Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/06e422-eb15-49a4-b916-cd6766c369a1/1/dSYQLLuKMcYu0b4UIDer2ZIljeM.roa
File: dSYQLLuKMcYu0b4UIDer2ZIljeM.roa (raw, json)
Hash identifier: PZfqtFXvxoW6tTmcU06vDMwtawIsX9Lpwut2ZmytZCc=
Subject key identifier: 75:26:10:2C:BB:8A:31:C6:2E:D1:BE:14:20:37:AB:D9:92:25:8D:E3
Certificate issuer: /CN=532414492bb2cfa408ff573aa068fcf9a5e778ee
Certificate serial: DCC7E2
Authority key identifier: 53:24:14:49:2B:B2:CF:A4:08:FF:57:3A:A0:68:FC:F9:A5:E7:78:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyQUSSuyz6QI_1c6oGj8-aXneO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/06e422-eb15-49a4-b916-cd6766c369a1/1/dSYQLLuKMcYu0b4UIDer2ZIljeM.roa
Signing time: Sat 01 Jan 2022 01:55:46 +0000
ROA not before: Sat 01 Jan 2022 01:55:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24971
IP address blocks: 37.140.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14469090 (0xdcc7e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=532414492bb2cfa408ff573aa068fcf9a5e778ee
Validity
Not Before: Jan 1 01:55:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7526102cbb8a31c62ed1be142037abd992258de3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7c:9e:52:c5:d2:d5:f5:14:11:b3:c5:b3:01:
69:ee:77:20:7e:d1:2c:f1:9e:c7:a5:43:93:ff:06:
46:f9:b1:2b:75:f7:be:a6:55:e5:16:e3:9f:4b:6c:
f7:4f:bb:9f:db:3f:69:11:9e:80:8e:25:d9:8a:37:
15:c7:ab:91:25:f1:a4:a2:e0:36:eb:57:5c:b7:0f:
76:de:a0:57:d3:74:30:ad:96:36:a8:1e:24:4b:10:
18:86:76:8f:42:3a:a3:03:24:db:56:43:30:fb:2f:
b6:ff:9e:10:55:af:89:b3:b4:7e:91:62:36:3d:2d:
85:84:ea:2b:69:4f:df:9b:a7:64:2e:bf:e5:8f:06:
dd:41:8a:66:65:62:f3:99:04:51:76:bd:dc:b9:3f:
3c:61:8a:15:29:dd:30:8a:ef:59:d2:af:13:09:0c:
d2:87:6e:88:5f:1c:a2:52:aa:92:97:d7:8e:49:12:
79:e3:de:88:ea:26:e2:82:23:1e:42:69:cb:c8:6d:
e3:f4:c0:23:c9:fc:ed:80:66:d2:98:09:3b:fd:b3:
b4:a8:ab:61:12:17:27:4c:bc:5d:03:44:08:1b:6e:
cc:69:d8:f9:7e:d0:36:b3:83:db:3e:32:1f:5c:3b:
16:ae:ee:be:4b:e9:01:5e:15:d1:8b:25:89:c0:d1:
1e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:26:10:2C:BB:8A:31:C6:2E:D1:BE:14:20:37:AB:D9:92:25:8D:E3
X509v3 Authority Key Identifier:
keyid:53:24:14:49:2B:B2:CF:A4:08:FF:57:3A:A0:68:FC:F9:A5:E7:78:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyQUSSuyz6QI_1c6oGj8-aXneO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/06e422-eb15-49a4-b916-cd6766c369a1/1/dSYQLLuKMcYu0b4UIDer2ZIljeM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/06e422-eb15-49a4-b916-cd6766c369a1/1/UyQUSSuyz6QI_1c6oGj8-aXneO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.220.0/24
Signature Algorithm: sha256WithRSAEncryption
55:97:a6:39:f2:d5:49:eb:0a:17:ab:53:c8:d2:5e:56:61:53:
9f:f8:53:bb:b9:da:3b:af:fd:fb:c2:c9:6f:7b:d9:94:29:75:
af:6c:74:23:a8:dc:32:01:ea:0a:cd:a1:84:d5:57:1c:95:a0:
36:12:7a:9a:c2:5f:b0:12:cf:1c:80:cb:54:a0:17:5a:14:6f:
6b:39:dd:45:13:5e:95:37:5d:42:9d:03:77:b0:e4:db:9f:9e:
43:05:33:4e:86:d8:ab:93:ae:fa:57:54:d4:fb:52:e4:a3:1e:
b7:46:fe:3d:e8:e0:ea:ca:94:bc:5c:e1:30:83:17:a5:fa:1d:
35:be:b8:6e:19:95:5d:29:ff:c8:be:84:96:45:f7:38:40:8c:
f6:32:5d:ae:ef:1e:79:e4:7f:a8:90:f6:33:63:08:64:01:ac:
2a:ab:8a:f3:ca:2f:dc:2f:48:b4:79:75:31:36:cd:6d:f3:97:
a8:1c:df:0b:49:2f:94:8e:95:af:57:b6:00:84:81:88:95:6c:
a1:77:64:12:2a:67:9c:8e:ba:1b:53:8c:c3:27:e0:64:41:1b:
86:43:91:1c:d1:c5:88:65:77:f3:c6:47:61:a2:be:62:b5:86:
72:f4:04:18:56:6e:d7:f6:c1:8f:f1:4f:21:61:28:90:a2:16:
5f:c6:a0:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:56 2024 by rpki-client on console-fra.rpki-client.org