Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/24e327-7658-463c-8990-b1c9b789aaa9/1/KUIdS2pSu_rp0CuBvsofcJI_SIc.roa
File: KUIdS2pSu_rp0CuBvsofcJI_SIc.roa (raw, json)
Hash identifier: Ldb0exaohxIf19b2cvpwVacoCYO5ExF64f1QDJ7BL80=
Subject key identifier: 29:42:1D:4B:6A:52:BB:FA:E9:D0:2B:81:BE:CA:1F:70:92:3F:48:87
Certificate issuer: /CN=c7e8d959f1c9564a33f28fe44ab614b8f62b001b
Certificate serial: 0181DE12805F5A88E47D4EC68175F3786568
Authority key identifier: C7:E8:D9:59:F1:C9:56:4A:33:F2:8F:E4:4A:B6:14:B8:F6:2B:00:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x-jZWfHJVkoz8o_kSrYUuPYrABs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/24e327-7658-463c-8990-b1c9b789aaa9/1/KUIdS2pSu_rp0CuBvsofcJI_SIc.roa
Signing time: Fri 08 Jul 2022 13:49:23 +0000
ROA not before: Fri 08 Jul 2022 13:49:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207539
IP address blocks: 37.60.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:de:12:80:5f:5a:88:e4:7d:4e:c6:81:75:f3:78:65:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7e8d959f1c9564a33f28fe44ab614b8f62b001b
Validity
Not Before: Jul 8 13:49:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29421d4b6a52bbfae9d02b81beca1f70923f4887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ea:ae:69:32:78:b7:5b:83:89:e2:c4:93:17:
84:0b:af:d3:1b:8f:d2:9a:45:b3:46:5d:d6:ad:77:
ae:c1:3d:91:a6:69:8e:ca:0d:a6:92:43:49:38:eb:
94:20:90:8f:f8:6d:c2:bb:df:65:09:b8:78:15:f3:
c3:72:c9:19:3c:75:12:d9:98:9f:f0:bc:d9:a5:b3:
24:a7:0b:71:8c:74:e0:44:34:f4:61:2a:74:3c:b2:
5e:2c:57:a5:df:10:c6:75:8c:c9:e1:94:d2:b2:ce:
56:3e:6b:12:99:b2:54:62:5d:c2:48:0e:5d:88:4c:
a7:b0:b9:77:9a:ef:d9:d9:20:d8:92:4f:fe:92:54:
88:61:43:6d:0a:bd:98:c8:81:89:a7:29:d9:3a:be:
81:46:1c:fa:dc:e0:1a:04:ae:52:e6:15:24:ca:91:
93:8a:c1:1e:c4:ac:38:57:b1:58:a9:56:76:ab:5b:
f9:a8:31:6d:2c:d7:cc:9e:be:89:60:18:32:cb:d2:
0e:14:bb:60:14:69:c4:72:1d:98:30:88:3d:22:e8:
a7:2b:0e:64:aa:df:38:a0:04:b1:cf:16:7a:9d:a8:
74:e8:02:4b:9e:b3:56:ee:2a:35:22:40:84:a1:be:
f5:e5:3c:0c:40:70:0e:91:9b:42:6c:59:ac:64:81:
65:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:42:1D:4B:6A:52:BB:FA:E9:D0:2B:81:BE:CA:1F:70:92:3F:48:87
X509v3 Authority Key Identifier:
keyid:C7:E8:D9:59:F1:C9:56:4A:33:F2:8F:E4:4A:B6:14:B8:F6:2B:00:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x-jZWfHJVkoz8o_kSrYUuPYrABs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/24e327-7658-463c-8990-b1c9b789aaa9/1/KUIdS2pSu_rp0CuBvsofcJI_SIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/24e327-7658-463c-8990-b1c9b789aaa9/1/x-jZWfHJVkoz8o_kSrYUuPYrABs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.60.29.0/24
