Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/4ea4f7-d70e-42a2-afd7-3e3a188f49de/1/u2HsbVtzrgS1sCYRCH5ZxZN0teo.roa
File: u2HsbVtzrgS1sCYRCH5ZxZN0teo.roa (raw, json)
Hash identifier: eI52rrBQwLVjWbBO3OXTKoD9O8yDQAF6zW5Xd/LBWzg=
Subject key identifier: BB:61:EC:6D:5B:73:AE:04:B5:B0:26:11:08:7E:59:C5:93:74:B5:EA
Certificate issuer: /CN=37915673b28bdfadb2c2019ac68d0464fd21b71a
Certificate serial: 06F95C4C
Authority key identifier: 37:91:56:73:B2:8B:DF:AD:B2:C2:01:9A:C6:8D:04:64:FD:21:B7:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N5FWc7KL362ywgGaxo0EZP0htxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/4ea4f7-d70e-42a2-afd7-3e3a188f49de/1/u2HsbVtzrgS1sCYRCH5ZxZN0teo.roa
Signing time: Sat 01 Jan 2022 15:04:01 +0000
ROA not before: Sat 01 Jan 2022 15:04:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2830
IP address blocks: 145.32.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117005388 (0x6f95c4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37915673b28bdfadb2c2019ac68d0464fd21b71a
Validity
Not Before: Jan 1 15:04:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb61ec6d5b73ae04b5b02611087e59c59374b5ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:dc:55:39:31:08:9f:4f:38:c8:c9:c2:82:a9:
a3:29:5e:fd:27:2b:dc:d6:4c:ac:7b:cd:18:36:b6:
45:aa:b1:f5:ef:a4:34:09:d4:b9:1d:df:0c:94:fd:
0b:6b:4f:3b:cd:35:ba:4b:0b:ea:80:26:6b:79:00:
32:59:b2:7f:63:e1:34:7e:51:9d:8f:b7:cd:9d:18:
d0:bb:0e:45:04:e8:3f:f9:13:ca:2f:76:a9:57:58:
1c:31:52:58:c2:26:9f:62:df:ff:e1:7f:57:ce:bd:
5e:ac:c6:81:2e:ba:76:d8:42:b1:78:34:7f:41:2b:
bd:3d:94:1b:5d:97:64:89:37:e2:a7:06:ca:5a:4a:
87:2b:1f:5a:2b:44:67:98:74:55:4b:22:2a:5f:ca:
a3:e3:bb:0c:d3:ef:b6:c6:0f:12:a5:18:a7:73:04:
36:73:bd:a4:8e:6c:f0:21:cb:67:6b:67:d0:d1:3c:
d2:57:71:b1:f9:2d:76:17:d5:75:98:bf:e5:22:8e:
8e:17:2a:d4:ea:c3:ae:77:f4:5c:7e:ff:19:b1:39:
59:07:d4:bb:72:db:b3:c6:c1:19:22:bb:fd:22:4a:
7d:4f:db:eb:84:43:62:37:95:70:26:52:03:72:2d:
ba:30:6d:1a:c3:59:fd:43:d6:24:9f:9b:97:bf:43:
d9:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:61:EC:6D:5B:73:AE:04:B5:B0:26:11:08:7E:59:C5:93:74:B5:EA
X509v3 Authority Key Identifier:
keyid:37:91:56:73:B2:8B:DF:AD:B2:C2:01:9A:C6:8D:04:64:FD:21:B7:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N5FWc7KL362ywgGaxo0EZP0htxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/4ea4f7-d70e-42a2-afd7-3e3a188f49de/1/u2HsbVtzrgS1sCYRCH5ZxZN0teo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/4ea4f7-d70e-42a2-afd7-3e3a188f49de/1/N5FWc7KL362ywgGaxo0EZP0htxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.32.100.0/24
Signature Algorithm: sha256WithRSAEncryption
66:3e:96:b2:21:57:a7:07:66:c3:77:7d:68:7b:24:60:b8:d3:
17:d0:14:e4:d3:65:e5:49:4d:f7:8f:04:78:e8:6a:17:35:60:
8d:a1:59:54:24:89:71:a1:09:aa:23:80:a5:b4:ad:14:0b:fa:
a1:37:ce:02:e1:68:ec:5c:33:da:a0:55:f6:f1:2d:2b:53:b0:
a9:46:2e:5b:05:cb:0a:5a:e5:fe:e0:e6:80:38:b2:bb:4f:7e:
b9:bb:0a:53:11:cf:04:b0:e8:4b:39:c9:9d:26:b0:cb:70:5a:
0a:2f:f5:63:57:82:19:e7:ef:3c:86:ce:ec:5a:19:c8:20:40:
a5:54:f9:86:23:69:08:4e:63:4f:c1:27:9e:06:78:83:64:06:
99:2e:e1:ea:71:e5:86:a9:92:77:26:73:ad:14:1d:d2:6a:58:
07:12:53:f9:fc:71:5c:4e:b0:4e:17:75:c9:3f:77:e0:6f:d2:
28:f3:dc:53:84:29:92:34:5d:78:96:f2:b7:97:0f:58:d0:9a:
df:e7:31:60:f7:6f:92:c6:99:2a:d1:1a:08:96:13:c4:8b:6e:
d6:ec:34:76:46:82:a3:5b:81:be:79:8e:1b:56:f7:3f:8c:b6:
c7:fa:c7:a0:c1:3b:ff:51:4c:55:9a:d7:8e:08:4e:af:10:c6:
4c:1a:f8:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:02 2024 by rpki-client on console-fra.rpki-client.org