Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/97MQDQt2UPcn-V_03dIlbH71W9Y.roa
File: 97MQDQt2UPcn-V_03dIlbH71W9Y.roa (raw, json)
Hash identifier: BFT2cxU6c1hfLhx0jwR0ENRKW1WcOcIkOnw6Ex+S6o4=
Subject key identifier: F7:B3:10:0D:0B:76:50:F7:27:F9:5F:F4:DD:D2:25:6C:7E:F5:5B:D6
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 0182CCC198E28A75BA4414E647F16093851D
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/97MQDQt2UPcn-V_03dIlbH71W9Y.roa
Signing time: Tue 23 Aug 2022 22:10:15 +0000
ROA not before: Tue 23 Aug 2022 22:10:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 37.19.64.0/22 maxlen: 24
185.145.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:cc:c1:98:e2:8a:75:ba:44:14:e6:47:f1:60:93:85:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: Aug 23 22:10:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7b3100d0b7650f727f95ff4ddd2256c7ef55bd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:39:c0:ab:4b:d7:d3:e7:c4:16:02:c3:f4:ad:
16:ac:42:5b:59:d6:db:3c:d4:4d:2a:2c:b0:4d:23:
47:a6:44:35:3e:77:c4:ae:50:0d:cf:cd:fd:d6:d6:
75:83:59:b0:3c:b5:07:18:6d:e1:9f:31:b3:1f:fa:
e4:44:e4:78:47:8a:f1:68:9c:1c:9b:a2:de:fe:c1:
66:52:84:27:17:88:96:b8:0a:ee:55:3f:5d:3d:18:
05:45:cd:34:6f:a7:6c:c2:8a:a2:1e:2b:d8:51:07:
53:66:71:5b:83:30:32:af:a7:fc:14:43:9c:c0:2e:
10:74:13:9f:a1:23:83:18:ee:30:6f:ed:b8:fd:e7:
c1:da:ca:6d:1a:25:3d:58:e9:c4:53:65:c1:de:98:
37:a0:96:5a:c3:6a:67:3d:bb:50:d1:03:c7:b7:3d:
9a:12:8a:96:2a:6f:c6:30:45:d8:3a:8a:92:04:cc:
6f:bf:ff:73:31:7a:b1:85:f9:27:32:16:66:9b:8c:
64:76:d3:02:b2:9f:07:69:75:d8:39:8b:76:a5:59:
28:85:c0:02:01:90:98:2d:0f:e1:e8:a0:75:87:25:
d3:74:94:35:42:81:e6:5f:f9:93:59:b7:0f:c8:17:
00:f7:fd:ff:ee:33:0d:fa:82:82:5d:51:a5:e8:e6:
4c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:B3:10:0D:0B:76:50:F7:27:F9:5F:F4:DD:D2:25:6C:7E:F5:5B:D6
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/97MQDQt2UPcn-V_03dIlbH71W9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.19.64.0/22
185.145.52.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:af:32:5c:f6:31:5e:7a:d3:33:87:f4:6d:e6:d5:8f:54:51:
4b:9a:aa:84:99:0a:67:14:d8:6f:92:6a:d3:64:dc:c4:ea:56:
62:5f:41:be:8c:40:4d:cd:bb:db:77:a3:da:e8:49:8b:1c:36:
6e:84:39:b4:7d:55:e1:70:e7:58:ab:74:28:c2:36:44:48:aa:
18:80:87:88:5a:cf:9f:3b:c3:9f:88:1a:09:71:59:bb:ed:b2:
dd:45:da:44:8e:b5:44:cf:7f:e4:ba:bb:db:6b:84:83:35:22:
77:f7:b8:4a:4d:42:69:bb:49:c5:17:2b:13:71:0d:cf:78:b6:
77:29:0f:66:af:ab:dd:e0:d5:65:98:b9:6b:96:11:03:7d:a9:
23:05:50:b7:73:b4:03:ec:b8:70:e5:64:b2:d6:02:39:e0:14:
e3:27:64:89:4f:64:a6:49:eb:71:9d:79:7a:07:b9:f0:87:66:
62:b2:67:4a:83:6c:70:76:67:4e:93:79:eb:74:d4:31:76:37:
ab:4f:c5:6b:c2:b2:f8:73:56:47:ae:4c:4e:0b:29:12:63:66:
cd:f7:5a:45:7f:1c:7e:5e:95:79:6b:a3:cf:ba:52:21:50:8b:
b9:15:8c:30:db:d0:53:58:37:e9:40:d3:58:5e:55:82:75:0f:
ff:56:96:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:09 2024 by rpki-client on console-ams.rpki-client.org