Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/aCPFaM5rHSvmeEyXJq9lGfjXkfo.roa
File: aCPFaM5rHSvmeEyXJq9lGfjXkfo.roa (raw, json)
Hash identifier: mrSWg5iPvxN/9zwmWZuolUy6WzcAACDgMzZak9ojyu0=
Subject key identifier: 68:23:C5:68:CE:6B:1D:2B:E6:78:4C:97:26:AF:65:19:F8:D7:91:FA
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 37538B01
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/aCPFaM5rHSvmeEyXJq9lGfjXkfo.roa
Signing time: Sat 01 Jan 2022 15:07:00 +0000
ROA not before: Sat 01 Jan 2022 15:07:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 271932
IP address blocks: 37.148.216.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 928221953 (0x37538b01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: Jan 1 15:07:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6823c568ce6b1d2be6784c9726af6519f8d791fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d9:d3:81:06:c4:e2:93:ca:b2:67:96:71:34:
f5:2f:35:85:91:50:55:f4:2e:b7:02:52:96:e4:98:
ee:fd:f9:e2:b3:2c:79:ba:4d:9e:5d:a6:d6:0a:44:
f5:bf:2a:d8:cd:a1:4e:64:d3:ee:a5:9a:c6:2c:0e:
7a:b7:36:61:2a:ca:a3:ae:36:a7:d2:20:95:34:20:
23:f5:4b:4a:fc:1b:e6:2d:1a:67:6e:6c:1c:2b:d9:
67:35:c8:11:af:7c:ae:53:0c:8a:fe:90:5e:23:16:
cc:4a:64:34:2b:0a:da:ab:47:c1:3a:22:62:92:ec:
93:45:6d:fc:71:d8:db:91:6a:ea:e9:e1:e7:49:d3:
06:74:0f:0e:7f:f9:f4:fc:08:a1:bb:50:50:e7:19:
70:09:71:62:94:e0:9a:8b:54:c5:6a:80:7c:1b:b2:
e0:88:6d:d7:9b:5f:6f:ba:30:11:20:f2:15:63:b6:
2b:8a:55:92:d0:5b:4b:af:5a:d7:d9:d2:0f:6c:3c:
9f:9c:8d:4a:54:1c:fa:2a:1c:3b:5b:de:68:29:4e:
87:5b:e1:6e:2e:36:ff:d6:b1:fe:75:c5:2f:81:8a:
11:21:59:c9:d3:cf:1f:3c:1a:56:f1:04:f0:f1:4e:
f7:d1:d1:9a:48:45:92:18:21:59:48:c0:a8:d5:39:
1e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:23:C5:68:CE:6B:1D:2B:E6:78:4C:97:26:AF:65:19:F8:D7:91:FA
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/aCPFaM5rHSvmeEyXJq9lGfjXkfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.148.216.0/23
Signature Algorithm: sha256WithRSAEncryption
75:5c:23:de:93:98:ec:ce:a9:74:84:88:c7:bd:52:36:aa:62:
df:b5:27:51:1a:46:71:34:5e:f7:48:dc:0d:b0:39:f0:6a:a3:
4b:d8:60:96:a9:f3:31:d1:55:d6:92:3e:95:5d:a7:2a:db:26:
42:c4:d6:97:4c:1b:51:52:bc:26:35:d7:f7:71:b3:64:11:c3:
72:64:c3:4f:08:10:85:05:62:61:6f:5b:2b:82:55:25:79:94:
1e:d4:fb:6e:c8:17:ff:2f:3b:33:8d:4a:04:e8:54:f1:c4:cb:
98:ca:a4:fb:d9:ab:99:50:1b:71:56:14:72:0a:d3:2c:5f:0b:
b1:e8:70:66:49:6e:c0:f9:14:4c:3d:0d:67:4f:88:dc:bf:b2:
0c:02:f4:45:dc:51:52:77:eb:bd:96:86:5a:6a:7b:7d:2c:5f:
57:67:28:27:ad:e5:76:92:71:d5:dd:2a:26:75:06:b2:89:cb:
90:bd:39:bf:87:cf:85:ea:3d:1b:2d:e9:dc:23:66:21:3c:3d:
9d:73:b7:42:fe:88:41:fe:a6:6b:36:3d:00:82:fa:8f:6b:18:
3e:db:92:fe:ee:c0:e7:e5:3d:f8:be:d2:70:5d:49:a9:01:d7:
c2:b3:d3:f9:e8:79:99:cc:63:3d:ff:bf:e2:de:7e:b1:d3:fd:
28:34:b1:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:30 2024 by rpki-client on console-ams.rpki-client.org