Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/a4114e-db14-44b4-9b25-e47564cd0bae/1/hd4VbueIpRhrDo9Lw0BjXU2-Hp8.roa
File: hd4VbueIpRhrDo9Lw0BjXU2-Hp8.roa (raw, json)
Hash identifier: y8llmEMf0iQD7dapA8UR4aUoA5aoea+qgzCS/VS5NPs=
Subject key identifier: 85:DE:15:6E:E7:88:A5:18:6B:0E:8F:4B:C3:40:63:5D:4D:BE:1E:9F
Certificate issuer: /CN=a99b4739437b55f944d2229d16b6e6fa59919687
Certificate serial: 088AB2E3
Authority key identifier: A9:9B:47:39:43:7B:55:F9:44:D2:22:9D:16:B6:E6:FA:59:91:96:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qZtHOUN7VflE0iKdFrbm-lmRloc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/a4114e-db14-44b4-9b25-e47564cd0bae/1/hd4VbueIpRhrDo9Lw0BjXU2-Hp8.roa
Signing time: Sat 01 Jan 2022 08:02:40 +0000
ROA not before: Sat 01 Jan 2022 08:02:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209912
IP address blocks: 37.44.232.0/22 maxlen: 22
37.44.232.0/24 maxlen: 24
37.44.233.0/24 maxlen: 24
37.44.235.0/24 maxlen: 24
37.44.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143307491 (0x88ab2e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a99b4739437b55f944d2229d16b6e6fa59919687
Validity
Not Before: Jan 1 08:02:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85de156ee788a5186b0e8f4bc340635d4dbe1e9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:9f:9f:ca:86:fd:1a:ed:1e:13:6c:06:42:83:
c1:7c:d0:d9:ed:3f:42:78:6d:88:e3:e0:ac:fd:e1:
62:00:10:0c:7b:00:0c:f7:26:ad:50:ab:ba:02:09:
31:75:be:25:5d:d3:75:90:e0:68:ad:3d:1d:15:4b:
c2:13:4a:b7:92:e0:a4:d7:bb:dc:32:6a:ae:ee:aa:
96:3f:11:af:89:7d:f5:01:b0:25:50:7d:0a:5d:74:
f9:20:9c:9d:84:19:20:74:91:22:36:00:ba:dc:8f:
9d:88:7f:6b:a9:9a:bd:c1:d2:fb:59:45:a1:9c:c8:
c5:90:6e:fe:0a:e8:fd:15:f8:7d:50:c9:9c:7b:1e:
f6:ef:78:71:be:a7:74:77:fd:b6:5d:21:6a:84:e9:
b8:df:f6:d4:02:f7:05:46:21:24:18:3d:7d:bd:49:
3a:7a:56:ae:29:b3:77:40:43:12:82:b9:2f:94:97:
63:a7:25:af:91:da:f2:24:dc:74:db:c7:a2:62:21:
bb:aa:53:a6:2c:f6:de:d9:6a:25:11:46:6a:c1:69:
47:c9:32:76:6a:9a:f4:69:53:5f:b6:a5:0f:7a:45:
02:44:2e:27:93:2e:2c:7a:0a:98:06:76:a5:b9:e1:
3f:58:33:21:04:74:3a:38:55:8c:4b:64:13:98:6d:
bf:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:DE:15:6E:E7:88:A5:18:6B:0E:8F:4B:C3:40:63:5D:4D:BE:1E:9F
X509v3 Authority Key Identifier:
keyid:A9:9B:47:39:43:7B:55:F9:44:D2:22:9D:16:B6:E6:FA:59:91:96:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qZtHOUN7VflE0iKdFrbm-lmRloc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/a4114e-db14-44b4-9b25-e47564cd0bae/1/hd4VbueIpRhrDo9Lw0BjXU2-Hp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/a4114e-db14-44b4-9b25-e47564cd0bae/1/qZtHOUN7VflE0iKdFrbm-lmRloc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.44.232.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:fc:0c:58:28:56:27:29:32:9a:dc:aa:6e:83:6f:77:3e:69:
76:12:0f:fb:c9:ce:2c:48:ca:eb:a7:5f:42:c6:57:2a:0f:3e:
3c:3c:ca:f4:b0:bc:8c:e2:35:7a:2f:b4:96:da:8b:e3:a0:2d:
91:e8:35:04:a8:84:d0:87:04:57:9d:df:fc:6e:51:fa:71:4d:
29:61:e5:da:fc:5f:90:db:4c:51:1a:59:18:f2:1c:a9:e6:ce:
30:5a:56:47:24:df:77:e0:68:e4:49:85:cf:28:b2:b7:89:cb:
b0:38:20:51:dd:ca:40:fb:46:0d:ac:ce:f9:b9:f7:6e:5f:6b:
23:cd:d0:99:e3:6a:c7:35:5d:11:6e:39:69:a5:ad:55:7b:ce:
6a:24:5e:f1:c9:94:8a:c3:b8:b1:df:3c:8c:86:16:9d:e4:2b:
7d:8c:06:ac:c8:7c:4c:89:ef:1c:82:e9:ea:dc:c2:26:08:85:
32:f7:3b:2d:86:4f:82:6f:09:8a:e6:17:4c:7a:80:5d:9b:37:
05:b4:b4:8a:aa:c6:84:ed:50:48:dd:ca:84:c3:5e:70:83:7f:
df:2f:75:a0:bd:c2:e5:db:66:11:3b:a9:99:a9:2d:9e:a8:65:
6f:9d:be:f5:7c:b7:55:2c:f2:03:93:71:05:a5:81:09:29:ac:
2b:97:9c:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:49 2024 by rpki-client on console-fra.rpki-client.org