Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/NXCjxYwoa0rr1xY0Te9TejSfgIM.roa
File: NXCjxYwoa0rr1xY0Te9TejSfgIM.roa (raw, json)
Hash identifier: 4zGWr5V/ByCNlSB3ebHss65zdvGui2VCBgWGZ55BxA4=
Subject key identifier: 35:70:A3:C5:8C:28:6B:4A:EB:D7:16:34:4D:EF:53:7A:34:9F:80:83
Certificate issuer: /CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Certificate serial: 018384599B09CD55B7B5B0FFC37C98136EE1
Authority key identifier: 32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/NXCjxYwoa0rr1xY0Te9TejSfgIM.roa
Signing time: Wed 28 Sep 2022 13:46:48 +0000
ROA not before: Wed 28 Sep 2022 13:46:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210892
IP address blocks: 37.44.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:84:59:9b:09:cd:55:b7:b5:b0:ff:c3:7c:98:13:6e:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Validity
Not Before: Sep 28 13:46:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3570a3c58c286b4aebd716344def537a349f8083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:36:18:4c:1c:df:05:a1:15:f2:67:b9:a9:7d:
8b:70:0e:a6:06:9e:47:94:96:1f:ec:f1:a3:10:0a:
24:5d:65:a5:db:a3:43:b3:a4:0b:f7:03:33:a8:da:
d1:bf:0f:8b:84:c7:34:af:23:02:46:0f:7b:09:cf:
4d:e9:c4:97:9c:96:f7:ca:61:e5:67:c7:09:2f:8e:
27:7c:37:ff:01:54:16:0c:fe:c7:5a:7b:e9:e0:0b:
67:54:59:af:96:36:61:7b:7d:9b:3f:71:52:ec:0c:
33:e6:99:6b:b0:b8:58:69:ae:64:5d:91:a7:4f:95:
1a:e2:94:3f:04:f1:e9:04:41:ef:2e:b7:d4:a1:10:
73:32:6c:ec:f5:b8:da:a0:4e:d8:51:4d:7c:0b:cf:
a9:50:57:51:24:a4:e9:35:54:a0:17:93:6f:93:61:
a8:51:3f:68:a4:2c:de:b9:b9:e7:0e:5e:b9:fc:cb:
52:32:64:a8:30:ed:a6:b8:af:24:b9:09:29:cc:52:
4f:ca:e7:42:7e:1e:90:ac:fc:c8:fa:0a:1f:cd:b3:
5b:df:1f:fa:19:23:60:08:58:27:8b:0d:06:af:8c:
54:62:f4:1e:e9:21:ab:94:e6:03:13:69:6a:f2:a9:
f3:af:74:3d:8a:1c:a2:bc:df:7f:12:e7:e4:0a:53:
73:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:70:A3:C5:8C:28:6B:4A:EB:D7:16:34:4D:EF:53:7A:34:9F:80:83
X509v3 Authority Key Identifier:
keyid:32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/NXCjxYwoa0rr1xY0Te9TejSfgIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.44.228.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:e9:be:1c:48:85:07:56:bf:bb:eb:4c:86:ee:7e:3d:fe:b3:
26:38:01:f2:e3:55:48:e1:0c:7a:37:cb:ad:38:aa:0c:88:06:
67:d4:39:5c:82:6e:3e:da:26:10:82:44:7f:9e:4d:04:a5:19:
4d:00:d4:cc:40:ea:75:13:c5:37:45:21:89:c7:f1:07:a6:49:
15:a5:f3:f7:71:9f:d5:d2:a9:94:e8:9c:98:00:48:b2:07:b1:
b5:d4:f5:74:f0:bc:bc:63:13:8e:d8:67:36:36:99:74:11:ba:
ef:e7:44:1f:fb:14:d0:d3:81:6a:7a:00:88:b0:78:61:4c:d1:
30:52:69:15:d2:49:36:b5:35:1b:dd:9c:61:7f:4b:f5:5c:ec:
0f:3d:b0:f6:56:d3:67:93:75:c2:fc:3e:60:cc:39:ce:9e:56:
8f:53:3c:eb:f3:21:f3:50:0c:bb:f3:b9:de:4d:7e:a2:02:82:
b7:eb:22:d7:e8:cd:6a:c3:db:20:33:48:80:1f:26:91:dd:2a:
18:34:c4:07:34:14:24:7a:c6:77:5a:fc:0a:6c:2f:e2:be:60:
73:1a:61:09:d0:09:4d:35:e9:16:f0:b5:65:40:70:d4:24:54:
70:8b:e0:e9:ec:af:91:f5:59:22:99:4c:1a:d2:24:72:fc:09:
66:81:82:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:08 2024 by rpki-client on console-ams.rpki-client.org