Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/dff181-2b76-4ca2-96e4-6b158b22b48f/1/7vSxvdBj5z0BgSS-cC53ZKYml8A.roa
File: 7vSxvdBj5z0BgSS-cC53ZKYml8A.roa (raw, json)
Hash identifier: OL/NT/3HjQ1gsmas3jWq0hESOVfXFQ1qkLXtQGG05Rk=
Subject key identifier: EE:F4:B1:BD:D0:63:E7:3D:01:81:24:BE:70:2E:77:64:A6:26:97:C0
Certificate issuer: /CN=0314514897a0aa3ffbf45b48606124627f15e506
Certificate serial: FE1FD0
Authority key identifier: 03:14:51:48:97:A0:AA:3F:FB:F4:5B:48:60:61:24:62:7F:15:E5:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AxRRSJegqj_79FtIYGEkYn8V5QY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/dff181-2b76-4ca2-96e4-6b158b22b48f/1/7vSxvdBj5z0BgSS-cC53ZKYml8A.roa
Signing time: Sat 01 Jan 2022 13:07:45 +0000
ROA not before: Sat 01 Jan 2022 13:07:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48854
IP address blocks: 37.140.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16654288 (0xfe1fd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0314514897a0aa3ffbf45b48606124627f15e506
Validity
Not Before: Jan 1 13:07:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eef4b1bdd063e73d018124be702e7764a62697c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:44:91:67:36:92:1d:0c:9d:d5:46:01:65:f2:
e7:25:42:6b:e8:a1:42:d4:7b:df:c7:72:df:b7:6b:
1b:78:3a:1b:2c:61:d6:45:c6:e1:06:31:0a:93:01:
f9:d4:71:ef:72:b2:62:fb:ea:1f:b4:da:42:f5:6f:
e4:77:b2:4d:86:41:a0:4b:8a:09:6b:77:30:b1:5c:
52:18:01:d8:2b:70:44:ed:44:b5:1d:70:d0:14:8f:
48:b6:58:98:88:12:ec:a0:50:c1:e4:b8:fb:20:5e:
3d:54:bb:e4:8f:02:19:37:9a:09:80:98:6b:58:70:
37:ed:73:26:d0:dc:1c:ae:ee:91:f3:5d:96:33:65:
9e:e3:9e:ab:6e:fe:01:25:02:94:47:14:5f:a5:71:
47:76:e4:22:73:d3:a4:4c:16:40:0d:70:fd:aa:00:
8d:7d:14:bf:33:56:27:22:ac:2a:80:10:19:60:24:
54:42:f5:83:47:9e:90:c0:ce:9d:a4:88:1c:13:46:
a5:0a:84:83:3b:59:3d:d6:eb:31:21:7e:d4:a0:18:
9e:42:25:99:00:b3:eb:15:e5:0d:8e:11:5a:00:d4:
2f:04:0f:74:28:fa:a5:60:47:bb:70:f0:4e:f8:12:
58:69:4d:bf:fd:d8:6f:79:d1:42:5e:3b:d7:22:1e:
3c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:F4:B1:BD:D0:63:E7:3D:01:81:24:BE:70:2E:77:64:A6:26:97:C0
X509v3 Authority Key Identifier:
keyid:03:14:51:48:97:A0:AA:3F:FB:F4:5B:48:60:61:24:62:7F:15:E5:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AxRRSJegqj_79FtIYGEkYn8V5QY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/dff181-2b76-4ca2-96e4-6b158b22b48f/1/7vSxvdBj5z0BgSS-cC53ZKYml8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/dff181-2b76-4ca2-96e4-6b158b22b48f/1/AxRRSJegqj_79FtIYGEkYn8V5QY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.219.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:75:8f:07:a4:f4:ae:d6:ea:9a:15:14:18:12:7d:92:44:63:
d0:41:fc:ec:ca:ec:66:7a:5e:92:6b:a1:cc:77:93:54:a6:bb:
47:cb:a3:c8:fb:e4:3b:df:b2:f2:aa:dc:a3:a8:57:e0:6f:a5:
5e:84:ad:8f:62:27:d8:be:44:f5:52:44:f0:62:fe:ef:c2:bc:
d2:29:f0:25:1d:cb:12:fb:53:f3:57:69:f5:4d:5f:0f:9a:9a:
46:a0:db:9a:47:fc:eb:71:7b:96:3c:6d:7d:f3:0e:96:4b:d3:
fa:a1:6a:76:09:5d:cb:55:c9:f5:06:cd:c1:9f:6a:87:b4:9a:
93:c5:7d:a3:a2:94:e6:9d:79:8b:3d:ee:34:c3:bf:d1:3e:d7:
7d:66:f6:2a:03:8b:07:ab:4f:44:ee:c6:78:99:df:d7:a9:fc:
36:43:41:07:c4:5a:1a:92:67:3f:2d:6e:d1:5a:7d:5d:33:98:
d0:6b:3a:4b:74:71:06:84:99:b3:34:5d:d6:46:d6:6f:c7:ba:
56:8f:c2:5f:0e:6b:44:90:da:f7:73:72:ef:ca:6c:61:fe:ee:
f6:dd:51:a3:53:98:89:e9:cc:da:f2:1d:3f:a6:c0:59:d0:c3:
cd:c4:14:8f:a8:1e:cc:ab:01:2e:b4:90:17:bf:84:1e:93:40:
cb:2f:f5:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:22 2023 by rpki-client on console-fra.rpki-client.org