Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ivOV0VpG4gt6U78mbFGwRnG2CCw.roa
File: ivOV0VpG4gt6U78mbFGwRnG2CCw.roa (raw, json)
Hash identifier: 8HM+z6N7EmDnF2wavqKPVoTbDuP9jwNhm+bT7zUbw6g=
Subject key identifier: 8A:F3:95:D1:5A:46:E2:0B:7A:53:BF:26:6C:51:B0:46:71:B6:08:2C
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 018413114EF9FC5F9E25DE7838F7E8280DD6
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ivOV0VpG4gt6U78mbFGwRnG2CCw.roa
Signing time: Wed 26 Oct 2022 06:53:32 +0000
ROA not before: Wed 26 Oct 2022 06:53:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58229
IP address blocks: 37.16.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:13:11:4e:f9:fc:5f:9e:25:de:78:38:f7:e8:28:0d:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 26 06:53:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8af395d15a46e20b7a53bf266c51b04671b6082c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:66:75:01:0f:af:21:b8:d6:5e:7d:62:c0:b3:
23:39:dc:1b:a8:06:d3:b2:aa:86:4b:08:df:ae:be:
41:f3:f4:4c:d5:e9:b2:46:85:57:a8:9d:2f:e5:e3:
4d:00:47:45:33:c4:ea:11:9e:be:66:26:31:66:91:
18:8a:3c:4e:bf:60:3f:6f:79:31:69:cf:c9:2e:63:
16:8b:95:86:0a:f4:ec:b7:31:69:ce:83:e8:4a:41:
7d:93:1b:96:cf:96:71:b4:2b:0f:1b:66:e6:6b:f6:
8d:1f:f8:74:52:00:33:6b:1b:02:b1:f6:75:eb:95:
b4:35:c7:ef:32:bd:6c:9c:2a:bd:2f:30:2c:90:96:
48:56:ac:c9:fd:16:6b:73:0c:61:7f:00:c2:a5:02:
ef:e2:76:2e:eb:b0:e8:7e:b0:bf:1a:d9:ac:19:56:
1c:64:1b:be:95:96:6a:69:38:6b:20:00:ed:4d:15:
dd:91:cd:34:7e:bd:b0:63:c8:ce:ca:65:3d:65:bd:
70:00:92:4f:d1:51:d1:75:01:90:62:4f:6e:2b:60:
91:5c:f8:53:46:43:5b:af:ba:61:6b:91:bc:31:f6:
86:e9:2e:80:f5:a8:c5:1d:28:3d:73:b1:cd:e1:e0:
ae:a1:8e:0c:c2:1e:1e:b4:e5:60:82:3b:49:b8:e2:
c9:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:F3:95:D1:5A:46:E2:0B:7A:53:BF:26:6C:51:B0:46:71:B6:08:2C
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ivOV0VpG4gt6U78mbFGwRnG2CCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.16.85.0/24
Signature Algorithm: sha256WithRSAEncryption
59:44:d7:f2:2e:24:57:7e:30:6b:f5:6f:80:a7:90:29:20:44:
2e:96:04:f4:2a:42:94:9e:c1:19:2a:83:d6:7e:79:fb:b3:c4:
74:e3:84:07:4a:64:00:50:21:c8:bd:db:73:66:85:f9:a0:8f:
44:43:9f:c7:67:a6:7c:d8:e6:93:64:e6:b0:8c:ea:e3:8b:44:
60:9e:d8:0a:e3:ab:2f:e9:3d:5e:ef:33:7a:98:64:9a:a7:56:
ed:49:14:df:5b:21:6e:ad:4a:19:7c:9a:1c:c2:b8:85:8a:8d:
ec:7a:7d:3c:8f:62:fc:b4:98:8e:f8:ec:91:97:ae:7b:d5:a3:
5c:4e:e2:68:28:ef:31:ea:3f:fa:8c:cd:cf:f3:2e:d9:5d:68:
91:2b:aa:6a:db:86:6a:68:ac:00:4c:7a:9f:21:05:8a:f9:4c:
57:5b:4e:1d:27:b8:fc:19:96:09:97:8e:8a:06:5f:f4:c1:8e:
58:8e:23:35:0f:9e:0a:69:9f:e0:ea:a6:fa:f1:2c:bc:ca:ad:
a8:3e:2c:21:e0:9d:df:33:9a:f6:8f:4a:ad:ad:5d:ec:ec:dc:
8a:b7:d1:af:bb:36:ad:2d:5c:5d:1f:bc:34:12:78:ad:81:60:
2c:53:e7:a1:d5:45:b2:dc:e7:8b:94:33:ab:3e:e7:04:f7:cf:
c8:51:7d:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:36 2024 by rpki-client on console-ams.rpki-client.org