Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/gSpKYvJlgD573zKg1FFY_c0AYE4.roa
File: gSpKYvJlgD573zKg1FFY_c0AYE4.roa (raw, json)
Hash identifier: FdrmnKH04N8qcK/RZunBLg5bhqFcmx72AYKSaZJCY8s=
Subject key identifier: 81:2A:4A:62:F2:65:80:3E:7B:DF:32:A0:D4:51:58:FD:CD:00:60:4E
Certificate issuer: /CN=b38bb62a47b1a2aedb70f32f58c979ba0c777f06
Certificate serial: 018432E9E6CAD42928D52F2A82E79F3A302E
Authority key identifier: B3:8B:B6:2A:47:B1:A2:AE:DB:70:F3:2F:58:C9:79:BA:0C:77:7F:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s4u2Kkexoq7bcPMvWMl5ugx3fwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/gSpKYvJlgD573zKg1FFY_c0AYE4.roa
Signing time: Tue 01 Nov 2022 11:18:20 +0000
ROA not before: Tue 01 Nov 2022 11:18:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34254
IP address blocks: 37.26.72.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:32:e9:e6:ca:d4:29:28:d5:2f:2a:82:e7:9f:3a:30:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b38bb62a47b1a2aedb70f32f58c979ba0c777f06
Validity
Not Before: Nov 1 11:18:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=812a4a62f265803e7bdf32a0d45158fdcd00604e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b9:1e:bb:cf:7c:3e:08:70:d5:62:da:97:ff:
75:91:7c:cd:e8:81:a2:7e:be:3c:01:69:73:ad:01:
22:6b:79:d2:b9:34:d1:69:b4:fa:33:e5:9d:e5:a0:
0a:83:13:f2:51:0a:bd:95:27:69:f3:0c:bc:b6:c7:
25:11:0f:41:7e:1b:d7:1c:b3:e3:b8:a8:c0:09:8a:
08:87:9e:81:bf:27:90:73:84:18:03:12:69:da:1a:
76:d8:83:78:d4:97:5e:ea:bd:49:b4:18:de:a2:36:
15:c0:74:2c:02:5f:0c:a3:24:b4:eb:50:57:c1:0e:
77:7d:11:ee:55:53:46:1d:1c:29:0c:9d:76:e0:88:
67:e5:de:7c:8c:85:f8:7d:4a:5d:47:60:82:55:6f:
12:b9:ad:72:74:f2:6f:22:a2:f8:99:33:2f:30:cc:
76:70:6c:5d:e7:40:67:a2:68:b6:00:67:a7:5e:4d:
06:05:a1:bf:33:b3:21:a0:74:65:f9:36:cf:d0:01:
17:21:e4:99:a2:a5:18:ee:e2:c6:1f:e7:87:cd:b3:
95:07:e0:a0:bf:fb:9f:8f:f3:f1:80:19:4d:7c:b4:
ed:08:dd:a8:94:34:c6:96:83:f9:fa:e0:44:98:10:
b2:05:63:ed:c1:02:9a:99:56:d2:92:69:f9:3b:93:
ae:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:2A:4A:62:F2:65:80:3E:7B:DF:32:A0:D4:51:58:FD:CD:00:60:4E
X509v3 Authority Key Identifier:
keyid:B3:8B:B6:2A:47:B1:A2:AE:DB:70:F3:2F:58:C9:79:BA:0C:77:7F:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s4u2Kkexoq7bcPMvWMl5ugx3fwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/gSpKYvJlgD573zKg1FFY_c0AYE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.26.72.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:c9:d4:a2:b4:e9:4a:45:e4:b1:05:f3:7b:eb:9d:b1:16:a6:
7e:03:f7:f6:db:5f:a2:ab:07:ba:cc:e2:bf:a2:c8:13:67:02:
e0:23:5f:be:45:bb:ea:9a:ad:35:9c:ed:30:76:d3:5d:40:78:
7c:b5:93:10:64:f2:a3:94:88:0c:c0:94:55:9a:de:2e:04:72:
dc:76:aa:02:52:0d:5a:4c:90:8e:26:f4:fe:fb:13:4a:16:8d:
35:28:e0:f2:74:d5:55:8d:c0:b4:90:f5:bc:d6:43:fd:89:dc:
e7:14:7d:a3:9f:89:62:ba:85:d8:a0:48:92:8b:ca:9a:af:3b:
66:24:51:ed:8c:98:b5:97:2c:97:18:16:b7:47:b4:0a:4b:52:
5b:bf:e3:cb:5f:77:35:d5:0a:e9:41:69:e7:2b:90:71:13:2c:
af:4c:13:19:1c:82:e5:63:cf:ae:b4:05:60:f2:85:a5:6a:57:
60:96:12:fb:83:5e:21:26:d5:a9:5e:4e:ba:c5:a7:47:da:29:
73:e5:4f:dc:c5:c1:f4:db:35:4a:cc:48:f4:15:88:c6:10:c9:
f7:ce:86:97:92:b9:79:77:ac:58:91:1c:09:29:af:4a:b0:fc:
78:17:5a:76:a7:86:74:1b:e4:73:31:eb:9d:6a:3e:16:46:dd:
0a:46:51:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:52 2024 by rpki-client on console-ams.rpki-client.org