Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/hSTp6AD4ux4U0hfftIp_oru8LRc.roa
File: hSTp6AD4ux4U0hfftIp_oru8LRc.roa (raw, json)
Hash identifier: hWot6WNDU4ERtHPk+BOwQGc4r2ufonZpzm30DZl3dZs=
Subject key identifier: 85:24:E9:E8:00:F8:BB:1E:14:D2:17:DF:B4:8A:7F:A2:BB:BC:2D:17
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 013464CB
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/hSTp6AD4ux4U0hfftIp_oru8LRc.roa
Signing time: Tue 26 Apr 2022 22:26:47 +0000
ROA not before: Tue 26 Apr 2022 22:26:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 37.19.64.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20210891 (0x13464cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: Apr 26 22:26:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8524e9e800f8bb1e14d217dfb48a7fa2bbbc2d17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ce:5c:3b:30:03:23:11:39:3d:80:59:32:e5:
69:c0:28:06:bc:6e:0d:65:16:45:55:a7:60:aa:8a:
d5:06:66:5b:af:48:5f:f3:9c:4f:7a:9c:40:d1:b6:
70:05:c7:51:af:ab:ef:97:65:56:4e:b8:6d:63:ae:
f1:92:0a:aa:10:d8:6d:9d:b1:fb:9b:02:60:f9:05:
35:87:1a:57:53:55:b3:d0:99:3c:55:b9:9f:92:4f:
43:59:d6:cb:4b:b1:e9:32:5c:53:f8:fc:73:5e:ce:
17:08:55:96:8e:00:84:77:ce:50:46:cf:4d:5a:ad:
49:c3:31:5c:9a:71:b0:96:0e:9a:4a:c4:45:25:4f:
77:25:68:7a:37:f0:6a:9e:52:37:f7:c3:be:f2:63:
11:2a:66:b6:e8:89:18:cf:6a:e0:df:08:ed:0c:7a:
8f:8d:12:2f:34:7f:48:6e:6c:47:db:1a:a4:0c:0e:
3a:99:39:2b:dd:67:5f:54:1c:5c:3e:c3:9a:c7:2e:
d8:21:6a:cb:57:d5:ab:b9:05:9c:a7:78:a8:6c:55:
3f:0a:6a:f5:39:2d:aa:d3:91:b8:cc:1c:d6:9d:43:
41:80:c8:7c:e9:67:8f:b1:fe:72:b5:da:28:92:b9:
58:93:9e:2b:af:a3:a2:47:d3:08:8e:10:f3:71:84:
ba:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:24:E9:E8:00:F8:BB:1E:14:D2:17:DF:B4:8A:7F:A2:BB:BC:2D:17
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/hSTp6AD4ux4U0hfftIp_oru8LRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.19.64.0/22
Signature Algorithm: sha256WithRSAEncryption
28:31:14:ef:70:53:85:3a:38:5f:3f:c1:78:2d:14:e9:15:1b:
58:49:86:10:eb:83:b2:aa:89:25:3b:7e:2c:4c:c5:1c:58:69:
a7:b2:c7:fa:52:14:e4:28:aa:05:bc:40:9e:ff:04:d2:28:71:
57:22:29:d6:ea:86:50:39:85:c1:29:c6:a1:a4:2a:3f:4a:8f:
4b:0d:53:70:88:4e:3d:c2:fa:fa:3f:d3:ee:bf:7b:df:39:66:
d1:20:fe:72:f9:74:db:91:12:1b:8f:c2:9e:01:28:54:24:c6:
ed:7a:70:f7:47:32:45:d8:eb:84:6d:0d:5c:76:e7:75:07:5a:
55:5f:b8:a3:dc:6f:e9:08:34:60:97:72:d4:90:e8:8a:2a:b6:
d2:9f:9b:7a:4b:01:bf:be:69:9a:8a:cd:c6:6a:0c:8a:22:92:
49:02:bf:14:11:5d:46:ad:b8:ef:b1:cd:69:18:ed:83:5a:66:
91:02:1a:65:19:dc:28:01:f2:d8:28:12:cf:71:41:06:b9:1d:
54:1f:82:37:8e:ab:2e:94:1c:8b:e3:dd:7b:e2:8a:de:b6:6d:
3b:2c:1b:a4:5a:25:2e:88:f1:18:88:cc:fd:29:69:49:b8:6f:
ad:71:bd:40:bf:d4:da:e2:25:93:8a:a6:ea:a2:1a:c7:97:9c:
bd:bd:3f:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:05 2024 by rpki-client on console-fra.rpki-client.org