Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/gMV0Vvzq30fKcrqe-4RbhvMO9D4.roa
File: gMV0Vvzq30fKcrqe-4RbhvMO9D4.roa (raw, json)
Hash identifier: KnW+iWUYWexcjCaTZTUfxfuW9IFoRCD0X6ap6oaTSO8=
Subject key identifier: 80:C5:74:56:FC:EA:DF:47:CA:72:BA:9E:FB:84:5B:86:F3:0E:F4:3E
Certificate issuer: /CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Certificate serial: 0472F36B
Authority key identifier: 0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/gMV0Vvzq30fKcrqe-4RbhvMO9D4.roa
Signing time: Sat 01 Jan 2022 08:57:35 +0000
ROA not before: Sat 01 Jan 2022 08:57:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34702
IP address blocks: 37.252.4.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74642283 (0x472f36b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Validity
Not Before: Jan 1 08:57:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80c57456fceadf47ca72ba9efb845b86f30ef43e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:09:f4:7a:60:79:b4:e2:fb:2f:16:a2:ba:42:
c4:13:0e:c0:e1:a1:d9:23:09:b0:00:5f:d7:6e:07:
ec:98:1b:73:20:7e:f0:df:52:f9:2b:58:0b:de:c5:
2d:9e:87:89:fa:92:1f:9d:23:7b:ed:a3:c5:d4:99:
1b:85:43:92:9a:97:e1:98:17:c3:b1:8a:5c:36:73:
c7:7b:6f:71:cd:93:0e:e6:f7:69:9e:b0:a7:6d:3a:
19:30:49:8d:56:dc:71:f0:ba:a5:69:0c:9a:eb:40:
cd:2a:ca:15:5e:30:01:9d:e9:fd:88:72:65:9e:40:
af:e5:4c:2a:3e:5e:75:1e:04:87:af:36:7f:18:49:
f7:b9:5c:59:68:53:7b:f5:ff:7a:2f:4a:52:ea:ee:
9f:e8:79:2f:92:74:95:f0:96:ad:59:cb:3c:35:05:
c4:af:7b:f6:13:2a:a0:b1:62:0f:74:8e:d0:f5:6b:
60:ba:b9:60:ab:cb:5f:95:7e:68:9b:a3:a9:73:96:
a1:d2:a8:37:bd:f1:6c:ae:1e:ed:da:3b:e8:3e:e0:
a7:83:4c:fa:17:e2:5d:ef:c7:76:f2:36:5b:0b:a4:
f9:c3:59:ed:38:4c:d7:77:0f:a6:35:56:19:0c:4a:
c4:fe:24:57:4d:65:b0:9d:ee:22:ff:30:04:47:4d:
5d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:C5:74:56:FC:EA:DF:47:CA:72:BA:9E:FB:84:5B:86:F3:0E:F4:3E
X509v3 Authority Key Identifier:
keyid:0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/gMV0Vvzq30fKcrqe-4RbhvMO9D4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.252.4.0/23
Signature Algorithm: sha256WithRSAEncryption
32:11:0d:76:1b:33:bf:30:1d:98:1b:df:b9:23:d4:41:76:94:
c7:87:df:21:27:2e:d1:12:22:e2:b0:84:25:5c:eb:40:fe:68:
fa:e1:61:39:c1:4e:b8:83:63:b4:ca:2b:fb:a2:1d:73:f1:69:
38:a8:94:e2:db:5a:4d:4e:6e:b1:de:82:e2:6f:a8:96:20:ee:
01:30:1a:26:64:31:11:8e:d1:c0:dc:09:44:a0:87:01:c3:15:
54:b4:cc:84:f8:30:61:d3:58:bb:81:f5:98:a2:b5:0d:96:c1:
2e:7e:2f:fc:ea:80:ea:a1:51:db:02:49:9d:11:65:4e:f9:80:
79:8e:3a:45:de:9b:cf:72:ba:85:36:4f:2f:41:97:a5:d5:c2:
7a:00:61:66:39:18:26:30:c5:c7:de:be:b7:cc:b3:80:68:5a:
14:8e:24:c9:29:c5:11:77:04:df:00:a3:e2:53:bb:0f:f8:8e:
34:3a:1d:01:82:12:f0:4f:9c:70:cf:8d:f8:67:52:a4:28:4c:
ab:d1:39:15:ac:1b:78:40:3f:61:71:4f:f4:94:1f:f8:f3:7d:
c4:9e:6c:2e:b3:0e:42:cd:44:6d:40:31:02:85:5d:f8:83:29:
26:c9:cb:35:b0:d5:95:43:69:52:a3:97:8a:0e:58:09:75:3e:
0b:09:87:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:57 2023 by rpki-client on console-fra.rpki-client.org