Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/c62e0c-4454-43c8-97bc-81674d953d56/1/PTYUxlgh0ZNrL33vzePu_8wgcBc.roa
File: PTYUxlgh0ZNrL33vzePu_8wgcBc.roa (raw, json)
Hash identifier: vmVBNjQlp6Wti1dC8zkSoEJ3eDUH6bqGE0tbNH8gOOc=
Subject key identifier: 3D:36:14:C6:58:21:D1:93:6B:2F:7D:EF:CD:E3:EE:FF:CC:20:70:17
Certificate issuer: /CN=07da339e5cd3c1be02ce6802a0421856aa0b547b
Certificate serial: E6810D
Authority key identifier: 07:DA:33:9E:5C:D3:C1:BE:02:CE:68:02:A0:42:18:56:AA:0B:54:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9oznlzTwb4CzmgCoEIYVqoLVHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/c62e0c-4454-43c8-97bc-81674d953d56/1/PTYUxlgh0ZNrL33vzePu_8wgcBc.roa
Signing time: Thu 24 Mar 2022 15:57:37 +0000
ROA not before: Thu 24 Mar 2022 15:57:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7155
IP address blocks: 37.1.160.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15106317 (0xe6810d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07da339e5cd3c1be02ce6802a0421856aa0b547b
Validity
Not Before: Mar 24 15:57:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d3614c65821d1936b2f7defcde3eeffcc207017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:be:1c:5f:79:d8:d0:6a:b3:39:0d:70:87:7f:
0c:fa:78:50:3b:ca:b4:35:f7:7c:5f:df:fb:62:ce:
b8:4f:50:0d:23:39:88:4e:a8:87:f0:6b:c9:c0:5d:
97:a1:12:1f:2e:d8:cb:01:e9:6d:d4:01:a9:d4:68:
e0:93:23:35:68:de:0a:61:50:54:9f:76:03:b3:e2:
cf:d7:f4:98:f4:a6:56:b5:8f:5f:e1:f0:b5:86:46:
87:1d:37:24:d3:22:ff:3c:3c:d4:5a:d4:33:fb:eb:
4b:ff:52:61:ec:7e:5f:56:50:4c:35:fe:6b:77:da:
0d:a1:74:e2:69:17:5a:6c:41:0c:cd:54:8f:c2:82:
97:31:56:12:bc:38:84:62:a0:14:71:35:1a:e0:ff:
42:d9:a8:8d:6c:e9:b6:8d:eb:f8:42:6c:5a:0c:e5:
3c:54:ee:f6:3b:e2:bb:b2:b1:dc:8c:ef:d3:c8:c2:
7d:df:68:bb:36:d4:7a:c2:3c:70:16:b0:54:26:8b:
fc:ec:eb:b9:fa:b3:f7:a2:6a:b9:35:40:64:5b:77:
ce:b1:41:6c:df:a1:a8:4d:0e:0c:58:17:18:0c:9f:
88:7b:a6:9f:c5:d1:e7:5a:19:72:a6:a9:95:d9:56:
57:ad:fd:fb:0e:1d:fb:df:88:39:dc:20:e1:47:bd:
6f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:36:14:C6:58:21:D1:93:6B:2F:7D:EF:CD:E3:EE:FF:CC:20:70:17
X509v3 Authority Key Identifier:
keyid:07:DA:33:9E:5C:D3:C1:BE:02:CE:68:02:A0:42:18:56:AA:0B:54:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9oznlzTwb4CzmgCoEIYVqoLVHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/c62e0c-4454-43c8-97bc-81674d953d56/1/PTYUxlgh0ZNrL33vzePu_8wgcBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/c62e0c-4454-43c8-97bc-81674d953d56/1/B9oznlzTwb4CzmgCoEIYVqoLVHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.1.160.0/21
