Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/lWo4JeKAb0DvrJS5gim8YKKH_04.roa
File: lWo4JeKAb0DvrJS5gim8YKKH_04.roa (raw, json)
Hash identifier: h5djpLFnIw0UvVikwfMcXAeKvRw8/UrXZdQmvrEndHc=
Subject key identifier: 95:6A:38:25:E2:80:6F:40:EF:AC:94:B9:82:29:BC:60:A2:87:FF:4E
Certificate issuer: /CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Certificate serial: 03B34D
Authority key identifier: B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/lWo4JeKAb0DvrJS5gim8YKKH_04.roa
Signing time: Wed 02 Feb 2022 13:34:00 +0000
ROA not before: Wed 02 Feb 2022 13:34:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200154
IP address blocks: 37.32.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 242509 (0x3b34d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Validity
Not Before: Feb 2 13:34:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=956a3825e2806f40efac94b98229bc60a287ff4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b0:07:c3:97:4f:6e:bc:b6:8f:9c:1d:02:9f:
41:fe:3a:a9:b7:78:88:c3:fa:dc:b6:c6:cd:7e:b6:
5b:28:2b:88:12:1d:23:af:93:d0:83:e7:33:b3:e7:
0c:04:5c:47:bd:86:74:8d:d5:1d:5c:b9:49:6c:80:
83:f4:b9:be:7c:97:bc:3a:3f:da:6b:0e:7b:37:cd:
31:ab:6e:70:e7:97:74:05:8f:21:d0:d6:8a:3e:67:
24:ca:3c:e2:c7:3b:b1:ca:41:e3:9d:1d:84:54:e3:
d7:b1:b4:71:e7:e2:15:5f:18:a0:53:6a:b7:58:32:
57:ce:75:78:df:1e:d4:eb:f9:dc:c9:1b:c9:3e:b4:
14:d6:34:f1:80:9c:ba:fb:3c:3e:68:fb:1e:e0:fd:
5f:dd:35:bc:84:71:55:6e:a1:02:d3:4a:18:3b:28:
4c:46:f3:8e:06:47:45:a2:b1:97:96:4a:92:8e:c5:
82:ea:94:d6:16:c3:af:08:86:74:a2:fa:f3:f2:43:
7f:b7:c1:54:06:8b:4b:ae:05:a5:76:18:82:03:29:
07:9a:ed:4d:e2:89:8d:58:36:cc:ab:da:85:f1:f5:
19:eb:e3:2b:f5:52:aa:55:08:e1:af:90:c8:8c:10:
fc:15:28:79:fb:85:8c:fb:39:4f:c6:97:7c:c5:83:
66:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:6A:38:25:E2:80:6F:40:EF:AC:94:B9:82:29:BC:60:A2:87:FF:4E
X509v3 Authority Key Identifier:
keyid:B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/lWo4JeKAb0DvrJS5gim8YKKH_04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/tOgroXFdaurlsBAnJf_gyDRzXX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.79.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:11:e5:66:60:31:ad:9a:3f:b9:9b:63:c2:78:96:9b:c9:56:
9d:77:46:e8:2c:ad:8a:fc:1f:db:83:4a:e8:7f:7e:82:06:dc:
fc:22:8c:16:39:91:d0:2a:36:ad:50:d1:92:96:1c:9d:b2:fc:
65:ad:d5:97:cc:02:24:62:35:13:34:4e:f6:4d:eb:fd:74:01:
e0:aa:04:a7:41:ee:b6:69:ab:c5:00:b3:41:ba:bf:09:83:75:
87:55:cb:cc:b3:94:cb:37:74:aa:3f:27:35:1f:cf:65:03:e2:
9f:fa:6a:34:81:df:48:d8:2a:55:89:1e:89:79:5e:9c:c7:bf:
d2:70:15:e3:bb:5f:e9:28:2d:3a:c1:f3:68:3f:63:c0:15:84:
a8:f4:d9:b4:9b:69:35:f7:3a:aa:9b:22:f2:4c:19:49:1e:31:
8c:6b:53:ae:82:57:08:72:08:c9:10:12:28:27:77:ad:fa:22:
01:03:8b:61:6f:a1:7b:54:8d:21:af:97:a5:46:40:37:9b:e3:
46:b0:66:75:46:49:aa:12:d7:a9:8f:21:ed:13:d8:78:b4:73:
10:ec:9a:53:b2:89:6f:ec:07:44:f0:c9:44:cd:1a:c7:53:a4:
57:70:a3:99:2e:2e:d4:eb:0d:d5:91:76:f0:79:4f:71:0c:5c:
09:44:06:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:51 2023 by rpki-client on console-fra.rpki-client.org