Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/nZB8zSaxB6oUh30kfyW1FOf8Ix4.roa
File: nZB8zSaxB6oUh30kfyW1FOf8Ix4.roa (raw, json)
Hash identifier: D0JnFvR/RCl54n4HvNGDjWXYMZJ8In2KM03Ji6r0dH4=
Subject key identifier: 9D:90:7C:CD:26:B1:07:AA:14:87:7D:24:7F:25:B5:14:E7:FC:23:1E
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 3A824815
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/nZB8zSaxB6oUh30kfyW1FOf8Ix4.roa
Signing time: Sat 01 Jan 2022 06:00:01 +0000
ROA not before: Sat 01 Jan 2022 06:00:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51453
IP address blocks: 37.235.0.0/23 maxlen: 23
37.235.2.0/24 maxlen: 24
185.81.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 981616661 (0x3a824815)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jan 1 06:00:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d907ccd26b107aa14877d247f25b514e7fc231e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:17:df:4c:b7:3e:2a:57:20:ec:d0:5c:d1:82:
c2:cf:93:3d:dd:af:0e:05:21:4d:a1:b1:a7:3d:c7:
14:a8:44:06:c9:6f:00:f8:37:e3:0e:99:e0:38:39:
71:6c:34:6c:3a:d1:ae:fd:9a:c1:67:28:64:ff:1f:
28:17:cd:4d:5d:1b:04:1c:23:4e:94:1c:41:cc:26:
6f:62:d2:2d:5a:9d:0b:ca:2b:43:fa:67:dc:3e:5d:
17:dc:12:a5:dc:c2:39:d1:5a:ad:d5:3b:5d:f4:4e:
e5:e7:32:34:4c:31:08:9e:28:f6:2b:76:f7:86:94:
94:4f:a8:1d:1b:a2:1e:85:f0:cb:5e:d6:cf:82:92:
6d:4d:2f:d0:9b:ca:12:67:fa:8b:41:4c:09:8f:da:
99:67:fb:19:4a:fd:77:89:25:f5:56:f8:b4:51:8c:
ac:e7:0d:f0:e1:f4:a3:d6:49:c6:21:2f:a5:99:50:
43:b7:dd:73:ef:82:04:26:7a:a8:ac:94:8c:f9:a5:
f8:d1:d1:af:db:f0:54:2b:cb:9f:84:b0:d3:9f:e9:
af:07:3d:44:bc:ac:2e:5a:0d:6b:c4:4f:90:bd:36:
e7:43:c9:b8:79:2e:c5:9c:76:7d:4c:d7:bd:fe:55:
b4:49:b1:5f:37:b8:0c:11:fe:f3:64:f7:a7:b0:f1:
d1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:90:7C:CD:26:B1:07:AA:14:87:7D:24:7F:25:B5:14:E7:FC:23:1E
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/nZB8zSaxB6oUh30kfyW1FOf8Ix4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.0.0-37.235.2.255
185.81.204.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:d2:79:95:f9:dc:0a:b1:3b:51:b9:0e:10:ad:7b:91:8b:ae:
55:06:5a:11:f2:90:7f:fd:56:f7:1b:0a:35:ca:2f:b6:5a:36:
93:3c:91:3c:22:08:17:d2:ab:e7:58:91:58:01:91:e7:39:d8:
52:68:06:75:bd:a1:1a:18:39:a4:f4:4c:22:a5:3c:dc:d4:f2:
91:bb:e8:90:43:a4:42:1a:dc:0d:f4:bb:d4:78:ef:37:59:56:
91:85:a7:54:d2:d3:05:2c:bb:4f:ae:1e:ee:06:4e:77:9f:d9:
72:e6:9d:bd:eb:3c:27:ec:d7:e1:36:11:91:ba:4c:03:4c:e0:
bb:7b:ec:88:6e:38:d9:ad:5f:79:4f:d9:62:ef:c3:0f:cd:a0:
c8:0e:74:c9:e4:6a:72:86:9b:cf:3a:e1:34:37:4d:52:df:77:
b5:e9:72:21:a8:00:60:1f:e4:30:95:11:5b:53:df:49:90:28:
60:81:65:35:33:9f:7a:6a:36:f7:0a:d8:08:d9:d2:8a:60:68:
48:ed:ec:a6:45:8c:62:e7:fc:9c:21:0f:a8:ca:15:03:ee:c1:
cd:21:36:25:da:b8:8a:f1:b8:c0:04:3e:28:f5:cd:42:3f:91:
ae:44:45:45:50:aa:d1:e8:46:87:23:7e:03:a9:e3:84:06:f8:
c5:a6:28:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:51 2024 by rpki-client on console-ams.rpki-client.org