Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/c62e0c-4454-43c8-97bc-81674d953d56/1/XjbD59_kZaa_tolqJmEa41Pallw.roa
File: XjbD59_kZaa_tolqJmEa41Pallw.roa (raw, json)
Hash identifier: sRNKo9fL0mNittXdumHhMimVdu1B6x83SrbwphIlpkg=
Subject key identifier: 5E:36:C3:E7:DF:E4:65:A6:BF:B6:89:6A:26:61:1A:E3:53:DA:96:5C
Certificate issuer: /CN=07da339e5cd3c1be02ce6802a0421856aa0b547b
Certificate serial: E1402E
Authority key identifier: 07:DA:33:9E:5C:D3:C1:BE:02:CE:68:02:A0:42:18:56:AA:0B:54:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9oznlzTwb4CzmgCoEIYVqoLVHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/c62e0c-4454-43c8-97bc-81674d953d56/1/XjbD59_kZaa_tolqJmEa41Pallw.roa
Signing time: Wed 23 Mar 2022 08:22:33 +0000
ROA not before: Wed 23 Mar 2022 08:22:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29286
IP address blocks: 37.252.111.0/24 maxlen: 24
185.19.39.0/24 maxlen: 24
37.1.160.0/21 maxlen: 21
37.1.166.0/23 maxlen: 24
185.19.38.0/24 maxlen: 24
37.252.104.0/21 maxlen: 21
185.19.37.0/24 maxlen: 24
185.19.36.0/24 maxlen: 24
185.19.36.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14762030 (0xe1402e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07da339e5cd3c1be02ce6802a0421856aa0b547b
Validity
Not Before: Mar 23 08:22:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e36c3e7dfe465a6bfb6896a26611ae353da965c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:bd:e1:6f:0b:86:a9:33:0f:2c:41:19:33:d5:
48:0a:f4:48:ca:f4:f1:9d:59:c5:af:1c:c7:0a:01:
92:14:a4:cd:03:d1:2d:79:b5:5f:77:50:0d:4d:64:
f0:0d:b5:fb:10:33:75:17:67:cf:0e:9e:21:8f:ac:
d7:c6:49:51:59:92:d2:58:9a:3b:08:18:b6:79:d1:
c7:a0:e6:23:18:2d:5f:c1:01:ac:51:a6:c5:ea:f7:
c3:d1:8d:2d:84:24:75:96:c7:fe:e1:b4:36:b1:26:
da:52:92:86:ca:f6:dd:6f:b8:5d:3b:cf:a8:0d:c4:
72:1f:72:3e:ff:4c:18:8e:a7:f3:9d:82:9d:78:e5:
6c:f7:bf:19:f7:f9:f3:70:08:90:42:5a:a4:0b:88:
1c:97:31:ec:74:f5:b1:64:3e:ca:39:84:16:62:f4:
3b:53:20:e2:52:7a:0a:1d:af:5d:0c:c6:a5:63:a8:
d7:0b:c3:13:de:d9:14:68:3a:df:e6:2b:12:77:e0:
a2:93:fb:c4:77:a0:90:85:e8:28:47:fd:5f:18:49:
cd:e6:af:38:f4:4d:69:0a:cb:bf:b2:1b:35:87:48:
d2:05:ea:41:40:a3:15:5a:d5:53:f7:3c:de:74:a0:
46:61:07:90:05:99:8b:eb:c4:73:90:40:aa:bb:17:
7b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:36:C3:E7:DF:E4:65:A6:BF:B6:89:6A:26:61:1A:E3:53:DA:96:5C
X509v3 Authority Key Identifier:
keyid:07:DA:33:9E:5C:D3:C1:BE:02:CE:68:02:A0:42:18:56:AA:0B:54:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9oznlzTwb4CzmgCoEIYVqoLVHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/c62e0c-4454-43c8-97bc-81674d953d56/1/XjbD59_kZaa_tolqJmEa41Pallw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/c62e0c-4454-43c8-97bc-81674d953d56/1/B9oznlzTwb4CzmgCoEIYVqoLVHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.1.160.0/21
37.252.104.0/21
185.19.36.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:ef:69:68:37:b4:2a:38:2a:e7:51:c2:af:c9:2e:19:fa:59:
ac:26:5a:8e:af:5d:02:04:77:ae:7a:fb:37:76:0b:6a:ba:29:
f3:62:fa:b4:8b:8b:c7:a8:66:d7:29:24:4a:f1:d6:3c:07:58:
bd:34:6a:d6:b2:4e:89:39:50:e2:8d:b2:98:7c:c4:42:03:09:
2e:d9:cc:e9:1d:b2:21:00:39:d2:d2:2e:a7:8e:aa:f0:cc:d2:
ac:f2:71:f8:e2:82:5d:9b:f7:a1:3f:52:5b:5f:09:94:29:46:
10:cd:c6:ab:12:7e:c5:ff:23:84:69:b3:76:43:2d:24:4f:bc:
fd:91:7c:d2:89:fe:29:e8:d8:07:92:69:88:7c:af:f2:a7:25:
ad:b1:7d:01:f2:e1:fb:20:d0:55:64:95:cc:22:a6:84:ad:50:
3a:fe:af:a2:7e:ad:2d:96:d5:f7:8d:db:8d:27:18:dc:d2:b7:
4d:0d:d3:58:2d:69:25:b7:4a:22:1a:2f:c0:df:89:2c:e1:b4:
61:a8:18:ee:e1:8d:e8:1e:ec:e9:09:6f:34:33:69:a3:3e:82:
1f:e0:e4:25:ad:a8:3e:19:53:4a:aa:24:ee:1f:e1:7b:aa:3e:
6b:72:45:38:a1:39:8e:8b:a5:aa:e8:3d:c9:c2:ee:d5:85:cc:
81:45:83:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:33 2023 by rpki-client on console-fra.rpki-client.org