Signature Algorithm: sha256WithRSAEncryption
50:5e:62:68:f7:33:7f:c1:71:73:5a:6c:9a:ab:e3:b6:6a:8a:
5b:f5:83:98:d2:92:11:4c:5e:22:94:cb:f0:ef:4e:5a:99:04:
ba:7b:27:95:46:b2:fe:56:ba:8b:0a:79:64:8b:f5:9e:6c:46:
f8:d4:e8:d1:49:04:94:48:ae:ba:51:3e:dd:4c:79:cb:45:e0:
68:ee:0a:34:05:77:92:e0:f2:d3:d1:1b:3e:16:9f:32:73:ae:
bc:4d:cd:18:da:04:0d:d2:65:94:83:a6:80:83:cd:93:69:1e:
01:db:e6:82:07:6c:1d:02:25:d2:eb:6a:32:b5:d0:48:da:37:
69:95:1c:e9:04:9d:92:e7:ed:47:42:2e:65:6d:c6:e0:64:79:
d7:71:72:55:ed:1a:f0:b9:60:43:e5:91:3e:9b:9a:66:cc:f6:
14:cb:2d:e2:25:54:53:38:80:46:1c:7a:16:8c:a6:27:ce:14:
4e:70:3d:ae:f5:fe:9f:f0:de:d3:45:44:71:ab:1d:46:b4:a2:
c3:2b:b9:33:24:2c:47:90:77:dd:d9:63:27:28:dd:05:58:81:
71:34:30:24:1c:d6:f7:36:ca:e4:10:73:e1:a8:e4:14:47:55:
25:27:e2:be:82:03:c7:67:31:fe:81:2f:1f:f9:7e:a7:a2:06:
d3:58:12:60
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYHeEoBfWojkfU7GgXXzeGVoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3ZThkOTU5ZjFjOTU2NGEzM2YyOGZlNDRhYjYxNGI4ZjYy
YjAwMWIwHhcNMjIwNzA4MTM0OTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOTQyMWQ0YjZhNTJiYmZhZTlkMDJiODFiZWNhMWY3MDkyM2Y0ODg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl+quaTJ4t1uDieLEkxeEC6/TG4/S
mkWzRl3WrXeuwT2RpmmOyg2mkkNJOOuUIJCP+G3Cu99lCbh4FfPDcskZPHUS2Zif
8LzZpbMkpwtxjHTgRDT0YSp0PLJeLFel3xDGdYzJ4ZTSss5WPmsSmbJUYl3CSA5d
iEynsLl3mu/Z2SDYkk/+klSIYUNtCr2YyIGJpynZOr6BRhz63OAaBK5S5hUkypGT
isEexKw4V7FYqVZ2q1v5qDFtLNfMnr6JYBgyy9IOFLtgFGnEch2YMIg9IuinKw5k
qt84oASxzxZ6nah06AJLnrNW7io1IkCEob715TwMQHAOkZtCbFmsZIFloQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFClCHUtqUrv66dArgb7KH3CSP0iHMB8GA1UdIwQY
MBaAFMfo2VnxyVZKM/KP5Eq2FLj2KwAbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveC1qWldmSEpWa296OG9fa1NyWVV1UFlyQUJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8yNGUzMjctNzY1OC00NjNjLTg5OTAt
YjFjOWI3ODlhYWE5LzEvS1VJZFMycFN1X3JwMEN1QnZzb2ZjSklfU0ljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy8yNGUzMjctNzY1OC00NjNjLTg5OTAtYjFjOWI3ODlhYWE5
LzEveC1qWldmSEpWa296OG9fa1NyWVV1UFlyQUJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJTwdMA0G
CSqGSIb3DQEBCwUAA4IBAQBQXmJo9zN/wXFzWmyaq+O2aopb9YOY0pIRTF4ilMvw
705amQS6eyeVRrL+VrqLCnlki/WebEb41OjRSQSUSK66UT7dTHnLReBo7go0BXeS
4PLT0Rs+Fp8yc668Tc0Y2gQN0mWUg6aAg82TaR4B2+aCB2wdAiXS62oytdBI2jdp
lRzpBJ2S5+1HQi5lbcbgZHnXcXJV7RrwuWBD5ZE+m5pmzPYUyy3iJVRTOIBGHHoW
jKYnzhROcD2u9f6f8N7TRURxqx1GtKLDK7kzJCxHkHfd2WMnKN0FWIFxNDAkHNb3
NsrkEHPhqOQUR1UlJ+K+ggPHZzH+gS8f+X6nogbTWBJg
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:41 2023 by rpki-client on console-fra.rpki-client.org