlru0.roa
File: N5bJo_DbDodlGjDD8o6_7nmlru0.roa (raw, json)
Hash identifier: H00O9FVSqJArFNkOzr2AG2ZPzMN/wiCJ7LEb3o7FoUM=
Subject key identifier: 37:96:C9:A3:F0:DB:0E:87:65:1A:30:C3:F2:8E:BF:EE:79:A5:AE:ED
Certificate issuer: /CN=1c020297839c7390df20251a5c0930e6a672bee3
Certificate serial: 36684A27
Authority key identifier: 1C:02:02:97:83:9C:73:90:DF:20:25:1A:5C:09:30:E6:A6:72:BE:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HAICl4Occ5DfICUaXAkw5qZyvuM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/79733f-5332-451b-86af-142a2b98f4c8/1/N5bJo_DbDodlGjDD8o6_7nmlru0.roa
Signing time: Sat 01 Jan 2022 06:03:14 +0000
ROA not before: Sat 01 Jan 2022 06:03:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44400
IP address blocks: 37.32.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 912804391 (0x36684a27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c020297839c7390df20251a5c0930e6a672bee3
Validity
Not Before: Jan 1 06:03:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3796c9a3f0db0e87651a30c3f28ebfee79a5aeed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:23:3e:08:82:b3:f9:e0:f2:03:a3:e1:71:84:
ba:58:32:f2:76:3a:f9:0c:d1:cb:85:c2:c1:f3:9e:
2d:e4:9e:83:87:b3:a0:8c:e0:62:f5:88:8c:bd:e6:
4a:70:95:4b:ff:0f:69:5a:66:a0:1c:9c:ab:37:97:
68:8d:f7:91:31:51:90:47:ad:a6:a0:a5:c9:71:73:
a4:01:8e:70:0a:28:13:b4:ec:02:b6:8f:b8:fe:39:
5b:39:31:48:9d:ea:13:3d:79:69:49:fa:36:26:93:
d9:a0:6a:b9:16:96:60:57:87:ec:74:30:4b:00:da:
4d:61:f0:1f:34:9e:13:69:91:34:38:57:7c:88:f7:
7e:98:68:b1:66:67:80:2b:a2:b2:6a:23:9d:b4:e3:
99:19:a4:6c:ff:f2:87:04:33:e8:98:a6:dc:f0:bd:
6a:17:90:fa:b0:21:63:3c:54:d3:4f:55:42:d4:1f:
ce:ef:b2:e9:28:b1:e5:8d:ae:12:d6:4d:22:62:7d:
85:d4:ce:5f:48:db:76:f1:18:55:f4:62:b4:3e:94:
40:b4:02:4d:8e:1f:8e:af:5c:62:6c:88:7f:75:d4:
a1:65:f3:a0:47:78:a4:69:06:f9:11:4f:f2:85:82:
50:87:19:e5:3f:e7:1c:c9:a1:95:f6:af:a7:47:ac:
2a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:96:C9:A3:F0:DB:0E:87:65:1A:30:C3:F2:8E:BF:EE:79:A5:AE:ED
X509v3 Authority Key Identifier:
keyid:1C:02:02:97:83:9C:73:90:DF:20:25:1A:5C:09:30:E6:A6:72:BE:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HAICl4Occ5DfICUaXAkw5qZyvuM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/79733f-5332-451b-86af-142a2b98f4c8/1/N5bJo_DbDodlGjDD8o6_7nmlru0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/79733f-5332-451b-86af-142a2b98f4c8/1/HAICl4Occ5DfICUaXAkw5qZyvuM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.124.0/24
Signature Algorithm: sha256WithRSAEncryption
13:de:b5:ee:8b:a6:72:b9:32:62:e9:bd:2a:3c:4d:3a:9d:a6:
7d:b2:58:b8:cb:51:29:11:05:42:83:fe:b0:b1:f0:33:1c:d9:
ba:14:06:3c:80:4d:b1:6b:9c:c9:a3:6b:16:48:27:db:b9:b4:
67:5b:0d:32:b1:50:70:86:64:cd:87:12:2c:a5:7a:8b:33:ce:
da:c2:5c:b9:ee:3c:29:e4:8e:ae:ca:87:ac:fb:19:34:66:0f:
77:9c:3b:f4:93:0d:ef:11:ca:6a:be:37:b1:d0:42:57:cb:76:
9e:38:82:27:3b:25:07:7d:76:ef:9b:1a:ab:c4:4b:a9:cc:9b:
d2:45:19:08:b0:85:a5:a0:84:54:d1:89:29:1d:f3:16:c6:e9:
fc:01:48:93:4d:0a:7b:42:9c:88:06:12:aa:b1:96:f2:d2:91:
9a:39:14:ce:eb:45:9d:92:a9:b8:86:af:fe:24:7e:02:57:f6:
12:c8:a3:a8:06:0c:47:17:16:ec:0e:ba:f2:0c:e0:76:76:2c:
38:f6:ae:6b:27:25:af:e7:75:4b:87:54:97:e6:8a:4a:59:75:
95:e6:55:95:52:01:ad:5d:1b:e3:5b:f2:68:a7:88:92:9a:8e:
9e:11:33:e0:ce:49:12:ba:e4:75:26:76:8f:b5:c2:7a:a4:ef:
84:94:54:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:32 2023 by rpki-client on console-fra.rpki-client.org