Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/_zXQkdsP4PF-ICL64NQnP0AnMrU.roa
File: _zXQkdsP4PF-ICL64NQnP0AnMrU.roa (raw, json)
Hash identifier: 4P9SfifrucTYPuWgOl5o8SMM8WMSlRLieWm8D+lgIVQ=
Subject key identifier: FF:35:D0:91:DB:0F:E0:F1:7E:20:22:FA:E0:D4:27:3F:40:27:32:B5
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 17B8CF7C
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/_zXQkdsP4PF-ICL64NQnP0AnMrU.roa
Signing time: Tue 22 Mar 2022 08:57:58 +0000
ROA not before: Tue 22 Mar 2022 08:57:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197309
IP address blocks: 37.230.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 397987708 (0x17b8cf7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Mar 22 08:57:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff35d091db0fe0f17e2022fae0d4273f402732b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:74:7a:eb:3d:1f:42:b5:3a:51:9b:93:6d:c8:
19:10:f9:e3:2c:21:d8:40:05:13:c6:ea:be:93:52:
e9:11:6b:2e:d4:e5:fd:f9:aa:a3:35:15:d0:c0:a2:
f3:2c:dd:92:09:d0:a2:e8:38:71:25:1c:af:05:60:
1e:dc:df:74:75:b6:29:5f:f3:1e:86:00:ed:38:89:
f5:64:18:b4:b3:b3:3e:57:8b:1e:0b:f6:d9:03:97:
6e:52:2b:02:83:8d:e8:7f:f1:3d:b2:f5:c0:d7:49:
5a:ee:32:31:9f:e9:1b:0d:39:c1:fe:15:6a:54:0b:
4c:c2:f3:53:8d:a3:12:31:ae:f6:02:5e:2b:b2:f8:
03:c6:14:cf:bd:9f:8a:79:f5:66:d3:96:e3:26:f0:
14:b7:5e:66:61:5e:49:51:29:20:22:5b:bc:c8:6d:
70:83:15:95:af:ae:ae:ca:d0:f9:e5:a2:65:9b:3a:
25:88:6c:b5:54:ed:cd:fd:b6:7c:41:de:3c:ec:61:
27:fb:f9:c2:0a:dc:56:d4:d2:a9:09:58:fb:f0:fd:
94:13:86:4d:19:8d:6c:b3:8d:b0:7f:fe:44:d0:84:
77:50:83:2d:7c:17:0c:b2:2b:ee:44:94:40:fd:6e:
73:23:6a:d6:45:fe:ec:cc:b9:3e:ef:3e:62:c8:8d:
72:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:35:D0:91:DB:0F:E0:F1:7E:20:22:FA:E0:D4:27:3F:40:27:32:B5
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/_zXQkdsP4PF-ICL64NQnP0AnMrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.230.162.0/24
Signature Algorithm: sha256WithRSAEncryption
28:d9:e9:0d:86:e3:59:2b:29:e8:1c:29:32:88:00:6b:ad:68:
97:4c:4d:dc:31:ff:8a:2e:5e:24:60:db:5f:1f:c2:05:22:5f:
10:0c:76:1f:80:2d:e7:b0:9a:90:f9:b9:d3:8a:ec:9f:e6:92:
de:21:d6:d2:da:c0:e6:c4:9c:77:74:02:cd:43:69:8c:2c:fd:
7a:f6:ca:ea:36:5a:1e:f1:52:a5:ce:58:84:a7:5e:0f:d7:39:
75:a8:3b:89:fb:d3:7d:72:9e:5c:00:be:85:af:8c:c4:07:85:
10:89:44:79:21:45:82:b2:53:c6:a8:69:c7:0a:79:d9:a2:6a:
55:d9:0c:4d:45:25:c4:d2:53:5b:a0:84:59:7d:73:b6:25:f7:
4e:1e:1e:bc:9e:02:ae:d2:f1:a4:b5:65:77:1c:5d:69:6f:f3:
c1:1b:b8:8f:2e:ce:0b:ba:6a:2b:f4:32:23:4d:17:32:0a:25:
b8:63:25:85:00:47:36:56:1c:3c:c0:ef:3f:32:64:e3:8e:1a:
e5:bc:b6:57:1f:c1:dc:4d:5e:87:87:a4:aa:cc:02:e8:52:71:
18:34:71:00:d8:35:74:72:b5:e3:72:db:89:13:c3:00:91:1a:
0a:dc:38:53:42:38:45:60:3d:28:1a:84:4b:b5:56:79:43:8c:
53:75:40:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org