Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/69c389-17c9-4461-a390-7aa290e857e9/1/Tavrf_3HcgGLSHjPz-vHTkkIqIc.roa
File: Tavrf_3HcgGLSHjPz-vHTkkIqIc.roa (raw, json)
Hash identifier: Wwno6nq4ezJ1FymUAbrqZTeDLSon8YOyzu7I1rcVm/8=
Subject key identifier: 4D:AB:EB:7F:FD:C7:72:01:8B:48:78:CF:CF:EB:C7:4E:49:08:A8:87
Certificate issuer: /CN=19ac1498860e2bb0958173854bd04c869a369017
Certificate serial: 01837EED4C96AFA2E8359D5FB44B0CC3BF61
Authority key identifier: 19:AC:14:98:86:0E:2B:B0:95:81:73:85:4B:D0:4C:86:9A:36:90:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GawUmIYOK7CVgXOFS9BMhpo2kBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/69c389-17c9-4461-a390-7aa290e857e9/1/Tavrf_3HcgGLSHjPz-vHTkkIqIc.roa
Signing time: Tue 27 Sep 2022 12:30:24 +0000
ROA not before: Tue 27 Sep 2022 12:30:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 37.143.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7e:ed:4c:96:af:a2:e8:35:9d:5f:b4:4b:0c:c3:bf:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19ac1498860e2bb0958173854bd04c869a369017
Validity
Not Before: Sep 27 12:30:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4dabeb7ffdc772018b4878cfcfebc74e4908a887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:99:45:5b:3b:e9:0f:ae:8a:69:5d:67:d2:0f:
ec:c9:92:48:b7:c8:fd:d6:d9:57:e5:b7:9e:f0:b6:
e9:f7:e3:fe:ae:1d:49:f0:ea:4f:55:e6:85:1e:7d:
16:57:dc:27:56:29:a7:fa:df:31:93:ef:33:ba:4c:
09:dc:0b:5a:dc:81:d7:85:39:75:5c:f4:aa:b7:19:
20:4d:95:7d:e3:19:39:97:79:11:28:22:07:50:51:
34:cf:5d:96:4b:88:bb:b3:89:60:93:fd:57:3b:50:
d7:db:52:3b:9d:e8:3f:1a:2b:c6:b0:7d:ff:da:5e:
b3:ee:2c:73:4d:a9:ec:77:69:6b:d0:17:d8:75:8b:
51:39:35:76:de:34:fe:88:a1:3f:b2:36:e6:ca:8f:
78:44:1a:06:b8:c6:42:cf:41:12:1a:3e:76:72:c4:
30:ce:4f:f6:ce:0b:72:a9:2e:f8:33:bb:5c:a1:de:
ae:5b:dc:bf:53:f5:a1:e7:1c:ae:02:c8:96:be:f5:
fe:7d:62:36:36:09:5b:9d:65:39:1e:cb:72:45:eb:
ce:30:d1:57:fc:2a:f6:67:4c:cb:bb:68:ad:84:14:
f5:2e:10:e9:1a:9b:b3:a8:64:b9:f2:37:90:f9:0a:
93:66:34:88:35:79:2e:04:8f:c9:00:7b:1e:34:14:
91:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:AB:EB:7F:FD:C7:72:01:8B:48:78:CF:CF:EB:C7:4E:49:08:A8:87
X509v3 Authority Key Identifier:
keyid:19:AC:14:98:86:0E:2B:B0:95:81:73:85:4B:D0:4C:86:9A:36:90:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GawUmIYOK7CVgXOFS9BMhpo2kBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/69c389-17c9-4461-a390-7aa290e857e9/1/Tavrf_3HcgGLSHjPz-vHTkkIqIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/69c389-17c9-4461-a390-7aa290e857e9/1/GawUmIYOK7CVgXOFS9BMhpo2kBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.131.0/24
Signature Algorithm: sha256WithRSAEncryption
76:2f:17:e5:8e:b6:11:87:54:7e:dd:2d:ff:f2:78:90:75:ea:
6a:11:39:f0:0d:f3:8c:0c:72:b3:39:17:82:18:3d:b7:ce:92:
cd:ec:20:4a:d0:aa:c4:40:56:ab:68:06:a4:ff:f6:5c:5a:95:
ea:36:c4:0c:ef:53:6e:30:e2:f1:25:ba:a7:3f:07:c7:76:85:
90:bf:8f:c6:f3:0c:f5:45:a7:7f:df:f2:77:4b:cd:45:a2:5d:
5c:b2:05:32:74:e2:75:7e:c5:e6:79:3a:0d:90:42:7c:54:0c:
40:ae:16:e3:46:38:ed:5d:11:8a:dc:1f:77:a7:9b:4e:87:64:
63:27:eb:3d:0f:23:76:63:50:9f:56:81:cf:1e:22:b9:f0:06:
72:19:a3:79:43:19:34:1c:bf:cd:7d:0b:08:9f:16:f6:b8:fa:
53:38:79:6a:1b:2c:6f:19:6f:31:52:4a:b3:32:09:d5:41:61:
4a:92:0b:cd:2f:b4:2c:4d:0f:0b:03:ca:ee:db:81:db:67:ae:
56:19:33:0e:05:42:d5:0e:14:ee:57:ed:f7:03:bb:49:d7:b1:
c9:9b:a5:01:0c:c7:8c:a8:0d:81:f4:3c:3e:c8:34:15:7d:82:
c4:aa:82:e1:21:55:54:1e:c1:24:a0:be:60:07:26:af:20:fd:
d8:a8:88:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:13 2023 by rpki-client on console-ams.rpki-client.org