Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/0b45e9-3f4a-4bd8-bab9-fb9081a16139/1/5KNtj54RiGBmKW5CPWoxUNTb2bI.roa
File: 5KNtj54RiGBmKW5CPWoxUNTb2bI.roa (raw, json)
Hash identifier: ta0dPzdHxtu1+tln6f9fkO3fkptjWsPmRs8af9muciU=
Subject key identifier: E4:A3:6D:8F:9E:11:88:60:66:29:6E:42:3D:6A:31:50:D4:DB:D9:B2
Certificate issuer: /CN=f39f96c20e10f76f03ed47815b7a6a5efdbe03d5
Certificate serial: 02F329EC
Authority key identifier: F3:9F:96:C2:0E:10:F7:6F:03:ED:47:81:5B:7A:6A:5E:FD:BE:03:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/85-Wwg4Q928D7UeBW3pqXv2-A9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/0b45e9-3f4a-4bd8-bab9-fb9081a16139/1/5KNtj54RiGBmKW5CPWoxUNTb2bI.roa
Signing time: Tue 22 Mar 2022 10:54:36 +0000
ROA not before: Tue 22 Mar 2022 10:54:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49158
IP address blocks: 37.60.64.0/19 maxlen: 19
37.60.64.0/18 maxlen: 18
37.60.96.0/19 maxlen: 19
2a00:5bc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49490412 (0x2f329ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f39f96c20e10f76f03ed47815b7a6a5efdbe03d5
Validity
Not Before: Mar 22 10:54:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4a36d8f9e11886066296e423d6a3150d4dbd9b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:69:27:78:b1:7b:2b:74:13:b4:a8:28:ea:b2:
7f:a1:68:e5:ee:87:dd:06:ad:33:62:25:80:e7:7b:
eb:d5:5b:fb:aa:44:2a:3d:ce:b2:f5:9b:a0:93:d2:
2a:41:d7:10:7e:18:84:e2:48:b1:09:4e:fc:cb:9b:
20:9f:cb:de:d0:83:d4:fc:f2:06:ce:86:f5:e9:b3:
bd:b9:65:50:6c:df:fe:03:49:4a:52:5f:42:d2:c1:
1b:41:9b:eb:c1:63:a3:b3:d0:6c:ca:8d:e6:ad:ad:
c8:26:4b:29:b2:8c:f9:13:7e:82:d7:35:82:f7:7a:
09:cb:f6:34:53:c0:fe:aa:03:73:7f:31:9c:df:e1:
3c:51:7f:b0:c6:b5:73:73:09:fb:74:2f:55:12:db:
3c:18:e9:fb:fa:07:47:aa:91:fc:43:38:26:1f:4e:
9c:1b:fd:5a:88:8c:3c:7f:48:07:a8:c0:cc:2b:1c:
84:a8:ec:56:70:5d:b3:07:fc:46:04:63:e0:ad:26:
51:8d:13:a1:81:ed:55:fc:cf:6a:df:28:2a:1a:99:
ad:e8:d1:43:14:f5:a1:20:ec:0c:e0:87:63:ad:64:
ed:4a:28:c9:05:32:d7:83:86:10:ed:46:af:0e:55:
3f:d2:03:72:c0:9e:9c:86:68:de:35:6f:ca:a1:59:
c9:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:A3:6D:8F:9E:11:88:60:66:29:6E:42:3D:6A:31:50:D4:DB:D9:B2
X509v3 Authority Key Identifier:
keyid:F3:9F:96:C2:0E:10:F7:6F:03:ED:47:81:5B:7A:6A:5E:FD:BE:03:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/85-Wwg4Q928D7UeBW3pqXv2-A9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/0b45e9-3f4a-4bd8-bab9-fb9081a16139/1/5KNtj54RiGBmKW5CPWoxUNTb2bI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/0b45e9-3f4a-4bd8-bab9-fb9081a16139/1/85-Wwg4Q928D7UeBW3pqXv2-A9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.60.64.0/18
IPv6:
2a00:5bc0::/32
Signature Algorithm: sha256WithRSAEncryption
11:b3:e3:0e:7d:2d:f8:81:7c:b9:20:d5:90:d2:0a:da:28:27:
be:58:9d:e9:0e:6d:95:ae:06:b4:e9:29:7b:97:7b:8b:fc:49:
39:a7:5f:3c:ee:cc:dc:39:9f:2e:61:e1:f8:6d:b9:44:95:7b:
d4:a2:f9:b3:ea:d2:15:d3:7d:4e:95:ce:4d:85:be:2a:b7:59:
e6:a2:01:0f:c7:89:e2:88:a5:06:08:73:70:ad:77:81:5f:bc:
a5:2b:0c:a3:7c:de:b7:19:f6:17:a2:d7:51:21:8d:b1:34:b6:
ed:c6:76:3f:e9:19:ac:ae:4f:c8:71:1e:b2:01:09:e2:c3:5c:
8e:eb:b0:e7:9f:57:58:26:f6:4f:03:88:28:9d:b3:bf:05:05:
6a:04:5f:1b:81:f6:6b:eb:cc:f1:e7:cd:37:f8:6e:4d:0c:76:
c5:53:cc:e0:d8:dc:6f:4b:fe:7f:c4:ae:e2:37:ae:33:24:13:
60:c8:12:b1:68:b0:9d:e0:01:61:b9:0a:03:e4:0e:9f:b3:5c:
75:86:32:de:2b:05:82:0b:76:33:7b:9e:0c:32:fb:53:41:87:
e6:e8:f6:d3:fb:a5:3e:02:24:e5:48:19:ba:cc:b3:c4:4e:2f:
e7:6b:3a:e2:24:de:ee:24:85:23:42:3a:db:61:2a:25:e9:0c:
e8:a1:fa:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:05 2023 by rpki-client on console-fra.rpki-client.org