Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/i6wQ6FxhhWy6Mfjmk47_bI9LzZ4.roa
File: i6wQ6FxhhWy6Mfjmk47_bI9LzZ4.roa (raw, json)
Hash identifier: UCXlsaSKybUeQIxRunN58ytiebyEMr7VCo4pPfNBkUo=
Subject key identifier: 8B:AC:10:E8:5C:61:85:6C:BA:31:F8:E6:93:8E:FF:6C:8F:4B:CD:9E
Certificate issuer: /CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Certificate serial: 04731D0A
Authority key identifier: 0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/i6wQ6FxhhWy6Mfjmk47_bI9LzZ4.roa
Signing time: Sat 01 Jan 2022 08:57:35 +0000
ROA not before: Sat 01 Jan 2022 08:57:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42708
IP address blocks: 37.252.8.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74652938 (0x4731d0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Validity
Not Before: Jan 1 08:57:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8bac10e85c61856cba31f8e6938eff6c8f4bcd9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4a:a7:a2:16:08:f3:a4:15:cc:7b:53:28:09:
0b:99:e5:57:22:1c:50:e2:d8:09:20:20:6b:03:41:
56:cd:e2:78:2e:78:68:db:ff:8d:94:e3:a3:53:de:
4d:63:e8:3b:3f:7d:95:77:fb:a1:0f:c9:fc:eb:a1:
80:dd:2e:de:5e:8b:78:ec:c2:e9:42:49:2d:fe:c1:
e0:15:3b:f1:42:3b:14:0e:48:d0:f0:b6:a4:30:77:
83:81:57:37:02:c0:09:fe:60:42:14:9f:e8:99:0f:
b5:61:9c:50:c6:d9:75:f8:71:1e:c3:74:15:10:24:
4f:c0:64:cd:19:8f:d5:59:fd:47:8b:d7:0d:83:e7:
e9:7b:fc:1c:da:95:d3:8d:3f:ca:0c:be:d7:7c:32:
a3:00:4f:36:8d:05:5e:ec:6c:77:84:5e:f6:2e:ab:
1b:07:d8:a3:28:95:e2:89:5e:5f:7f:2e:0c:22:ab:
06:69:4e:60:b7:6e:fc:8d:0c:4b:71:8e:52:6e:45:
48:93:71:a6:0c:61:4c:c5:dc:d1:d3:4b:a8:e3:60:
ba:e9:d6:d9:b5:bc:84:07:53:10:8c:be:e5:a2:4e:
de:57:e1:83:9c:e0:88:9d:38:f2:05:59:e8:54:5f:
a4:58:62:c3:ca:9c:9f:fe:2c:1a:67:13:29:47:b1:
9c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:AC:10:E8:5C:61:85:6C:BA:31:F8:E6:93:8E:FF:6C:8F:4B:CD:9E
X509v3 Authority Key Identifier:
keyid:0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/i6wQ6FxhhWy6Mfjmk47_bI9LzZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.252.8.0/23
Signature Algorithm: sha256WithRSAEncryption
79:f2:72:f6:a8:2e:1e:90:58:bc:27:cc:84:cc:a0:57:99:b7:
70:73:86:6c:fc:7d:c1:1f:ec:96:c7:59:f6:20:65:d6:da:61:
dd:5a:cb:aa:c3:8e:92:1d:30:70:52:0c:dd:72:0b:72:b1:f5:
ff:a0:0b:81:33:df:35:84:2d:12:3f:b3:15:da:3c:7a:f6:a6:
0f:16:9b:ec:10:cd:5e:ef:ed:c0:22:31:e0:8c:c4:e9:4a:96:
1d:6a:cb:9c:a6:ce:d6:e9:aa:b9:9a:a6:cf:75:ab:8e:b6:86:
a0:98:9d:cf:9e:ae:10:eb:df:a2:48:65:12:ee:be:40:a8:bd:
70:1f:0b:02:ad:9f:e4:34:12:67:4b:6f:cf:14:a8:c6:d0:38:
6c:71:9e:0b:33:13:45:69:0c:37:30:12:29:2e:69:0d:b6:b8:
98:3c:1c:7d:70:83:a9:a0:12:6d:47:ec:fc:e6:4b:f9:e2:39:
dc:6d:b0:5b:6c:ab:1c:0d:58:7e:02:a8:5d:6b:52:df:0f:72:
3c:c5:2a:fd:8d:5c:74:1e:e6:5b:70:81:04:50:30:7f:97:48:
4a:87:b2:09:64:d7:b0:e8:e2:c0:23:09:bd:b6:2e:0b:ea:92:
a5:97:ad:c4:20:59:87:c4:b8:60:e9:6a:dd:e3:bd:64:68:bc:
42:ba:63:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:35 2023 by rpki-client on console-ams.rpki-client.org