Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/UOeYkeSTsc7j9l3t2OJ2_-hhG-4.roa
File: UOeYkeSTsc7j9l3t2OJ2_-hhG-4.roa (raw, json)
Hash identifier: fVc6z2MtwUmaw1mJLjAWrlgpCxVuPGvzRPYVtp+DICw=
Subject key identifier: 50:E7:98:91:E4:93:B1:CE:E3:F6:5D:ED:D8:E2:76:FF:E8:61:1B:EE
Certificate issuer: /CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Certificate serial: 0C85FE
Authority key identifier: B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/UOeYkeSTsc7j9l3t2OJ2_-hhG-4.roa
Signing time: Thu 03 Feb 2022 09:31:48 +0000
ROA not before: Thu 03 Feb 2022 09:31:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57675
IP address blocks: 37.32.64.0/24 maxlen: 24
37.32.70.0/24 maxlen: 24
37.32.68.0/24 maxlen: 24
37.32.69.0/24 maxlen: 24
37.32.66.0/24 maxlen: 24
37.32.67.0/24 maxlen: 24
37.32.71.0/24 maxlen: 24
37.32.65.0/24 maxlen: 24
37.32.77.0/24 maxlen: 24
37.32.76.0/24 maxlen: 24
37.32.73.0/24 maxlen: 24
37.32.78.0/24 maxlen: 24
2a0f:1300::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 820734 (0xc85fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Validity
Not Before: Feb 3 09:31:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50e79891e493b1cee3f65dedd8e276ffe8611bee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:54:01:9f:45:88:9c:4f:5f:4a:bd:4b:14:ec:
f9:60:df:d2:6e:17:88:d3:d6:53:e9:8c:b0:20:97:
88:1f:22:40:b0:3b:a5:6e:66:d2:b9:09:de:5a:07:
f8:c3:80:c7:35:38:21:dd:b2:7b:d4:2d:48:91:e2:
17:7f:98:1b:01:84:51:47:9a:5f:c6:d5:3a:88:f0:
17:c8:9e:0d:88:d4:ef:86:bf:53:d4:f2:5b:e1:f5:
d4:50:3b:5d:ca:0d:79:24:c7:65:4b:09:ea:56:83:
8b:48:42:4d:3a:06:06:e8:d8:3d:43:77:fa:7a:f9:
09:7d:fc:88:4d:53:73:53:c0:c1:9f:68:8b:4e:3f:
8f:ae:a8:9b:93:91:2b:32:94:86:9f:33:6e:05:d6:
b8:04:41:94:9d:0f:11:7a:a6:9a:8f:42:42:23:bd:
bc:07:c8:a9:01:dd:69:12:e8:6c:fc:1d:cb:04:8d:
0d:c0:6a:84:aa:59:0a:c5:b0:37:59:d2:e4:a8:fe:
77:70:d6:9a:29:46:d1:cb:88:33:a3:27:1d:dc:a5:
e0:70:ca:36:fa:4c:bd:14:b9:ca:ca:a2:70:04:db:
c1:1b:d4:63:20:43:ea:0d:47:73:55:b7:1c:2c:a2:
82:1f:ec:9f:94:75:05:22:34:a1:e7:2d:98:1b:79:
60:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:E7:98:91:E4:93:B1:CE:E3:F6:5D:ED:D8:E2:76:FF:E8:61:1B:EE
X509v3 Authority Key Identifier:
keyid:B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/UOeYkeSTsc7j9l3t2OJ2_-hhG-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/tOgroXFdaurlsBAnJf_gyDRzXX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.64.0/21
37.32.73.0/24
37.32.76.0-37.32.78.255
IPv6:
2a0f:1300::/29
Signature Algorithm: sha256WithRSAEncryption
0b:e2:5a:d3:9a:d9:06:43:b3:67:78:96:af:67:83:4a:64:b4:
17:87:56:29:e1:6e:e6:9d:b0:d1:14:4a:43:60:2a:96:16:5e:
53:0c:65:9d:50:77:c8:37:b3:38:6f:56:4e:23:15:42:ad:5d:
af:0d:ee:2b:f9:21:13:9a:91:5c:c1:a7:9f:11:9a:86:5d:78:
6f:06:ce:a9:ca:4f:4a:c3:a1:f2:92:8f:6f:d0:d8:dd:c3:6d:
71:78:e0:30:12:b2:31:c1:dc:4a:07:dc:65:d2:38:40:d5:85:
a8:b2:6c:ee:0d:a6:4e:f7:84:83:11:1f:9c:85:b6:22:cd:85:
d5:83:d2:24:cc:b8:46:f7:e6:0c:cf:47:4f:40:68:b0:e1:82:
2e:10:34:8a:4a:ba:af:21:6a:a9:0e:65:35:28:b7:47:56:74:
41:25:f2:fe:f1:44:9e:c0:47:c8:64:12:6c:ad:68:e3:ba:e3:
ef:b1:af:4e:76:2e:77:28:34:fc:57:02:29:54:8d:6c:b0:17:
ab:68:dc:09:97:47:23:0a:76:ca:32:62:e7:21:26:8d:8e:f4:
a2:fc:0e:cc:18:77:17:21:66:ca:95:5e:13:37:9d:b0:0c:df:
c6:e5:c2:97:dc:0c:8c:c5:dd:e4:c0:89:aa:7e:aa:b0:1c:9b:
2d:28:7e:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org