Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/pyaE5KXxAClQBuw2IwmDCNORiUc.roa
File: pyaE5KXxAClQBuw2IwmDCNORiUc.roa (raw, json)
Hash identifier: TGJRvMcWsbnJIR3FB4vLwB5vwygLDS1ZwwszkmIDUhU=
Subject key identifier: A7:26:84:E4:A5:F1:00:29:50:06:EC:36:23:09:83:08:D3:91:89:47
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 18C380A0
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/pyaE5KXxAClQBuw2IwmDCNORiUc.roa
Signing time: Tue 28 Jun 2022 13:30:03 +0000
ROA not before: Tue 28 Jun 2022 13:30:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48275
IP address blocks: 37.18.11.0/24 maxlen: 24
37.18.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 415465632 (0x18c380a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jun 28 13:30:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a72684e4a5f100295006ec3623098308d3918947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b4:4c:13:7f:d1:e4:55:41:52:be:64:de:7d:
4a:e8:d7:a3:33:8d:5b:05:30:7c:88:9c:4c:ed:d3:
0e:cf:34:8d:d5:93:45:c2:18:f6:02:1f:3f:06:0b:
0b:5a:c6:ca:eb:0b:06:92:47:52:8d:41:d1:35:db:
4a:53:ae:a2:09:33:61:0a:de:c9:96:eb:cc:3b:2c:
de:48:3d:e1:54:21:0f:27:a1:42:39:ef:22:d8:8a:
2c:7c:00:48:f1:a0:1b:88:0b:b5:bf:a7:1f:1d:b9:
1b:fc:f3:84:28:cb:35:1f:9b:ee:c9:31:ab:4f:80:
aa:f4:c7:57:b1:22:02:a0:2d:f4:98:51:c0:a0:24:
43:40:2f:11:56:ce:ec:1c:ab:41:ca:f7:51:45:c0:
4f:28:92:2d:7d:7e:5d:e1:ff:d7:9c:4b:d5:6a:42:
cd:aa:76:bf:30:08:5e:fa:1b:6f:a1:05:d1:5b:18:
4f:fd:1d:4a:b6:0d:01:29:2e:79:e2:26:2a:5b:12:
60:e1:55:ee:19:a0:ee:fc:38:61:7d:02:be:3d:a3:
3d:cf:36:49:9c:be:79:ef:51:fd:10:d2:a7:17:52:
2b:19:3b:bc:97:e4:f2:07:b8:44:48:d0:8e:c4:aa:
b9:9f:94:b2:66:b0:99:8e:0f:b5:6a:2e:e0:0e:fe:
99:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:26:84:E4:A5:F1:00:29:50:06:EC:36:23:09:83:08:D3:91:89:47
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/pyaE5KXxAClQBuw2IwmDCNORiUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.11.0-37.18.12.255
Signature Algorithm: sha256WithRSAEncryption
1f:c5:f6:64:20:d7:41:1b:90:93:5a:e1:c5:bb:b2:8e:84:67:
fa:68:ac:a8:6d:7d:f5:4e:5a:84:8a:fd:dc:4a:51:f8:d3:eb:
e4:e9:00:b2:7c:af:1d:f4:0f:34:82:dd:b8:3d:95:2e:32:31:
d4:bb:17:f5:40:52:ec:ba:d9:0a:59:1f:39:31:0e:44:de:bb:
c1:10:b4:ca:1c:ac:37:e1:20:5e:4b:f5:58:16:97:45:04:82:
ea:29:63:1f:f3:21:f7:c7:ff:71:0b:45:70:32:76:b2:4c:5f:
56:07:83:bb:b8:e5:da:e9:09:83:b9:63:b4:e5:cb:4b:05:65:
de:5d:a5:0f:c8:43:9b:5b:c1:fc:42:18:5e:25:55:5c:ee:c4:
29:86:50:7b:fc:4e:7c:08:a3:cd:8e:9d:94:01:c9:05:b3:b7:
08:a7:74:55:70:d3:96:aa:36:98:88:d6:68:93:c0:02:c0:bc:
86:03:6b:21:01:31:91:0f:52:aa:a5:9c:8b:2a:a3:97:55:42:
23:6e:e6:ca:b6:6e:9e:83:77:e1:b4:8e:aa:f1:87:ea:19:56:
c5:2a:fc:ac:bc:c6:2d:0b:fb:e1:d0:19:ae:9b:cd:1e:c7:54:
d5:04:6b:56:19:a0:98:06:da:ec:e1:4c:61:df:5d:2a:c4:90:
fb:13:5f:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org