Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/37r3U2FWc5ni-Cm4zliH3IQj9zc.roa
File: 37r3U2FWc5ni-Cm4zliH3IQj9zc.roa (raw, json)
Hash identifier: UUHNYC9xDyOa/+lMIRcuVrHlzOaXLu3mIGNm4kqo8oA=
Subject key identifier: DF:BA:F7:53:61:56:73:99:E2:F8:29:B8:CE:58:87:DC:84:23:F7:37
Certificate issuer: /CN=23446da7a70bce773ec2bc1655aae30c3c18412c
Certificate serial: 05A336EF
Authority key identifier: 23:44:6D:A7:A7:0B:CE:77:3E:C2:BC:16:55:AA:E3:0C:3C:18:41:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I0Rtp6cLznc-wrwWVarjDDwYQSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/37r3U2FWc5ni-Cm4zliH3IQj9zc.roa
Signing time: Thu 23 Jun 2022 05:07:32 +0000
ROA not before: Thu 23 Jun 2022 05:07:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 84.252.84.0/23 maxlen: 23
84.252.86.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94582511 (0x5a336ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23446da7a70bce773ec2bc1655aae30c3c18412c
Validity
Not Before: Jun 23 05:07:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dfbaf75361567399e2f829b8ce5887dc8423f737
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fb:83:44:66:51:4b:0b:06:2b:22:0a:c1:25:
24:ef:8d:bc:b6:88:c0:41:3a:35:7d:66:f9:06:6e:
9b:37:fc:dc:b5:b4:f8:28:1c:ba:2c:b2:a1:ea:a9:
27:4f:e5:1f:4a:01:02:0e:c0:81:6e:64:87:e4:f9:
cd:0e:75:c4:d7:2c:7d:32:2d:74:65:e8:41:a8:0d:
40:3d:b6:3d:fa:a7:28:a9:71:70:81:db:c9:c7:d1:
aa:4c:c7:a2:f5:00:8d:e2:5f:12:8b:f9:96:e8:25:
35:0c:ae:b9:1d:fb:24:a8:b0:6c:5f:aa:1e:73:28:
96:89:31:6e:74:2a:36:fc:50:74:27:61:7c:7e:82:
b3:79:f7:c4:cd:71:e8:4c:a2:69:15:61:d8:8d:d3:
89:a7:44:2e:48:4f:1b:17:75:50:4c:d7:9b:89:46:
96:10:de:9f:84:0e:10:32:7e:5c:23:48:e0:9d:53:
12:20:63:b3:92:1f:ce:2b:84:a8:0d:46:83:5e:b6:
c2:2e:68:3b:e6:5b:3f:ea:b1:ab:57:b2:74:de:7f:
26:36:f3:f0:b5:57:63:62:2c:6b:ef:eb:bd:3b:f2:
ed:7d:03:8a:70:a1:91:d0:91:b7:7a:33:0f:38:cf:
b8:ef:3a:56:0e:68:cf:d2:00:ec:98:fd:2b:d6:97:
c2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:BA:F7:53:61:56:73:99:E2:F8:29:B8:CE:58:87:DC:84:23:F7:37
X509v3 Authority Key Identifier:
keyid:23:44:6D:A7:A7:0B:CE:77:3E:C2:BC:16:55:AA:E3:0C:3C:18:41:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I0Rtp6cLznc-wrwWVarjDDwYQSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/37r3U2FWc5ni-Cm4zliH3IQj9zc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/I0Rtp6cLznc-wrwWVarjDDwYQSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.252.84.0/22
Signature Algorithm: sha256WithRSAEncryption
18:c0:ae:d3:ac:16:ee:c3:fa:c6:a8:be:57:bf:f8:92:e3:3a:
a4:74:91:ff:df:74:1f:36:72:c1:41:06:c8:5a:e1:19:15:60:
3d:c0:b4:50:7f:a8:67:d1:3d:ed:82:ae:3d:44:70:38:1e:9b:
61:e9:58:24:9f:c8:6c:78:b8:a1:14:a0:25:58:2c:5d:8a:2a:
a8:bb:64:4b:6c:e3:73:1f:b4:ef:0a:9a:25:e5:9f:8c:5a:3e:
c2:22:2d:f8:c0:8a:26:53:d8:01:54:e6:d3:ad:41:a2:2f:c9:
21:78:1a:42:c2:9a:e0:f2:44:6b:a3:73:99:9a:12:a0:27:f3:
88:78:db:67:9e:3e:b0:41:68:88:57:eb:a1:58:e7:e9:df:ca:
9b:7c:d5:cd:6b:60:37:6c:7c:4b:05:e5:b7:ca:ba:97:ca:c9:
02:bd:62:04:eb:0e:c8:5f:7c:ff:f3:62:15:0d:ff:93:9c:45:
53:58:8d:1d:2c:54:d7:5a:a7:49:27:0a:9f:8d:fe:3e:22:55:
da:a2:11:5e:c8:0c:49:ed:d2:9e:8b:07:bf:83:7e:19:17:19:
5b:ff:db:43:26:a8:cd:36:4a:ec:58:23:19:f0:36:7a:4d:b7:
9b:3c:17:fa:0d:b0:7c:d4:5d:e5:73:37:89:0c:5e:a8:93:a8:
36:16:64:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:03 2023 by rpki-client on console-ams.rpki-client.org