Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/1c8bee-8df8-4102-a4ec-4f1ade1da20d/1/1--7HWzkBLZ8-Oid3zFtyBttJhZo.roa
File: 1--7HWzkBLZ8-Oid3zFtyBttJhZo.roa (raw, json)
Hash identifier: CaYikEobF0/IndCQTeaJgWwKPxkctZNOkin7ADyLIDU=
Subject key identifier: FB:EE:C7:5B:39:01:2D:9F:3E:3A:27:77:CC:5B:72:06:DB:49:85:9A
Certificate issuer: /CN=ebf58388c631c977ea51fcadb50cd20a7492f5e7
Certificate serial: 04CECCB9
Authority key identifier: EB:F5:83:88:C6:31:C9:77:EA:51:FC:AD:B5:0C:D2:0A:74:92:F5:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6_WDiMYxyXfqUfyttQzSCnSS9ec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/1c8bee-8df8-4102-a4ec-4f1ade1da20d/1/1--7HWzkBLZ8-Oid3zFtyBttJhZo.roa
Signing time: Sat 01 Jan 2022 11:58:14 +0000
ROA not before: Sat 01 Jan 2022 11:58:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213270
IP address blocks: 37.200.86.0/24 maxlen: 24
2a02:f980::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80661689 (0x4ceccb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebf58388c631c977ea51fcadb50cd20a7492f5e7
Validity
Not Before: Jan 1 11:58:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fbeec75b39012d9f3e3a2777cc5b7206db49859a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:03:0c:06:81:a5:aa:a4:3f:f8:f0:7b:a2:3a:
65:52:72:75:c5:34:09:52:a4:0c:af:02:e6:2b:c5:
5d:0c:27:fc:80:f0:d2:8b:29:a7:d4:d8:87:b7:b1:
c3:b9:62:4b:bc:49:6e:46:5c:2d:aa:87:1b:2e:af:
1f:aa:62:1d:b8:d2:d6:0a:1b:ed:30:61:81:08:00:
f3:81:74:3e:2d:66:87:c5:a3:35:36:f7:c8:1f:1f:
49:86:ef:71:fe:ef:8f:6f:2b:29:71:3b:d5:27:87:
52:6f:f0:3a:5c:5c:5a:ee:40:d5:7b:bb:ef:91:18:
c4:88:a2:9d:b8:f9:7a:c4:55:b0:21:1c:ca:1d:d4:
5a:8d:e8:ca:bd:3f:58:cf:2e:aa:68:1c:8b:b6:4f:
4b:31:1b:2d:d0:eb:5a:92:5d:18:b6:57:7f:91:79:
2c:41:b3:f9:17:7e:54:a4:23:39:78:4a:26:5c:a3:
87:8e:d0:70:96:ea:8e:15:fd:43:16:ef:fc:23:66:
fb:02:64:ab:d7:15:a4:7c:11:2a:4e:c0:0b:ed:ad:
ee:5b:ac:e0:76:cc:74:35:10:f1:be:30:94:cc:52:
10:9d:e6:e2:d7:95:13:16:a8:03:50:79:c5:35:5e:
d7:5f:6c:d5:f8:7c:0e:57:e3:72:11:61:3f:41:08:
79:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:EE:C7:5B:39:01:2D:9F:3E:3A:27:77:CC:5B:72:06:DB:49:85:9A
X509v3 Authority Key Identifier:
keyid:EB:F5:83:88:C6:31:C9:77:EA:51:FC:AD:B5:0C:D2:0A:74:92:F5:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6_WDiMYxyXfqUfyttQzSCnSS9ec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/1c8bee-8df8-4102-a4ec-4f1ade1da20d/1/1--7HWzkBLZ8-Oid3zFtyBttJhZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/1c8bee-8df8-4102-a4ec-4f1ade1da20d/1/6_WDiMYxyXfqUfyttQzSCnSS9ec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.200.86.0/24
IPv6:
2a02:f980::/32
Signature Algorithm: sha256WithRSAEncryption
8e:26:3e:21:70:e8:41:d5:d3:6e:a6:4a:d6:c1:27:a3:26:8b:
2e:57:e0:57:f3:60:14:75:8c:4d:e5:46:83:96:df:c2:09:06:
ff:c9:36:30:af:e2:60:24:4a:12:41:f2:3c:43:aa:1e:6f:cf:
48:5d:83:96:71:d5:20:46:42:c3:ea:f9:ee:17:d9:2b:d6:36:
46:bf:bd:7e:ee:e8:ae:7a:b0:7f:8c:27:94:2e:40:e4:f9:9c:
16:c9:38:73:fa:5d:cd:25:e5:58:4a:d1:d0:8e:2e:21:34:65:
fa:53:39:9b:9f:c8:b2:4d:d5:63:f0:48:e1:db:65:2a:b3:b5:
1b:d0:7a:d3:b9:ea:bb:9f:7e:df:77:b8:7c:82:02:5c:d0:ff:
3d:21:ed:c8:9d:f6:cf:c4:e7:3c:fc:1e:f1:59:fe:81:9c:e7:
8e:7a:cf:30:a7:1b:8d:9b:81:0e:32:91:c5:e3:19:f2:a8:b5:
13:16:72:6c:19:81:63:4c:0b:d4:b4:0a:9f:73:f5:25:d6:0e:
b5:b7:bf:6c:23:c8:80:eb:c5:c4:0e:75:0b:3d:30:85:2d:15:
11:06:3a:99:17:aa:09:35:8e:f5:33:0a:86:71:6b:7c:8f:3c:
d3:51:aa:15:ed:cc:e0:3c:88:12:b8:a3:0f:14:71:e8:7a:e8:
dc:df:57:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:33 2023 by rpki-client on console-ams.rpki-client.org