Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/1145d2-b1bd-4a57-a44d-bb6bffe66ff3/1/1B6JmivTQZlEURXq4UATQHb9gH4.roa
File: 1B6JmivTQZlEURXq4UATQHb9gH4.roa (raw, json)
Hash identifier: J+SH7LecPEt9zUQg9Ct2uea1pM4UUh9wEDsFiCRyyIc=
Subject key identifier: D4:1E:89:9A:2B:D3:41:99:44:51:15:EA:E1:40:13:40:76:FD:80:7E
Certificate issuer: /CN=27962a33fd2348781ac123a12722a086ee8fba7d
Certificate serial: 291B4D06
Authority key identifier: 27:96:2A:33:FD:23:48:78:1A:C1:23:A1:27:22:A0:86:EE:8F:BA:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J5YqM_0jSHgawSOhJyKghu6Pun0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/1145d2-b1bd-4a57-a44d-bb6bffe66ff3/1/1B6JmivTQZlEURXq4UATQHb9gH4.roa
Signing time: Sat 01 Jan 2022 05:02:52 +0000
ROA not before: Sat 01 Jan 2022 05:02:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58081
IP address blocks: 37.75.240.0/24 maxlen: 24
37.75.241.0/24 maxlen: 24
37.75.242.0/24 maxlen: 24
2a03:49c0::/32 maxlen: 32
2a03:49c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 689655046 (0x291b4d06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27962a33fd2348781ac123a12722a086ee8fba7d
Validity
Not Before: Jan 1 05:02:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d41e899a2bd34199445115eae140134076fd807e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bc:0d:ed:41:bb:66:ad:b1:0a:9e:39:fc:41:
04:3b:47:3c:6f:a0:ca:46:10:71:e0:6b:35:f7:21:
3d:a7:c2:4f:f0:9d:aa:9c:51:1b:1b:98:ca:b1:74:
d4:39:59:eb:c9:15:15:95:37:ff:e5:8b:24:b9:11:
56:65:10:16:50:48:46:5d:c7:8e:14:02:53:f0:76:
36:ad:53:78:0a:70:3f:7c:09:f2:25:eb:9b:7e:5a:
16:1b:18:cd:a6:bb:43:99:8a:96:f6:64:08:c8:98:
af:52:52:01:0b:41:51:41:d4:f5:9d:ba:5e:fd:c9:
6a:c4:d6:6c:5a:9e:b8:0e:b2:d2:8e:68:a2:94:e9:
85:65:cf:83:8d:0b:56:c8:68:bc:e1:96:4b:72:5a:
0d:b4:86:0b:ec:26:f6:f8:3a:7c:e1:19:3c:5d:cd:
5b:b4:70:d0:25:0e:09:b3:99:52:7c:00:91:94:e7:
7f:e0:26:a1:34:3d:b9:99:a8:09:73:da:ff:47:95:
f5:fb:40:f2:66:b8:89:2b:19:47:1f:05:a1:50:52:
b7:ae:5f:d0:a3:86:b1:49:f2:e5:da:e3:51:92:33:
f1:63:e0:99:45:38:e3:4b:a3:88:3c:06:e8:f9:43:
b3:e6:d1:d3:93:16:71:1e:25:d3:32:6c:1f:ff:50:
cb:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:1E:89:9A:2B:D3:41:99:44:51:15:EA:E1:40:13:40:76:FD:80:7E
X509v3 Authority Key Identifier:
keyid:27:96:2A:33:FD:23:48:78:1A:C1:23:A1:27:22:A0:86:EE:8F:BA:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J5YqM_0jSHgawSOhJyKghu6Pun0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/1145d2-b1bd-4a57-a44d-bb6bffe66ff3/1/1B6JmivTQZlEURXq4UATQHb9gH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/1145d2-b1bd-4a57-a44d-bb6bffe66ff3/1/J5YqM_0jSHgawSOhJyKghu6Pun0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.75.240.0-37.75.242.255
IPv6:
2a03:49c0::/32
Signature Algorithm: sha256WithRSAEncryption
82:65:26:61:4c:b8:b3:51:25:67:8c:b3:12:f8:8d:1e:84:a1:
d1:58:6e:0b:11:c3:00:ea:03:79:44:60:37:60:cf:da:0b:a3:
11:14:53:f7:17:12:bf:13:12:9b:64:42:cc:20:ca:fd:e4:c8:
50:dd:fe:3b:0a:27:aa:b0:6f:00:87:58:20:e0:2b:65:bf:3d:
02:9a:11:28:90:84:9d:62:64:9e:ab:44:60:42:58:3c:ed:e1:
ea:c7:2f:a0:b0:c5:61:bd:69:d3:91:68:f8:55:a0:71:b0:96:
5d:24:1b:05:a0:df:23:59:c6:98:21:1c:df:46:da:e2:9b:62:
71:32:bc:7e:e0:15:90:a2:f6:b8:67:4e:db:42:82:e1:d5:e9:
ea:9c:6f:47:a9:05:b1:b9:0d:06:c0:20:f0:31:4b:dc:1c:16:
0d:f2:12:ad:6e:de:a1:58:55:1b:0b:81:98:1a:bd:7e:d8:ad:
59:31:04:51:23:9b:97:04:39:75:24:ea:09:4d:c9:f7:85:b5:
15:1f:72:0b:a8:b2:c0:55:48:17:f8:e6:a9:0f:b7:f7:e1:79:
58:3e:f6:6a:4d:a8:66:44:fa:5d:ef:9d:d1:23:a8:fb:94:3e:
68:ee:d9:1d:b6:a4:12:6a:95:41:21:a0:83:96:06:83:9c:ae:
22:62:c4:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:45 2024 by rpki-client on console-ams.rpki-client.org