Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/0v20A8mnpDfCsRsC8J-bgrwxwFo.roa
File: 0v20A8mnpDfCsRsC8J-bgrwxwFo.roa (raw, json)
Hash identifier: QwVEQV0nTDXr+8+ng0fro5W9LXtGjouElsU1U+O6TDc=
Subject key identifier: D2:FD:B4:03:C9:A7:A4:37:C2:B1:1B:02:F0:9F:9B:82:BC:31:C0:5A
Certificate issuer: /CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Certificate serial: 018550C71477E91244B2992521C504DA21D5
Authority key identifier: AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/0v20A8mnpDfCsRsC8J-bgrwxwFo.roa
Signing time: Mon 26 Dec 2022 23:31:42 +0000
ROA not before: Mon 26 Dec 2022 23:31:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 37.221.65.0/24 maxlen: 24
37.221.64.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:50:c7:14:77:e9:12:44:b2:99:25:21:c5:04:da:21:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Validity
Not Before: Dec 26 23:31:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2fdb403c9a7a437c2b11b02f09f9b82bc31c05a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a0:f2:95:60:df:39:b2:c0:ad:ef:c7:1a:e3:
4c:40:aa:1f:5c:59:87:31:f9:16:e5:79:97:20:81:
a8:be:48:0a:2d:e3:2b:0d:6a:1e:f7:9c:4d:7b:01:
09:dd:74:b9:a0:1e:be:ee:a9:d3:d0:05:a7:61:c9:
4f:1e:ea:79:ee:7e:99:c9:0f:6a:7b:db:17:a9:3c:
5f:18:76:f1:68:5f:db:54:d8:6c:8b:c4:f0:58:5d:
57:ad:9d:69:f6:ca:c2:2c:41:9a:dd:ac:65:f1:a2:
23:61:d2:ae:08:45:d6:39:99:97:70:60:55:1e:01:
18:62:88:f2:47:4e:ea:8c:d8:94:33:16:87:dd:f0:
aa:d2:2f:c6:7f:19:5a:ed:c4:bc:a6:61:58:b5:d8:
c4:1d:4e:be:4d:0e:36:d1:82:a1:dc:2f:37:87:da:
f6:c6:93:3b:7d:78:91:fc:db:51:be:d7:03:d9:af:
da:f7:cd:a3:5c:6a:76:63:d2:31:7e:9a:18:86:aa:
ad:0f:31:b9:d6:ee:fb:95:75:61:fd:85:bc:bf:f4:
40:d1:58:e1:9b:04:1b:62:d7:8f:78:92:70:22:a5:
f8:e0:8e:a4:9c:70:d6:b6:6a:15:5c:b3:a4:3c:60:
95:cd:eb:a3:ca:f6:d4:dc:c7:cf:ad:e5:fa:f2:96:
2d:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:FD:B4:03:C9:A7:A4:37:C2:B1:1B:02:F0:9F:9B:82:BC:31:C0:5A
X509v3 Authority Key Identifier:
keyid:AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/0v20A8mnpDfCsRsC8J-bgrwxwFo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/raJar-Ophw6VJK-gJlmH7VpaTaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.64.0/22
Signature Algorithm: sha256WithRSAEncryption
73:c8:4d:28:31:5f:a4:7a:e8:84:fd:fd:d5:a1:fb:e5:a6:27:
79:37:d2:f6:7d:c0:75:a6:cf:ab:01:d0:2c:ed:f2:4c:9f:aa:
4a:a7:4e:3b:57:05:5e:58:a5:3b:a6:49:d2:c9:37:16:a7:2b:
1f:ac:7e:9a:f0:62:f4:fe:4a:d2:a5:9c:bb:34:42:a7:9c:dd:
1d:83:af:a0:4c:b5:ed:c8:a6:7e:8c:f0:7b:f8:fd:c9:42:1d:
05:0f:ce:9d:2f:47:e5:02:7f:91:5b:cf:0b:c9:7c:f8:60:4b:
8f:57:1f:7f:6c:ab:c3:e2:67:33:a2:eb:22:53:f6:e0:cb:f2:
b4:d4:4c:c7:1c:6d:07:48:68:10:6d:6b:8a:7b:8f:5d:cb:da:
cf:9e:e7:c9:4c:c2:70:43:e5:fa:8f:bd:e5:69:09:bc:0e:8a:
56:40:bd:2f:18:b0:ba:10:4f:8e:73:b6:40:b7:31:3b:e4:d9:
41:9e:42:d9:47:2c:2d:48:4b:94:83:cf:0a:46:db:e7:69:be:
91:c5:77:94:e1:83:10:0c:e9:02:9d:53:8e:7b:ba:84:80:fe:
4a:65:7c:cc:c0:ae:e8:3e:6c:27:34:68:51:79:04:ee:f3:ab:
00:54:d1:93:e0:ea:81:67:99:89:68:24:68:6e:97:a0:71:8a:
06:e2:5d:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:41 2024 by rpki-client on console-ams.rpki-client.org