Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/dZSv47tE04d5mjDcx0K7j-r5MkQ.roa
File: dZSv47tE04d5mjDcx0K7j-r5MkQ.roa (raw, json)
Hash identifier: i+zb9eDEodFVzExZT9ZWcg1hKDfiKD9MrDxB1wCf7Lg=
Subject key identifier: 75:94:AF:E3:BB:44:D3:87:79:9A:30:DC:C7:42:BB:8F:EA:F9:32:44
Certificate issuer: /CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Certificate serial: 0743A7AC
Authority key identifier: AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/dZSv47tE04d5mjDcx0K7j-r5MkQ.roa
Signing time: Sat 01 Jan 2022 03:58:00 +0000
ROA not before: Sat 01 Jan 2022 03:58:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 37.221.64.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121874348 (0x743a7ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Validity
Not Before: Jan 1 03:58:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7594afe3bb44d387799a30dcc742bb8feaf93244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ac:d4:5d:df:fc:85:99:21:96:1a:42:6c:00:
cd:9e:bb:ad:8a:70:dc:b0:90:c4:1c:72:65:99:f1:
83:94:66:c3:49:bc:cc:d3:4d:e1:0e:54:99:98:fa:
26:24:e3:e8:99:e9:6c:3b:72:e7:79:26:32:dc:13:
22:1c:c6:23:23:20:c3:fa:41:6b:e8:d4:c0:70:f9:
c7:7b:4e:5c:b8:20:48:8c:55:fc:18:49:a6:5b:4a:
8c:9c:14:23:ff:f0:8a:f9:27:70:15:23:f8:4a:6d:
a8:c7:29:a4:e0:f2:29:02:bd:78:a3:00:a3:62:3d:
44:8d:22:f9:a8:30:23:d4:f3:d2:39:14:69:9d:fb:
b2:1e:5e:35:2b:be:50:47:b9:40:2b:fd:17:9f:5c:
e6:b6:9e:b7:ab:20:3f:94:5c:a0:ec:42:29:fa:f7:
29:f8:c6:d9:fc:97:a7:5b:3f:79:ed:40:aa:e1:23:
d6:4e:8d:a2:19:a9:f8:1e:7c:a8:1e:82:e5:4f:2d:
11:6a:bf:c8:b2:e8:dd:95:2a:bb:e8:d5:8e:9f:3b:
76:17:45:f6:f7:45:14:b9:e4:ff:3a:f0:41:9a:8d:
bb:98:88:6d:d9:28:74:09:6d:40:25:d9:67:4e:ef:
fa:c1:81:0e:90:51:ce:48:5d:3d:1d:e1:81:1c:5e:
4a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:94:AF:E3:BB:44:D3:87:79:9A:30:DC:C7:42:BB:8F:EA:F9:32:44
X509v3 Authority Key Identifier:
keyid:AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/dZSv47tE04d5mjDcx0K7j-r5MkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/raJar-Ophw6VJK-gJlmH7VpaTaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.64.0/22
Signature Algorithm: sha256WithRSAEncryption
56:37:77:d0:9f:22:43:81:e5:15:c9:e5:27:37:93:10:7b:b0:
05:b5:ce:9d:2a:0a:78:0e:73:2f:e2:16:5e:6d:36:cb:d3:87:
09:3d:12:d1:7a:5f:c1:6b:af:4e:30:e0:86:6b:8a:d8:18:ee:
c6:4a:ac:dd:4d:b2:68:ab:f6:12:7d:d1:38:78:7e:de:ed:9f:
69:27:04:d2:5c:65:b6:f8:5d:0b:a5:7b:80:98:23:e2:cc:28:
80:04:b2:4b:29:99:5b:78:0d:8b:49:3b:84:2b:ce:1e:5e:29:
62:12:b5:88:b1:e0:99:17:89:30:d9:3d:96:b3:1d:43:40:96:
d2:d0:78:15:ae:d2:ae:2a:38:2c:4b:aa:1e:2e:85:01:9c:91:
6a:ae:fd:27:95:69:90:57:46:8a:7b:3d:1c:70:db:a8:e8:38:
ae:d7:97:c4:00:2d:13:43:6c:89:9d:a3:c1:36:85:44:a7:3f:
fe:11:3d:9b:2f:d8:47:8e:2d:20:77:18:3f:0b:bc:60:ac:47:
3b:8b:90:89:3a:ff:97:d7:67:4f:2a:38:0b:6e:bd:6e:62:10:
ba:29:75:5e:d2:41:40:5e:4b:e9:c8:4c:70:e6:28:78:40:28:
2a:ba:2f:4a:18:42:7b:65:37:6b:53:43:e8:70:1b:22:11:09:
d9:07:5c:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:01 2024 by rpki-client on console-fra.rpki-client.org