Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/02ZPs4h-ofo20FesxZbxKS_6g-I.roa
File: 02ZPs4h-ofo20FesxZbxKS_6g-I.roa (raw, json)
Hash identifier: EMsrhy5FSOHV1yV4oqHCY9oH1oOhkygDhnK9QEEOO/0=
Subject key identifier: D3:66:4F:B3:88:7E:A1:FA:36:D0:57:AC:C5:96:F1:29:2F:FA:83:E2
Certificate issuer: /CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Certificate serial: 0182AAFE2326EFD2F2CFAE389BB1D7D90477
Authority key identifier: 32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/02ZPs4h-ofo20FesxZbxKS_6g-I.roa
Signing time: Wed 17 Aug 2022 08:49:17 +0000
ROA not before: Wed 17 Aug 2022 08:49:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 37.44.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:aa:fe:23:26:ef:d2:f2:cf:ae:38:9b:b1:d7:d9:04:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Validity
Not Before: Aug 17 08:49:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3664fb3887ea1fa36d057acc596f1292ffa83e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:c7:36:4b:cd:53:40:1c:82:18:fa:6b:6e:7c:
18:27:ae:f4:30:e5:56:75:50:b1:12:6c:bd:e2:7f:
99:7a:4d:b2:5d:ff:06:9e:b1:a2:1c:f9:48:cb:59:
a3:3c:f2:ef:b1:9f:d3:e5:9d:2b:27:fa:83:2c:3f:
50:1b:97:b8:1d:0e:28:83:ab:49:90:44:b3:7d:7d:
17:1a:72:90:bc:18:c6:8c:09:c4:60:49:4b:e2:64:
ab:a9:74:6d:e4:87:bc:a6:64:11:cb:e2:c4:d5:78:
64:fc:94:d3:a9:41:7c:77:65:96:8e:53:81:8a:cc:
71:68:93:36:b1:e3:2f:9c:7d:09:95:5e:43:df:da:
8a:b7:82:33:8a:d5:d6:1c:e5:0e:ab:a6:a3:e9:20:
6a:98:9b:a4:9d:e8:0f:7e:4b:f7:ac:d3:bc:15:0c:
75:7b:cc:ff:91:76:a4:86:9c:41:83:98:79:76:00:
9b:b7:fe:76:7b:6e:d0:71:fa:09:0d:cd:2e:11:8e:
d9:31:1f:64:bf:ea:97:67:2a:1d:e3:a8:6a:4b:90:
f3:38:39:be:93:cd:c0:b7:cf:08:ae:07:d0:4d:73:
c8:72:b9:ff:d9:3e:35:22:21:d6:81:57:55:8d:03:
24:db:5f:39:11:3f:e7:9d:8f:8d:48:26:b4:03:98:
84:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:66:4F:B3:88:7E:A1:FA:36:D0:57:AC:C5:96:F1:29:2F:FA:83:E2
X509v3 Authority Key Identifier:
keyid:32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/02ZPs4h-ofo20FesxZbxKS_6g-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.44.228.0/22
Signature Algorithm: sha256WithRSAEncryption
21:8c:c6:27:39:43:ce:8e:d7:4b:7a:e4:aa:f8:de:45:c1:33:
f6:f7:28:b6:ba:c2:2b:f7:8e:3b:7f:77:b0:d8:cb:2c:06:5f:
e5:9c:8b:b9:91:53:c3:2d:ba:18:e1:c8:84:c4:6e:cf:55:b4:
57:bb:4e:e7:6d:9e:4b:73:96:f2:2e:1f:3e:85:d5:73:bf:65:
d8:3e:e7:ac:f7:ff:52:30:7f:62:9c:7e:41:86:1c:02:39:0a:
22:f4:07:c2:3d:dc:3e:c4:35:5b:63:1d:fb:5c:86:a2:1c:e3:
1e:2f:77:0a:0b:a2:1f:62:21:62:85:6a:f2:35:71:45:e6:69:
db:27:f8:27:38:d1:14:7b:35:d7:75:6c:f9:cc:98:10:bf:cb:
09:cb:88:ac:8d:07:a4:27:2a:c0:91:3e:ad:65:0f:fc:50:31:
48:ea:06:ea:f3:0a:03:f8:f4:c9:a1:bb:23:db:62:61:b7:bc:
a8:2b:c4:5d:de:41:f9:66:7c:19:dc:d7:44:33:56:72:aa:0e:
18:8c:39:63:75:16:f9:c1:c6:9e:9d:24:e1:ee:58:d8:35:d3:
6c:b7:b1:07:98:c9:36:45:8a:6d:f4:07:4d:1d:05:10:d9:8e:
e0:ec:f7:a5:10:54:9c:b6:7d:53:96:09:e8:4a:9b:a0:3a:90:
1e:5e:52:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:15 2024 by rpki-client on console-fra.rpki-client.org