Signature Algorithm: sha256WithRSAEncryption
7d:46:32:c2:37:b4:8e:1c:57:b3:6c:34:89:28:fc:52:88:f0:
ba:f1:2f:16:66:86:68:c3:7e:99:b0:49:15:5b:1a:40:69:66:
09:2b:61:e4:3d:97:80:ff:31:87:fd:ec:60:f1:03:cc:3a:05:
eb:48:4c:0c:b0:fc:16:d5:90:49:5e:13:15:83:75:5e:fc:d0:
5b:18:ae:5d:75:77:74:3f:8e:f3:b9:e8:96:45:db:cb:b6:d4:
a4:ee:27:36:37:8c:bd:46:5f:6a:07:75:1b:31:89:6d:a4:d0:
e4:ba:c4:c8:17:0c:df:8b:d2:38:e1:00:4d:d9:e5:59:d7:f6:
55:58:44:a6:47:94:ff:5d:5d:53:b9:74:ee:ec:65:58:2a:39:
01:fe:f8:e7:75:4a:91:2b:50:70:f7:a2:38:f9:88:51:e2:0a:
2c:61:a6:45:2b:09:a5:40:4c:22:4a:bd:ab:d3:60:a9:5b:42:
f3:54:c9:e0:33:ab:74:c2:74:1c:a2:21:9f:b0:e2:2d:8c:0b:
60:03:cb:13:0d:dc:37:74:19:18:da:4f:f9:33:28:bd:94:56:
35:aa:3a:19:5c:08:96:ad:4a:c1:2f:ce:9f:42:c1:1d:3d:93:
35:7e:54:10:83:7f:ad:a2:7f:2c:18:46:e2:65:e4:41:15:5f:
41:ae:d9:6c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAOaBDTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
N2RhMzM5ZTVjZDNjMWJlMDJjZTY4MDJhMDQyMTg1NmFhMGI1NDdiMB4XDTIyMDMy
NDE1NTczN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2QzNjE0YzY1ODIx
ZDE5MzZiMmY3ZGVmY2RlM2VlZmZjYzIwNzAxNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKS+HF952NBqszkNcId/DPp4UDvKtDX3fF/f+2LOuE9QDSM5
iE6oh/BrycBdl6ESHy7YywHpbdQBqdRo4JMjNWjeCmFQVJ92A7Piz9f0mPSmVrWP
X+HwtYZGhx03JNMi/zw81FrUM/vrS/9SYex+X1ZQTDX+a3faDaF04mkXWmxBDM1U
j8KClzFWErw4hGKgFHE1GuD/QtmojWzpto3r+EJsWgzlPFTu9jviu7Kx3Izv08jC
fd9ouzbUesI8cBawVCaL/Ozrufqz96JquTVAZFt3zrFBbN+hqE0ODFgXGAyfiHum
n8XR51oZcqapldlWV639+w4d+9+IOdwg4Ue9b0ECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ9NhTGWCHRk2svfe/N4+7/zCBwFzAfBgNVHSMEGDAWgBQH2jOeXNPBvgLO
aAKgQhhWqgtUezAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0I5b3pubHpUd2I0Q3ptZ0NvRUlZVnFvTFZIcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTIvYzYyZTBjLTQ0NTQtNDNjOC05N2JjLTgxNjc0ZDk1M2Q1Ni8x
L1BUWVV4bGdoMFpOckwzM3Z6ZVB1Xzh3Z2NCYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTIv
YzYyZTBjLTQ0NTQtNDNjOC05N2JjLTgxNjc0ZDk1M2Q1Ni8xL0I5b3pubHpUd2I0
Q3ptZ0NvRUlZVnFvTFZIcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAyUBoDANBgkqhkiG9w0BAQsFAAOC
AQEAfUYywje0jhxXs2w0iSj8UojwuvEvFmaGaMN+mbBJFVsaQGlmCSth5D2XgP8x
h/3sYPEDzDoF60hMDLD8FtWQSV4TFYN1XvzQWxiuXXV3dD+O87nolkXby7bUpO4n
NjeMvUZfagd1GzGJbaTQ5LrEyBcM34vSOOEATdnlWdf2VVhEpkeU/11dU7l07uxl
WCo5Af7453VKkStQcPeiOPmIUeIKLGGmRSsJpUBMIkq9q9NgqVtC81TJ4DOrdMJ0
HKIhn7DiLYwLYAPLEw3cN3QZGNpP+TMovZRWNao6GVwIlq1KwS/On0LBHT2TNX5U
EIN/raJ/LBhG4mXkQRVfQa7ZbA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:33 2023 by rpki-client on console-fra.rpki-client.org