Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/f6f339-8455-4db4-a650-7f78a3baa7c1/1/aMvO8ntBuGe6PsxUzVfr63LKI94.roa
File: aMvO8ntBuGe6PsxUzVfr63LKI94.roa (raw, json)
Hash identifier: OR08wVZ3ddZPDHBxvbgtdggpJa1C5Q/AMnDTnu9VJ60=
Subject key identifier: 68:CB:CE:F2:7B:41:B8:67:BA:3E:CC:54:CD:57:EB:EB:72:CA:23:DE
Certificate issuer: /CN=2688ef373f8f00e01c25cf924b4f2e8ec6a219d1
Certificate serial: 4154DED2
Authority key identifier: 26:88:EF:37:3F:8F:00:E0:1C:25:CF:92:4B:4F:2E:8E:C6:A2:19:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JojvNz-PAOAcJc-SS08ujsaiGdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/f6f339-8455-4db4-a650-7f78a3baa7c1/1/aMvO8ntBuGe6PsxUzVfr63LKI94.roa
Signing time: Sat 01 Jan 2022 11:57:57 +0000
ROA not before: Sat 01 Jan 2022 11:57:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8820
IP address blocks: 37.130.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1096081106 (0x4154ded2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2688ef373f8f00e01c25cf924b4f2e8ec6a219d1
Validity
Not Before: Jan 1 11:57:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68cbcef27b41b867ba3ecc54cd57ebeb72ca23de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:bc:8b:4f:78:ff:11:84:ee:d3:a3:c9:9e:23:
d8:30:66:7c:2c:0c:89:ab:56:82:8d:46:32:ee:a0:
26:e5:89:64:1b:99:21:22:7e:f0:49:06:a6:c6:a4:
33:5c:42:99:27:5a:4b:d0:71:76:2d:a8:12:1b:58:
fe:6c:1e:70:a1:6d:58:11:54:72:38:15:80:39:63:
d6:0c:b0:4b:12:f5:2f:74:ab:c0:6c:54:60:b4:eb:
3c:ac:60:b8:31:b8:51:38:b6:bd:4f:26:e4:5e:de:
f1:81:8d:d6:ea:ea:d4:89:56:1e:a0:7d:d0:73:d9:
60:71:06:ac:e4:7a:22:a4:c2:e4:9d:c5:57:45:6f:
55:cd:ce:a9:c5:c0:7a:83:2f:08:79:5d:b6:da:d4:
d5:23:08:be:b2:2e:1e:6c:e2:b1:42:51:c7:03:c3:
7c:10:20:8f:f3:b9:84:60:00:ad:f8:61:d0:79:72:
38:2e:a7:61:c0:e3:32:8f:e9:71:b5:0c:be:c4:a7:
a6:68:77:d1:ed:46:04:91:30:7a:ff:c2:c0:b4:27:
00:a9:10:2e:1b:45:68:ad:57:73:f9:1e:3f:b3:73:
d1:64:27:99:64:55:33:7f:00:1a:2b:74:32:cc:f6:
5c:51:b1:79:3f:83:0a:b2:ce:5e:87:4f:92:26:31:
b1:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:CB:CE:F2:7B:41:B8:67:BA:3E:CC:54:CD:57:EB:EB:72:CA:23:DE
X509v3 Authority Key Identifier:
keyid:26:88:EF:37:3F:8F:00:E0:1C:25:CF:92:4B:4F:2E:8E:C6:A2:19:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JojvNz-PAOAcJc-SS08ujsaiGdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f6f339-8455-4db4-a650-7f78a3baa7c1/1/aMvO8ntBuGe6PsxUzVfr63LKI94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f6f339-8455-4db4-a650-7f78a3baa7c1/1/JojvNz-PAOAcJc-SS08ujsaiGdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.130.137.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:c6:3a:da:14:81:6a:a2:3c:2c:c1:1f:23:a4:aa:84:65:0a:
21:01:1d:aa:21:ac:de:c6:08:ce:c0:75:74:0b:a7:18:07:be:
80:46:7e:c6:59:37:c2:20:be:72:c1:02:87:90:ac:0a:fc:87:
12:64:9f:c8:54:6e:09:1d:38:2c:62:da:2b:44:dd:6d:5c:da:
9d:6b:30:54:ae:91:61:e0:1e:7d:d4:af:b5:3b:7f:a6:68:fb:
93:4d:77:53:a7:eb:18:3c:b9:ef:c6:49:20:7d:bd:0d:02:a8:
6a:aa:16:7f:6c:9e:0b:b2:f0:8b:5f:38:80:4c:ed:05:e1:ee:
fd:73:d5:e6:9a:01:7f:1c:d1:5b:e7:04:22:91:69:0b:92:e9:
46:db:c3:cd:b0:0c:11:48:7d:a0:59:d9:6d:2a:b5:18:07:10:
e0:78:b3:b6:0c:fa:c1:3d:09:2e:67:4d:ac:17:58:fd:17:6c:
ec:fb:ea:7d:d3:27:b6:5d:e5:2a:96:8f:89:4a:72:83:09:38:
69:3e:ea:fe:e5:fd:81:20:ec:20:bb:c4:29:8f:84:de:fe:29:
03:81:87:68:d0:59:40:c2:47:81:48:57:92:cb:68:f6:7b:4a:
82:0f:35:3c:94:24:64:e3:81:7e:78:04:b2:d6:d3:88:62:fe:
44:0b:f5:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:01 2023 by rpki-client on console-ams.rpki-client.org