Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/647eba-d666-49c7-a089-53edc626b287/1/e4ZDICp08JoNRSFWn3vj84d7hWI.roa
File: e4ZDICp08JoNRSFWn3vj84d7hWI.roa (raw, json)
Hash identifier: RtVctTHcpd1Dvt4Q3Ck3foEW++5XHQsqYNKlzNU7Kl0=
Subject key identifier: 7B:86:43:20:2A:74:F0:9A:0D:45:21:56:9F:7B:E3:F3:87:7B:85:62
Certificate issuer: /CN=de90d43293cfebf87e7eab2b0d553fd21a6e9641
Certificate serial: 0D9BE4FB
Authority key identifier: DE:90:D4:32:93:CF:EB:F8:7E:7E:AB:2B:0D:55:3F:D2:1A:6E:96:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3pDUMpPP6_h-fqsrDVU_0hpulkE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/647eba-d666-49c7-a089-53edc626b287/1/e4ZDICp08JoNRSFWn3vj84d7hWI.roa
Signing time: Sat 01 Jan 2022 14:04:07 +0000
ROA not before: Sat 01 Jan 2022 14:04:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209829
IP address blocks: 37.218.244.0/24 maxlen: 24
37.218.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 228320507 (0xd9be4fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de90d43293cfebf87e7eab2b0d553fd21a6e9641
Validity
Not Before: Jan 1 14:04:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b8643202a74f09a0d4521569f7be3f3877b8562
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ea:02:f7:11:a8:b4:d2:87:bf:26:9b:10:97:
1c:33:a5:38:b3:4c:66:d9:60:83:d1:30:16:34:2e:
fb:19:59:8d:3c:41:fd:58:ab:4f:d7:48:bc:53:43:
00:e7:19:ef:1a:a5:c3:f6:a9:7d:2c:8b:99:27:5c:
97:65:06:fc:ca:a6:b9:17:8d:79:35:0e:0f:8a:26:
b3:bf:56:1f:21:05:d8:4b:48:87:3f:46:ff:eb:da:
67:e9:a5:a3:49:a0:87:2e:d1:ed:48:e2:ba:62:28:
1d:9e:fc:34:4c:93:27:9e:02:56:ca:17:76:22:5b:
8a:b3:40:ca:df:9b:45:22:ee:4d:4f:e3:2e:32:01:
c0:91:a2:ee:39:5d:68:cf:55:9a:67:8b:b1:f0:93:
f9:0b:0a:ae:89:70:db:de:35:c4:93:be:4a:b6:e1:
ef:c7:39:16:e1:2c:70:cf:5b:2f:cd:00:dd:df:b0:
db:67:f7:74:87:2f:fc:fa:e1:77:85:02:61:01:82:
b9:43:15:68:84:a9:b8:6d:92:c9:6b:1f:c2:61:af:
f8:de:47:15:f2:d7:b2:76:e9:64:1c:0a:02:cb:9b:
09:d9:8c:da:d5:5c:ad:37:af:e6:ef:23:13:1d:d7:
ee:ed:a8:ab:d3:b7:cb:3d:f9:75:3c:b1:0f:5e:0c:
6d:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:86:43:20:2A:74:F0:9A:0D:45:21:56:9F:7B:E3:F3:87:7B:85:62
X509v3 Authority Key Identifier:
keyid:DE:90:D4:32:93:CF:EB:F8:7E:7E:AB:2B:0D:55:3F:D2:1A:6E:96:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3pDUMpPP6_h-fqsrDVU_0hpulkE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/647eba-d666-49c7-a089-53edc626b287/1/e4ZDICp08JoNRSFWn3vj84d7hWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/647eba-d666-49c7-a089-53edc626b287/1/3pDUMpPP6_h-fqsrDVU_0hpulkE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.218.241.0/24
37.218.244.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:4f:c7:1a:05:f2:4e:15:87:18:55:fa:02:9d:0c:18:0f:ed:
6d:45:22:82:2c:89:26:2c:25:4b:72:f4:10:b3:ca:65:05:97:
33:15:45:a0:30:75:45:0a:e4:85:20:3f:1d:d2:75:0e:39:06:
bf:70:ff:08:a1:ca:a4:7a:bd:1e:70:65:6c:cb:8a:5f:38:a8:
00:ca:94:12:f7:a2:7a:2b:ab:32:b4:c4:b2:3d:25:0c:f5:37:
ec:f6:31:64:20:3c:c5:c7:96:30:35:75:d0:51:1c:47:94:55:
8a:d6:cf:f9:05:c8:2c:c8:7c:15:b6:78:8f:4d:dc:99:f0:14:
8d:96:ef:a8:d6:29:f8:44:34:73:08:05:bb:83:9a:3e:0c:48:
d6:4a:e0:ba:a3:24:18:74:a7:06:27:6c:32:bb:f1:bb:f9:6c:
16:c3:df:91:97:7a:6f:17:fb:95:be:48:e3:41:07:6c:ba:e0:
4a:f0:25:ca:a8:72:90:ca:38:37:c0:74:8b:b7:ea:e3:3a:54:
14:34:1f:ac:25:32:21:7f:cd:2f:91:4d:21:63:78:3f:4c:00:
d5:e4:00:98:27:fd:52:18:15:71:46:b3:54:6a:5f:b2:aa:1b:
66:d4:7f:a0:dd:af:7b:a8:86:f4:8a:da:58:ec:41:21:e8:5d:
d6:56:f8:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:01 2023 by rpki-client on console-fra.rpki-client.org