Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/24e327-7658-463c-8990-b1c9b789aaa9/1/uos85MIfIQFiRYPjszt4GOSR35U.roa
File: uos85MIfIQFiRYPjszt4GOSR35U.roa (raw, json)
Hash identifier: cHvPyIW+fpCGcrUAUoyZFyV6dzl0pksveJLQFBYvvgg=
Subject key identifier: BA:8B:3C:E4:C2:1F:21:01:62:45:83:E3:B3:3B:78:18:E4:91:DF:95
Certificate issuer: /CN=c7e8d959f1c9564a33f28fe44ab614b8f62b001b
Certificate serial: 01829685BAF47F319A42BF8B027BA35D1C0F
Authority key identifier: C7:E8:D9:59:F1:C9:56:4A:33:F2:8F:E4:4A:B6:14:B8:F6:2B:00:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x-jZWfHJVkoz8o_kSrYUuPYrABs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/24e327-7658-463c-8990-b1c9b789aaa9/1/uos85MIfIQFiRYPjszt4GOSR35U.roa
Signing time: Sat 13 Aug 2022 09:25:22 +0000
ROA not before: Sat 13 Aug 2022 09:25:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198594
IP address blocks: 37.60.24.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:96:85:ba:f4:7f:31:9a:42:bf:8b:02:7b:a3:5d:1c:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7e8d959f1c9564a33f28fe44ab614b8f62b001b
Validity
Not Before: Aug 13 09:25:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba8b3ce4c21f2101624583e3b33b7818e491df95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:fd:ae:92:04:4a:be:6c:74:be:ed:f4:3c:03:
e8:37:33:19:80:d5:e5:0b:f0:27:64:23:9f:ed:5e:
1d:97:ac:cd:43:f1:72:63:71:69:18:ff:3b:e7:33:
43:2e:5b:47:79:6e:05:90:df:75:36:48:2d:8e:46:
a9:91:92:01:79:56:81:72:ee:ec:c1:fe:d9:25:a3:
2e:7f:f7:54:bb:73:85:92:74:27:90:ca:9e:73:be:
f6:00:a2:f7:a8:ce:e6:50:29:de:3e:a3:0f:04:97:
8e:5e:d4:c4:74:15:fc:62:dc:a7:ab:56:8e:f9:57:
cb:dd:7e:83:c6:7d:d2:a5:bb:48:c7:3c:a4:ff:a0:
0d:f5:e3:7e:85:42:15:ba:d7:7e:cb:c7:7d:e6:50:
b7:37:8f:ec:66:ce:b9:b5:23:8d:02:f6:fb:cb:39:
e1:87:47:9a:df:57:5f:fb:78:5d:22:9e:1e:47:25:
85:bd:c4:a5:32:fc:7d:10:64:84:e4:15:45:48:f4:
4e:d2:35:63:3a:41:fd:5f:9e:b3:2f:66:e1:58:92:
f2:fa:1c:60:8a:38:b5:1d:1e:c3:27:76:28:6d:fb:
de:c5:dc:83:90:a3:06:eb:ba:f5:f3:43:fb:fd:a0:
74:25:7c:cb:80:23:c3:63:d6:ff:ee:2e:ba:0a:91:
df:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:8B:3C:E4:C2:1F:21:01:62:45:83:E3:B3:3B:78:18:E4:91:DF:95
X509v3 Authority Key Identifier:
keyid:C7:E8:D9:59:F1:C9:56:4A:33:F2:8F:E4:4A:B6:14:B8:F6:2B:00:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x-jZWfHJVkoz8o_kSrYUuPYrABs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/24e327-7658-463c-8990-b1c9b789aaa9/1/uos85MIfIQFiRYPjszt4GOSR35U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/24e327-7658-463c-8990-b1c9b789aaa9/1/x-jZWfHJVkoz8o_kSrYUuPYrABs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.60.24.0/21
Signature Algorithm: sha256WithRSAEncryption
85:b6:4b:2a:a3:bb:d4:cb:34:75:90:17:c0:5b:93:b3:90:24:
31:ef:ca:30:f0:60:9b:78:d0:7b:5f:54:bc:b3:c8:bf:1f:a9:
19:e6:3b:99:a3:67:67:33:dd:89:e9:3a:7c:77:fa:53:79:bc:
f5:de:33:66:a7:da:b8:08:b3:52:bf:3e:84:b6:58:5a:cc:d0:
ce:68:dc:ed:2a:26:37:85:d6:4d:ae:9e:10:08:69:06:b3:71:
7e:2c:a8:22:27:b1:33:3f:16:16:25:a6:67:0c:81:3d:83:27:
2c:19:94:aa:f7:4d:88:84:65:12:db:fe:2d:92:3a:ad:98:95:
07:a3:f6:ff:54:62:cb:cd:f4:41:d0:69:28:67:3f:f0:d8:3a:
ac:55:7a:8d:a1:eb:30:ea:59:76:bf:0e:63:dd:94:3b:92:69:
29:81:95:a2:8b:d2:0a:74:51:c4:7c:6c:86:05:f4:12:6f:43:
50:3b:ef:34:a8:02:5d:fe:e3:0a:99:de:52:3a:59:3b:4b:8c:
b9:4f:fd:fa:44:c8:33:84:95:b9:dc:5a:b0:3a:04:45:df:b7:
f5:eb:30:55:e5:22:3a:27:41:da:80:6d:66:6d:73:b9:f4:3d:
c3:87:d1:73:c9:70:65:c9:3e:51:d4:a7:4d:d6:4e:28:a7:8e:
88:57:c9:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:47 2024 by rpki-client on console-ams.rpki-client.org