Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/icj0lj07bj86Ukl2x_9zOkRFqUQ.roa
File: icj0lj07bj86Ukl2x_9zOkRFqUQ.roa (raw, json)
Hash identifier: 3Y8vQy1RzC+WxwkapDJv+VvdczNEFXVryd8C34tI/J0=
Subject key identifier: 89:C8:F4:96:3D:3B:6E:3F:3A:52:49:76:C7:FF:73:3A:44:45:A9:44
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 37847DF2
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/icj0lj07bj86Ukl2x_9zOkRFqUQ.roa
Signing time: Sat 22 Jan 2022 06:37:24 +0000
ROA not before: Sat 22 Jan 2022 06:37:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 37.148.218.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 931429874 (0x37847df2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: Jan 22 06:37:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89c8f4963d3b6e3f3a524976c7ff733a4445a944
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:35:98:bd:5e:9c:db:c0:e8:c4:6b:f9:f6:a1:
28:22:af:53:b2:ee:0b:0c:b2:ad:21:50:6e:ab:37:
c8:a1:49:57:a7:f4:ce:20:39:05:56:e2:8c:59:ea:
6f:58:ad:37:f3:5e:fd:04:d8:01:e9:e5:4b:35:ae:
38:40:f3:4f:a4:65:39:7b:c7:a2:84:98:1d:d4:3d:
46:0b:c8:cc:d4:86:a1:be:26:72:d3:25:23:63:b0:
39:27:b0:25:6c:5c:20:bd:80:f6:d6:7d:89:46:5c:
e5:14:1e:f2:34:d2:d9:50:07:68:b0:d2:92:e5:41:
1f:9d:83:6f:64:a7:e1:df:39:da:24:0e:04:1c:14:
da:7d:e9:e5:bc:67:e3:5e:d4:44:c7:a6:d3:be:39:
af:a8:a6:26:64:4e:62:f3:f6:3b:eb:8d:d1:d2:0e:
5b:fe:f3:4a:b5:c2:b0:f1:5b:32:23:b2:2c:8f:79:
aa:84:fb:39:e9:14:8c:1f:e1:41:8b:87:af:f3:41:
b9:60:d0:ed:7f:20:5f:67:d2:24:fa:de:86:da:da:
e5:77:7f:ed:25:4d:3c:98:ab:95:81:28:51:06:88:
28:dc:01:36:ec:aa:8e:72:6a:71:c0:2d:68:4a:ae:
88:52:f1:c6:c2:01:0c:ea:9d:d2:90:58:7b:5a:41:
84:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:C8:F4:96:3D:3B:6E:3F:3A:52:49:76:C7:FF:73:3A:44:45:A9:44
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/icj0lj07bj86Ukl2x_9zOkRFqUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.148.218.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:a0:a1:e9:c9:89:c2:35:7d:34:cd:f6:d6:4b:51:55:b8:75:
e8:97:3c:c2:4b:b9:fa:83:37:ee:86:04:ad:fb:92:c4:ab:1d:
58:3e:30:19:7b:d7:84:3f:a5:7b:fe:b5:61:28:d4:aa:4d:47:
21:2f:29:70:09:0e:fa:a6:8e:23:b7:1d:59:c8:51:29:19:f1:
1d:46:81:39:07:0e:5e:b3:5c:58:c0:97:24:22:00:e7:22:5d:
18:0d:54:33:c3:c1:61:3e:c1:1d:51:7b:a5:67:24:fd:52:1e:
2a:96:3b:48:68:cb:6e:91:4a:0d:04:c4:1a:b0:46:28:8e:93:
f9:ee:69:78:e2:d8:e4:36:c4:00:e0:50:d3:b9:a5:b6:3b:41:
49:d5:b5:44:97:72:5a:16:11:00:61:fa:5a:74:70:74:49:58:
a0:7a:90:24:84:ff:d5:85:15:db:ba:7b:e6:28:69:d9:3f:45:
1a:34:c2:65:0b:4a:a6:2f:99:e3:5c:39:96:d3:36:f4:62:be:
f1:c7:b1:38:6e:64:2a:8b:2d:7f:be:7b:ea:46:08:6a:bb:13:
74:83:98:27:a4:3d:82:dc:d2:1a:1e:c0:5c:1c:0a:92:28:41:
ca:18:1c:08:42:93:e7:6f:27:84:8b:84:72:f9:4c:70:bc:18:
4d:ca:5d:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:08 2024 by rpki-client on console-fra.rpki-client.org