Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/b2064b-be09-43d9-b087-a4e991b0f144/1/xcIz-opXx3u2JEl5HmZWwo_Hs-Y.roa
File: xcIz-opXx3u2JEl5HmZWwo_Hs-Y.roa (raw, json)
Hash identifier: Y7Jvgixf+ybsTqB/GbNXndriy5pO/upmk9j8cZ4FNOI=
Subject key identifier: C5:C2:33:FA:8A:57:C7:7B:B6:24:49:79:1E:66:56:C2:8F:C7:B3:E6
Certificate issuer: /CN=02930f8c688c04d17433a2b9c7249bc625bce316
Certificate serial: 018413DC8F387F0675BB25E0A2D714414311
Authority key identifier: 02:93:0F:8C:68:8C:04:D1:74:33:A2:B9:C7:24:9B:C6:25:BC:E3:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApMPjGiMBNF0M6K5xySbxiW84xY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/b2064b-be09-43d9-b087-a4e991b0f144/1/xcIz-opXx3u2JEl5HmZWwo_Hs-Y.roa
Signing time: Wed 26 Oct 2022 10:35:32 +0000
ROA not before: Wed 26 Oct 2022 10:35:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50889
IP address blocks: 37.186.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:13:dc:8f:38:7f:06:75:bb:25:e0:a2:d7:14:41:43:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02930f8c688c04d17433a2b9c7249bc625bce316
Validity
Not Before: Oct 26 10:35:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5c233fa8a57c77bb62449791e6656c28fc7b3e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:9d:32:27:8f:e3:1b:75:74:93:c5:48:74:98:
13:69:ac:35:d1:a9:1c:9f:08:a8:d9:47:db:d6:f5:
d4:91:33:06:2e:dc:ac:13:12:01:53:51:76:b8:68:
77:7b:d7:bb:f8:bd:21:1e:e4:c6:09:58:51:12:30:
af:7b:55:f7:6c:0b:89:83:52:c8:80:f3:c1:1a:af:
22:f6:09:f2:06:07:78:7d:47:d0:af:db:49:41:07:
5e:e7:83:94:70:a4:b0:6e:d3:77:21:bc:f8:14:ac:
57:00:17:5d:ee:85:0b:65:30:e6:56:95:54:f2:0c:
f4:ad:15:1c:41:ed:bb:d4:52:a8:0b:4f:28:e8:27:
7f:df:0e:f9:87:ed:ee:78:df:a3:da:2e:99:9c:6a:
5d:fc:dd:13:9e:26:d3:6e:9f:8f:6a:3b:ba:dc:77:
d6:89:a3:8c:57:bd:37:9e:49:af:ae:56:c1:a4:7e:
c1:6d:1d:af:ad:3b:c8:2f:5e:65:50:b0:c5:28:f5:
0e:0c:a9:89:8e:4f:da:ed:5e:7c:ec:ea:87:ca:f3:
ff:ae:f5:8c:44:ff:80:df:19:9e:fc:ab:70:fd:38:
36:32:33:a1:fe:35:cd:9a:24:09:3b:06:ec:19:54:
8f:58:aa:aa:d6:37:99:c3:b9:e1:70:d1:46:21:80:
f7:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:C2:33:FA:8A:57:C7:7B:B6:24:49:79:1E:66:56:C2:8F:C7:B3:E6
X509v3 Authority Key Identifier:
keyid:02:93:0F:8C:68:8C:04:D1:74:33:A2:B9:C7:24:9B:C6:25:BC:E3:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApMPjGiMBNF0M6K5xySbxiW84xY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/b2064b-be09-43d9-b087-a4e991b0f144/1/xcIz-opXx3u2JEl5HmZWwo_Hs-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/b2064b-be09-43d9-b087-a4e991b0f144/1/ApMPjGiMBNF0M6K5xySbxiW84xY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.186.111.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:07:92:87:2c:cb:b8:e5:d5:74:33:60:41:f6:45:ea:f9:31:
ec:c1:e7:15:f3:6d:f3:46:f8:ce:bb:88:1c:5e:e7:2f:33:d7:
75:6c:66:a7:c9:c2:4b:09:2b:72:dd:69:6e:f6:71:c0:a4:b9:
71:99:95:4c:b6:42:08:23:e2:c8:19:5f:20:22:da:f7:e1:16:
26:93:53:3d:7f:b7:1e:c7:74:aa:59:15:01:64:9f:57:03:30:
a2:97:2a:8b:30:86:40:9e:f1:08:30:41:56:15:17:5a:64:6f:
95:89:38:c2:db:c7:8f:c0:fb:88:d0:cb:bc:a3:4c:50:29:9f:
54:56:6b:44:d4:1a:11:a8:2b:1e:21:ba:1e:63:83:e4:d5:a8:
66:95:4b:5e:75:a8:2f:84:3c:e1:e1:df:17:3d:f2:f7:b6:03:
e9:a4:bf:d3:01:89:3a:72:50:33:6d:c8:6f:aa:6c:4b:95:9c:
ef:5d:d0:c7:5a:6d:cb:e5:08:2e:8a:5f:1a:7e:52:f6:13:ac:
de:93:41:9f:a2:7b:29:cd:f6:0a:f6:01:a6:67:56:ec:3a:6a:
36:ba:56:1d:cb:4e:92:d5:4b:0d:54:7b:e3:2d:59:17:4f:7f:
c5:b2:7a:03:82:75:ab:7e:aa:13:f1:0a:1c:13:c1:5a:16:6c:
7f:ba:8c:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:18 2023 by rpki-client on console-ams.rpki-client.org