Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/bytWevGApm6VIZqbohoxjqo4S9k.roa
File: bytWevGApm6VIZqbohoxjqo4S9k.roa (raw, json)
Hash identifier: FNj510WPiYfXJ+KdfQlt7Jg7a6g7pcMrU5qN8UbYW0k=
Subject key identifier: 6F:2B:56:7A:F1:80:A6:6E:95:21:9A:9B:A2:1A:31:8E:AA:38:4B:D9
Certificate issuer: /CN=81eed4091383d9ed4056d9f4eff7d2622ddce205
Certificate serial: 0184CE084B0AF1EF2F08F315C2258A3F6743
Authority key identifier: 81:EE:D4:09:13:83:D9:ED:40:56:D9:F4:EF:F7:D2:62:2D:DC:E2:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ge7UCROD2e1AVtn07_fSYi3c4gU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/bytWevGApm6VIZqbohoxjqo4S9k.roa
Signing time: Thu 01 Dec 2022 14:12:40 +0000
ROA not before: Thu 01 Dec 2022 14:12:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12871
IP address blocks: 37.188.64.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ce:08:4b:0a:f1:ef:2f:08:f3:15:c2:25:8a:3f:67:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81eed4091383d9ed4056d9f4eff7d2622ddce205
Validity
Not Before: Dec 1 14:12:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f2b567af180a66e95219a9ba21a318eaa384bd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:3c:d6:e3:30:3b:95:c2:51:84:89:2c:52:c8:
4d:a5:fe:f4:4a:8f:c0:73:67:33:8d:4f:09:fc:3d:
82:45:ee:fc:c9:e9:0c:ff:71:1b:62:10:cf:b6:b1:
79:bf:71:52:8d:bb:b1:da:38:09:8b:51:ab:98:58:
e4:63:26:44:80:6f:ea:b4:16:6b:db:8a:91:5f:b6:
88:0d:f0:82:98:d4:f7:a6:fa:97:57:21:6c:8b:c2:
49:de:62:72:be:ec:35:c6:f3:dd:5f:9d:5d:d3:fe:
d7:af:e2:39:d4:23:cf:44:fd:e3:8d:0c:7e:79:b6:
cb:f4:b5:a8:18:64:12:9f:3a:dd:40:ab:61:43:58:
ff:7e:95:0a:92:f7:29:fc:b0:9d:03:aa:9a:23:08:
ee:8b:97:8f:87:ce:10:10:7c:11:7d:fb:03:cd:1e:
f2:b4:6f:0e:1c:0f:8f:5d:6c:70:b7:87:2e:f9:8c:
f7:d4:df:2a:5b:7d:7a:59:f4:61:ad:15:09:2c:63:
44:37:ce:4b:d0:6e:f5:2d:68:6b:15:d6:2d:f6:3c:
18:63:6e:ee:ab:4c:ba:87:b2:48:1a:f2:03:fe:d4:
fc:9f:41:c9:3c:38:9d:1c:56:d1:c5:7f:4f:57:75:
18:dd:ad:8d:92:0a:b4:59:bb:97:c3:91:83:6d:42:
a1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:2B:56:7A:F1:80:A6:6E:95:21:9A:9B:A2:1A:31:8E:AA:38:4B:D9
X509v3 Authority Key Identifier:
keyid:81:EE:D4:09:13:83:D9:ED:40:56:D9:F4:EF:F7:D2:62:2D:DC:E2:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ge7UCROD2e1AVtn07_fSYi3c4gU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/bytWevGApm6VIZqbohoxjqo4S9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/ge7UCROD2e1AVtn07_fSYi3c4gU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.188.64.0/20
Signature Algorithm: sha256WithRSAEncryption
60:7c:2f:ea:42:f0:e7:9c:27:0d:f2:55:a5:b4:d8:06:ff:bf:
5d:5e:9b:ea:56:7d:97:22:3b:89:8b:a0:25:fa:14:06:c8:c2:
96:79:32:6c:10:c0:90:d5:68:ac:bc:62:53:fb:23:28:0f:64:
f1:40:b0:17:c2:c1:14:90:4c:12:ad:a9:98:af:d8:58:ae:c6:
2a:1d:f1:02:6e:b0:a3:21:a8:90:b3:a0:b5:62:38:a7:10:70:
bf:c0:a1:9b:bc:38:3d:af:cc:dc:f7:11:b7:e1:e6:0d:0e:4b:
5a:04:f6:7b:49:dc:d1:dd:7e:59:15:e7:8c:e8:d7:cd:b1:56:
fe:70:08:3e:ea:a0:ef:63:6b:8d:c0:1e:2a:b3:3a:a6:89:dc:
80:69:16:8b:45:f5:da:91:44:d4:1a:8a:ae:dc:1d:99:23:ea:
32:03:dd:a6:bf:76:b1:f9:a1:39:24:0f:3c:ff:37:97:d9:37:
40:08:d2:18:a3:f0:d5:ab:ae:cb:1b:df:34:5b:55:47:3d:a0:
22:80:90:77:9c:bf:69:a3:1d:ae:cf:af:6c:f1:3c:fe:36:95:
71:9f:ad:fa:af:09:3c:53:6b:fa:89:d1:ec:00:03:31:8c:78:
40:4b:e2:8d:8d:98:17:e4:8e:56:16:8a:af:61:46:be:9c:5c:
c6:54:a1:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:49 2023 by rpki-client on console-ams.rpki-client.org