Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/ANBKmtRhzeXg-_iqnIbJ9jdAaGI.roa
File: ANBKmtRhzeXg-_iqnIbJ9jdAaGI.roa (raw, json)
Hash identifier: il73/vGvA08O7oJRgBWdEZd6OqKRv1AFGiiVCJkDyrA=
Subject key identifier: 00:D0:4A:9A:D4:61:CD:E5:E0:FB:F8:AA:9C:86:C9:F6:37:40:68:62
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 018AAED4
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/ANBKmtRhzeXg-_iqnIbJ9jdAaGI.roa
Signing time: Thu 02 Jun 2022 05:21:20 +0000
ROA not before: Thu 02 Jun 2022 05:21:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46450
IP address blocks: 37.19.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25865940 (0x18aaed4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: Jun 2 05:21:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00d04a9ad461cde5e0fbf8aa9c86c9f637406862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ee:43:d2:b5:19:7b:c6:54:a6:3a:62:b6:38:
fa:4d:7d:dc:d7:48:96:73:e5:8a:57:c2:c4:16:1f:
d5:3c:91:e6:38:5c:0e:d8:dd:bc:0b:50:01:c1:92:
70:12:46:f1:27:29:62:ed:24:0a:ad:24:57:06:ec:
d8:fb:d6:e3:cf:1f:f7:6b:f1:33:c1:02:05:84:b0:
7f:5b:47:f2:cd:89:0e:db:09:09:9d:29:95:75:12:
47:1e:dd:01:dd:06:8c:44:d8:30:43:97:77:74:0e:
1d:7e:8e:f4:83:b9:08:0d:37:d4:bd:79:22:26:b1:
d4:0c:ad:51:37:ed:b5:af:03:d2:ee:92:4c:92:b5:
1c:73:fe:5d:af:86:42:c9:54:ba:52:28:51:13:a1:
43:bc:2a:ef:13:8d:01:05:37:04:30:b8:2a:7d:c2:
ef:cf:58:cf:cd:67:39:7d:ff:da:bb:c6:56:5a:f2:
75:74:80:49:0c:07:28:ce:c5:66:c4:e8:c9:4d:4f:
7d:36:8c:fe:45:23:86:03:17:58:18:ea:e0:3c:da:
2d:04:be:4d:eb:54:92:12:3c:ae:5e:6f:18:cf:61:
96:1a:53:5a:96:52:a9:a7:70:b4:1a:9c:a5:e3:92:
2e:46:a4:bc:59:a2:4c:74:9a:15:0c:b3:70:80:ba:
11:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:D0:4A:9A:D4:61:CD:E5:E0:FB:F8:AA:9C:86:C9:F6:37:40:68:62
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/ANBKmtRhzeXg-_iqnIbJ9jdAaGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.19.68.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:3f:05:e0:63:e2:b7:70:0c:39:32:6a:06:98:22:b5:a4:59:
7c:8b:ca:a9:f5:b5:58:79:91:7f:b2:b0:76:07:a4:a6:02:1b:
bd:9f:2e:64:e2:9d:89:1c:5c:6e:61:34:f4:ba:45:de:9c:84:
97:06:3b:50:5c:92:c5:eb:e2:75:5b:93:3e:c4:9d:52:d0:f1:
9a:e4:1e:29:b2:60:35:0d:5f:5c:dc:b6:76:26:d4:86:58:c6:
f3:e8:9b:0a:35:e6:d3:ee:e9:96:51:27:df:7f:f5:bf:ee:43:
73:7a:df:09:8a:01:7c:1b:5d:9a:42:73:fb:9d:a2:e8:dc:f8:
71:d9:b9:fd:10:e7:70:85:21:3e:ce:c2:4b:9d:7e:46:fe:2b:
e2:cc:8b:c6:70:3e:09:e1:2c:a1:3f:7e:7b:d9:24:01:66:f5:
4f:32:73:c6:3c:d1:19:69:2e:cf:25:36:e4:71:52:2f:c2:4b:
e6:25:8a:93:e5:4e:df:98:f7:bb:8d:53:0b:b3:cd:08:79:12:
c5:3a:4e:0c:9c:f6:a4:08:ed:f4:ba:06:c0:f0:56:14:7c:92:
e9:7f:3f:73:cc:51:50:32:88:81:73:c8:d4:15:d7:1b:43:57:
32:fe:ec:61:22:f3:23:17:45:78:84:fb:69:5f:a6:a4:fd:b2:
1d:a1:3f:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:38 2023 by rpki-client on console-fra.rpki-client.org