Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/4LNgVx4iS3Y45mtBz9kS4RJCh_Y.roa
File: 4LNgVx4iS3Y45mtBz9kS4RJCh_Y.roa (raw, json)
Hash identifier: EE/FEBISOp8Dvtx4HoZvccWXigPCxQZPwLbx+ywPwKs=
Subject key identifier: E0:B3:60:57:1E:22:4B:76:38:E6:6B:41:CF:D9:12:E1:12:42:87:F6
Certificate issuer: /CN=037862b4608c79f450295ec5c80c7c7ad6dfe2a2
Certificate serial: 0237C3BA
Authority key identifier: 03:78:62:B4:60:8C:79:F4:50:29:5E:C5:C8:0C:7C:7A:D6:DF:E2:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3hitGCMefRQKV7FyAx8etbf4qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/4LNgVx4iS3Y45mtBz9kS4RJCh_Y.roa
Signing time: Sat 01 Jan 2022 11:59:49 +0000
ROA not before: Sat 01 Jan 2022 11:59:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60609
IP address blocks: 185.37.212.0/24 maxlen: 24
185.37.213.0/24 maxlen: 24
185.158.170.0/23 maxlen: 23
185.158.168.0/23 maxlen: 23
185.37.215.0/24 maxlen: 24
185.86.11.0/24 maxlen: 24
185.77.156.0/24 maxlen: 24
185.77.157.0/24 maxlen: 24
185.77.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37209018 (0x237c3ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=037862b4608c79f450295ec5c80c7c7ad6dfe2a2
Validity
Not Before: Jan 1 11:59:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0b360571e224b7638e66b41cfd912e1124287f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ae:7a:43:16:55:a4:bb:3f:84:c5:c6:d3:1f:
a7:d4:28:03:7c:c6:8a:3d:34:56:72:83:8d:76:a4:
a8:c5:36:59:c0:07:7c:2b:2d:bb:69:0c:f0:88:8a:
d2:3e:7d:0d:12:a9:f4:72:f6:c7:0e:98:76:ac:51:
e2:34:68:5b:f9:94:1a:e6:2a:0b:a8:1f:54:ac:af:
b3:8c:d0:0a:90:10:a8:e4:68:5b:cc:2a:e5:75:c4:
76:56:08:a1:d5:ea:02:0f:fd:a6:0a:f3:1a:91:d4:
0b:11:8c:9e:9a:b5:dc:92:c2:44:0b:4a:58:80:0a:
1e:76:14:60:91:2a:1b:22:fe:72:88:dd:48:d3:07:
81:b4:93:3b:1c:eb:97:18:d7:09:ae:33:ab:ff:e1:
00:1a:92:0d:b5:46:33:a7:9a:28:1a:d9:04:fb:f9:
e3:f2:cb:57:be:50:f6:ae:e1:2e:b6:ea:57:d4:fe:
2d:8f:87:75:26:de:87:33:22:56:90:38:97:94:4c:
51:ac:15:7b:ba:4c:54:1d:f5:75:c5:59:30:07:ab:
1b:a5:8a:94:78:33:1f:99:f5:3a:ad:56:6c:79:67:
ca:9b:27:fd:01:f1:07:ea:91:fc:a9:d0:c3:d6:71:
e1:e5:f4:63:11:a4:29:97:35:73:ee:d1:2b:bd:42:
b0:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:B3:60:57:1E:22:4B:76:38:E6:6B:41:CF:D9:12:E1:12:42:87:F6
X509v3 Authority Key Identifier:
keyid:03:78:62:B4:60:8C:79:F4:50:29:5E:C5:C8:0C:7C:7A:D6:DF:E2:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3hitGCMefRQKV7FyAx8etbf4qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/4LNgVx4iS3Y45mtBz9kS4RJCh_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.37.212.0/23
185.37.215.0/24
185.77.156.0-185.77.158.255
185.86.11.0/24
185.158.168.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:e0:da:20:62:d5:d6:35:1e:07:68:5d:41:9b:25:71:4f:b9:
16:4c:a2:17:40:ec:0f:b6:a2:fc:0b:36:ce:36:26:64:2f:b5:
4d:97:66:3d:2f:36:6d:20:12:58:82:fe:9a:18:bb:3f:6c:c8:
75:46:27:26:c6:1a:a4:96:b1:65:78:e1:c8:bf:c1:2c:db:6a:
43:de:43:9a:5a:51:62:c9:07:c3:29:07:00:98:07:6c:e3:f1:
46:cd:db:c0:6f:70:d0:d4:f0:ab:94:0a:bc:98:9c:00:9e:e1:
87:d1:ff:06:9e:11:51:9c:24:92:01:89:e6:8b:cf:e6:9a:80:
d5:af:e6:40:ee:48:ea:83:5c:57:e3:39:1c:85:43:51:9f:11:
a0:cd:5e:7e:2a:3e:c1:9a:b2:bb:32:0a:44:82:22:bf:42:7a:
6d:4e:7f:b0:7f:c4:73:6b:40:f8:16:be:db:61:62:18:8b:65:
55:b7:80:d4:10:19:42:6c:1f:88:55:c5:1a:71:b7:6d:49:14:
24:cc:a3:f9:b5:25:62:65:f6:3a:af:3e:29:30:ef:13:f8:0d:
ea:81:9c:a0:b8:17:e8:72:4b:93:22:90:5b:2f:96:cb:ce:54:
cc:c6:46:86:65:9f:4b:56:64:64:1d:75:2c:be:44:ed:5c:d4:
51:ee:16:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:43 2023 by rpki-client on console-ams.rpki-client.org