Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/79733f-5332-451b-86af-142a2b98f4c8/1/q1VPyTCIrTkwhexCi43Rly4iEVk.roa
File: q1VPyTCIrTkwhexCi43Rly4iEVk.roa (raw, json)
Hash identifier: fCwYh/uehY0lfVODmYiFmLnQkrgySk84qUGuKLOqtv4=
Subject key identifier: AB:55:4F:C9:30:88:AD:39:30:85:EC:42:8B:8D:D1:97:2E:22:11:59
Certificate issuer: /CN=1c020297839c7390df20251a5c0930e6a672bee3
Certificate serial: 366912BB
Authority key identifier: 1C:02:02:97:83:9C:73:90:DF:20:25:1A:5C:09:30:E6:A6:72:BE:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HAICl4Occ5DfICUaXAkw5qZyvuM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/79733f-5332-451b-86af-142a2b98f4c8/1/q1VPyTCIrTkwhexCi43Rly4iEVk.roa
Signing time: Sat 01 Jan 2022 06:03:15 +0000
ROA not before: Sat 01 Jan 2022 06:03:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199633
IP address blocks: 37.32.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 912855739 (0x366912bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c020297839c7390df20251a5c0930e6a672bee3
Validity
Not Before: Jan 1 06:03:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab554fc93088ad393085ec428b8dd1972e221159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:26:d8:e2:77:29:ff:00:c0:67:c3:43:70:1f:
f8:3c:b0:57:bf:9c:52:31:57:e0:e7:9b:2e:ad:b6:
22:80:70:62:31:6e:2b:fd:bb:e5:00:ae:2d:0e:2b:
39:35:31:4e:84:4e:13:30:43:78:df:f1:0f:5d:e0:
aa:87:80:6e:7e:f6:7d:56:a8:80:61:2d:34:a1:21:
8e:93:a0:f1:35:39:9d:e4:5e:14:94:7e:83:4d:a8:
5d:ee:ae:88:84:03:c9:6a:58:40:b1:e8:d4:5e:84:
af:ba:5b:12:96:92:f0:75:75:1c:98:f5:fd:b8:b6:
4e:e6:0b:cb:15:ab:73:b4:35:33:7f:ac:0b:b6:e9:
a5:80:5c:10:7e:ce:1c:f9:38:b4:c6:d9:9f:b9:e9:
26:5c:9b:55:6e:a5:8c:48:3d:6d:bb:b1:5e:13:08:
ef:99:7d:53:bd:9c:1d:d9:02:6f:48:9b:4c:12:9d:
d6:54:e3:3b:22:ad:d6:e4:da:23:10:36:e0:7b:0e:
cf:82:e7:32:8e:fc:00:80:57:d5:61:0b:1d:3d:a2:
ea:08:da:80:2d:f3:ac:e6:80:86:c9:49:ff:92:32:
f0:32:fd:ce:57:84:9a:82:c6:47:63:4a:e5:e1:ee:
22:50:bc:01:c9:86:e0:94:3c:4b:2f:00:18:d8:28:
97:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:55:4F:C9:30:88:AD:39:30:85:EC:42:8B:8D:D1:97:2E:22:11:59
X509v3 Authority Key Identifier:
keyid:1C:02:02:97:83:9C:73:90:DF:20:25:1A:5C:09:30:E6:A6:72:BE:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HAICl4Occ5DfICUaXAkw5qZyvuM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/79733f-5332-451b-86af-142a2b98f4c8/1/q1VPyTCIrTkwhexCi43Rly4iEVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/79733f-5332-451b-86af-142a2b98f4c8/1/HAICl4Occ5DfICUaXAkw5qZyvuM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.117.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:87:bf:c3:a7:a4:e4:61:e8:6c:81:9a:d5:f7:6b:51:a1:a5:
5c:40:92:1c:ae:6f:3f:37:5f:16:87:47:13:eb:89:8a:e9:a5:
6b:b0:43:c4:a3:5d:08:ff:9d:e0:10:c3:99:cc:55:42:76:b7:
dd:ab:8b:50:9e:b0:db:08:46:de:cb:23:59:44:49:25:af:48:
72:a2:b5:9b:dd:ac:d7:2c:81:de:2e:d3:5d:a8:b9:70:6e:56:
ec:4c:4e:ff:62:80:72:b0:6d:a3:59:a1:47:89:c4:9f:5d:ff:
27:ce:59:42:27:57:10:38:96:e8:df:4c:96:46:47:53:67:9a:
90:0d:43:94:f9:7c:70:31:1f:ae:14:63:e3:a3:ce:9d:33:af:
e1:f2:22:52:c0:c2:d7:3b:7d:6e:9e:14:d8:29:80:4f:40:4e:
3e:cc:99:02:76:1a:e2:d1:ab:07:36:70:59:21:fb:ee:5e:37:
49:ec:40:1f:a5:ca:1a:69:22:70:19:8e:10:2a:a2:69:6f:f6:
83:da:a4:29:09:35:ef:36:16:0a:50:24:14:65:01:5b:c4:12:
61:d0:ab:ee:dd:08:92:8d:33:29:e4:ff:ba:3f:9b:b0:96:2e:
19:bf:6d:9c:5c:86:3d:a5:ac:53:b3:df:ac:0e:a5:d3:4a:14:
df:b9:c3:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:12 2023 by rpki-client on console-ams.rpki-client.org