Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/qDkERVwOx5tERXGYOa8JrZc_oK8.roa
File: qDkERVwOx5tERXGYOa8JrZc_oK8.roa (raw, json)
Hash identifier: pccuW/3G6cy204+h/3bCX0I6E1TM8Fv194fDNKz2nYI=
Subject key identifier: A8:39:04:45:5C:0E:C7:9B:44:45:71:98:39:AF:09:AD:97:3F:A0:AF
Certificate issuer: /CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Certificate serial: 07F388
Authority key identifier: B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/qDkERVwOx5tERXGYOa8JrZc_oK8.roa
Signing time: Thu 03 Feb 2022 08:41:17 +0000
ROA not before: Thu 03 Feb 2022 08:41:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13099
IP address blocks: 37.32.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 521096 (0x7f388)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Validity
Not Before: Feb 3 08:41:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a83904455c0ec79b4445719839af09ad973fa0af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:27:29:30:ec:e1:04:e2:d9:0b:7c:c9:4d:59:
62:e4:c1:00:f0:30:1b:f3:5e:d1:6a:80:70:2e:22:
ee:2e:52:95:84:fb:e5:88:9d:23:44:5a:87:99:69:
26:a3:12:99:8a:02:ff:46:bf:97:5e:25:2c:28:f1:
af:5f:6e:04:4b:4b:97:ca:a4:35:b3:da:9c:67:9a:
8b:dc:1f:09:1a:17:22:0c:85:ea:a8:18:16:1f:ad:
95:b4:27:58:ff:0a:c0:73:f0:a8:7e:c1:20:67:b1:
82:97:8f:0b:e4:c7:a6:20:41:c3:43:ba:72:72:2a:
b7:91:19:d8:70:54:ae:8a:8c:4b:e2:7f:bd:08:c8:
65:07:3c:1b:4c:69:96:bb:bb:da:55:3a:8b:ed:e4:
a7:20:8b:1a:48:24:97:90:16:d4:84:51:e7:aa:e0:
cb:9e:a5:04:da:9b:f6:18:72:c5:fa:b9:d3:1d:10:
f3:c9:ef:2d:d3:cc:06:81:8a:6d:6b:6a:e0:d6:61:
b7:6c:2a:d7:a8:7c:45:71:7d:1b:46:4f:98:a7:f3:
cf:df:95:74:45:4a:b5:db:dd:e1:36:05:61:5d:ee:
ae:f1:ad:41:0b:14:b3:78:fb:a2:cf:a9:d5:8e:b4:
59:9a:3b:8c:26:30:68:a8:12:51:44:d2:26:84:49:
17:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:39:04:45:5C:0E:C7:9B:44:45:71:98:39:AF:09:AD:97:3F:A0:AF
X509v3 Authority Key Identifier:
keyid:B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/qDkERVwOx5tERXGYOa8JrZc_oK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/tOgroXFdaurlsBAnJf_gyDRzXX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.75.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:79:ae:19:c9:be:fb:0f:4d:49:d2:64:c5:d5:a7:88:1a:d4:
c1:f6:91:10:03:ef:53:92:05:75:1d:0a:5b:96:04:f3:c6:d1:
e0:7a:d6:4e:8e:d1:04:3a:36:5b:cc:54:a7:3f:de:31:e7:85:
23:b7:48:62:f4:b0:0e:8b:6b:dd:d2:2f:d7:29:f4:33:ab:4f:
c4:61:be:75:d7:46:5a:1a:a6:93:d6:4d:e5:c0:60:5b:1f:e0:
b4:8e:ca:e6:31:c2:65:01:74:5c:1f:db:ad:5f:69:d6:af:71:
81:74:e5:20:17:74:65:3a:95:06:cf:8a:8d:31:4f:da:30:71:
58:2d:74:c9:c5:3d:e7:d6:17:6a:33:08:d9:27:23:8f:79:8c:
6a:07:cc:d5:5c:8e:55:3a:c9:67:94:25:0f:6f:e5:ce:2e:8d:
9e:3b:eb:39:78:33:60:c0:3f:08:84:48:99:e1:be:3a:9c:a6:
04:50:c7:76:a4:45:fb:e5:a5:75:49:28:3e:0a:a9:39:2b:21:
61:c6:16:63:dc:f0:d9:eb:86:30:73:71:5d:f6:3d:42:0d:0e:
93:63:11:11:98:51:28:1b:bb:b1:85:2e:6a:3e:ac:66:9b:bf:
33:b5:a8:8c:8e:f7:79:c7:9c:ee:9f:dc:31:2a:f5:e9:53:7a:
24:ad:1d:7a
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDB/OIMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGI0
ZTgyYmExNzE1ZDZhZWFlNWIwMTAyNzI1ZmZlMGM4MzQ3MzVkN2QwHhcNMjIwMjAz
MDg0MTE3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhhODM5MDQ0NTVjMGVj
NzliNDQ0NTcxOTgzOWFmMDlhZDk3M2ZhMGFmMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA2ycpMOzhBOLZC3zJTVli5MEA8DAb817RaoBwLiLuLlKVhPvl
iJ0jRFqHmWkmoxKZigL/Rr+XXiUsKPGvX24ES0uXyqQ1s9qcZ5qL3B8JGhciDIXq
qBgWH62VtCdY/wrAc/CofsEgZ7GCl48L5MemIEHDQ7pyciq3kRnYcFSuioxL4n+9
CMhlBzwbTGmWu7vaVTqL7eSnIIsaSCSXkBbUhFHnquDLnqUE2pv2GHLF+rnTHRDz
ye8t08wGgYpta2rg1mG3bCrXqHxFcX0bRk+Yp/PP35V0RUq1293hNgVhXe6u8a1B
CxSzePuiz6nVjrRZmjuMJjBoqBJRRNImhEkXuwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFKg5BEVcDsebREVxmDmvCa2XP6CvMB8GA1UdIwQYMBaAFLToK6FxXWrq5bAQ
JyX/4Mg0c119MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
dE9ncm9YRmRhdXJsc0JBbkpmX2d5RFJ6WFgwLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9hNy85MTUxYzAtMzMyNi00ODAxLTkzNjMtYzdkMTk5MzBkNjZkLzEv
cURrRVJWd094NXRFUlhHWU9hOEpyWmNfb0s4LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy85
MTUxYzAtMzMyNi00ODAxLTkzNjMtYzdkMTk5MzBkNjZkLzEvdE9ncm9YRmRhdXJs
c0JBbkpmX2d5RFJ6WFgwLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJSBLMA0GCSqGSIb3DQEBCwUAA4IB
AQBtea4Zyb77D01J0mTF1aeIGtTB9pEQA+9TkgV1HQpblgTzxtHgetZOjtEEOjZb
zFSnP94x54Ujt0hi9LAOi2vd0i/XKfQzq0/EYb5110ZaGqaT1k3lwGBbH+C0jsrm
McJlAXRcH9utX2nWr3GBdOUgF3RlOpUGz4qNMU/aMHFYLXTJxT3n1hdqMwjZJyOP
eYxqB8zVXI5VOslnlCUPb+XOLo2eO+s5eDNgwD8IhEiZ4b46nKYEUMd2pEX75aV1
SSg+Cqk5KyFhxhZj3PDZ64Ywc3Fd9j1CDQ6TYxERmFEoG7uxhS5qPqxmm78ztaiM
jvd5x5zun9wxKvXpU3okrR16
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:51 2023 by rpki-client on console-fra.rpki-client.org