Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/cda215-49ae-407b-af3b-359e4e4d9175/1/1ZtBR8phhF6Hg3YSoZI1JSgqgbg.roa
File: 1ZtBR8phhF6Hg3YSoZI1JSgqgbg.roa (raw, json)
Hash identifier: i/1LswfYgT0BHIlB/wdFLQQu6rREenHNsSdKZC23TeM=
Subject key identifier: D5:9B:41:47:CA:61:84:5E:87:83:76:12:A1:92:35:25:28:2A:81:B8
Certificate issuer: /CN=398881e06383fd2c36e9f245c4bfa1301d15a537
Certificate serial: 018419CC9E1207D36802D369499688235910
Authority key identifier: 39:88:81:E0:63:83:FD:2C:36:E9:F2:45:C4:BF:A1:30:1D:15:A5:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OYiB4GOD_Sw26fJFxL-hMB0VpTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/cda215-49ae-407b-af3b-359e4e4d9175/1/1ZtBR8phhF6Hg3YSoZI1JSgqgbg.roa
Signing time: Thu 27 Oct 2022 14:15:50 +0000
ROA not before: Thu 27 Oct 2022 14:15:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57642
IP address blocks: 37.25.56.0/21 maxlen: 21
37.25.56.0/24 maxlen: 24
193.228.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:19:cc:9e:12:07:d3:68:02:d3:69:49:96:88:23:59:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=398881e06383fd2c36e9f245c4bfa1301d15a537
Validity
Not Before: Oct 27 14:15:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d59b4147ca61845e87837612a1923525282a81b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:28:eb:2a:bd:a5:ff:cc:eb:3c:bc:c1:f6:4a:
5f:87:c7:f9:f4:ed:e2:1e:9f:95:ba:f2:87:48:d2:
c3:17:86:df:cb:d2:65:dc:19:37:b5:c9:9e:88:29:
23:dc:90:88:a8:29:5c:47:91:95:d9:0e:e4:b4:80:
99:b1:df:86:a4:b7:fa:f8:55:de:77:72:7b:cf:b7:
98:19:c4:11:c9:03:15:bd:f4:7f:69:97:9e:49:6f:
0e:ac:89:ee:37:53:81:58:97:ba:b8:f3:28:b4:32:
22:63:e6:c8:ff:93:d2:b8:9d:1e:7b:83:6b:ca:43:
78:90:08:d9:be:6c:f1:4e:ad:16:00:32:c2:de:52:
d1:4a:ee:cc:f6:fd:cc:bd:74:db:a7:46:3d:c2:ea:
bf:e1:15:a3:aa:38:04:64:da:0c:d4:d6:9c:7b:ca:
90:e1:ab:de:86:52:b4:ae:4c:7e:37:ab:2e:b9:df:
88:a1:5a:9d:ca:b2:ac:d7:25:f1:74:cc:42:63:ad:
65:c1:15:a5:9c:4c:c0:53:1c:ff:b3:55:33:c7:8a:
65:a9:8a:90:97:d4:6c:b1:ff:7b:06:9f:2a:ad:28:
63:b7:4b:63:20:38:97:f8:73:8c:a1:45:b0:48:7a:
77:c6:a5:6d:1e:90:b5:11:d0:21:7b:7f:a9:e5:0e:
45:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:9B:41:47:CA:61:84:5E:87:83:76:12:A1:92:35:25:28:2A:81:B8
X509v3 Authority Key Identifier:
keyid:39:88:81:E0:63:83:FD:2C:36:E9:F2:45:C4:BF:A1:30:1D:15:A5:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OYiB4GOD_Sw26fJFxL-hMB0VpTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/cda215-49ae-407b-af3b-359e4e4d9175/1/1ZtBR8phhF6Hg3YSoZI1JSgqgbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/cda215-49ae-407b-af3b-359e4e4d9175/1/OYiB4GOD_Sw26fJFxL-hMB0VpTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.25.56.0/21
193.228.156.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:cc:36:38:0d:41:8e:79:56:98:59:79:51:e2:96:e2:cb:15:
54:1d:6d:5b:4a:69:f7:2b:df:56:47:d4:2c:ff:2a:bd:4f:c8:
43:af:39:b5:17:df:b2:bb:f5:a5:27:06:5b:2b:98:e6:e7:74:
e4:5e:7b:ff:21:b3:10:b0:b9:df:dd:0d:89:15:1a:40:f6:36:
3f:1f:2f:85:f6:1b:93:aa:27:f6:ae:8e:57:57:4c:45:0b:e0:
e2:50:07:4f:5d:71:c2:a3:74:12:29:47:46:ec:2a:25:e0:e1:
50:cc:22:3a:61:1d:5e:12:58:8e:eb:12:7f:1c:e1:50:77:e8:
4f:19:66:1e:67:83:ee:3a:e2:54:17:ba:7c:18:2b:9f:fe:11:
c3:71:3a:2f:6a:5b:07:03:3f:9a:60:4d:f0:48:ec:f5:3b:50:
07:5c:e3:4e:f1:88:99:8c:f4:62:e9:48:09:f2:68:6c:8d:13:
0e:3c:8c:26:20:31:55:f7:a3:d7:cb:1a:70:0f:44:07:c2:3d:
b1:e0:fe:e1:13:f0:3d:12:86:98:fe:d1:bd:e0:0a:25:0a:41:
ea:f5:04:38:55:00:46:34:7b:9e:ca:43:0f:4f:35:af:d5:0c:
0c:a3:07:3d:b9:06:4e:ed:af:8c:3a:09:a4:eb:2e:da:77:a6:
b9:db:34:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:43 2024 by rpki-client on console-ams.rpki-client.org