Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/W3oDuRRsUnJ64c-9Bk_ARNifZa0.roa
File: W3oDuRRsUnJ64c-9Bk_ARNifZa0.roa (raw, json)
Hash identifier: DHrfcdAxIN5jtKxCmm0qAi0BVVf1tvwXPsjHw29/DrQ=
Subject key identifier: 5B:7A:03:B9:14:6C:52:72:7A:E1:CF:BD:06:4F:C0:44:D8:9F:65:AD
Certificate issuer: /CN=4d70af1a99886c9101d135f54bd2bdef358b266e
Certificate serial: 03A348
Authority key identifier: 4D:70:AF:1A:99:88:6C:91:01:D1:35:F5:4B:D2:BD:EF:35:8B:26:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TXCvGpmIbJEB0TX1S9K97zWLJm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/W3oDuRRsUnJ64c-9Bk_ARNifZa0.roa
Signing time: Mon 02 May 2022 09:04:13 +0000
ROA not before: Mon 02 May 2022 09:04:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8751
IP address blocks: 37.156.71.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 238408 (0x3a348)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d70af1a99886c9101d135f54bd2bdef358b266e
Validity
Not Before: May 2 09:04:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b7a03b9146c52727ae1cfbd064fc044d89f65ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7d:0a:09:b9:cb:fb:82:97:91:9b:6f:e7:da:
01:37:1d:97:b2:95:41:aa:7c:2c:55:fc:52:c5:f2:
89:55:38:03:bf:a7:93:41:6f:01:df:79:5a:1e:da:
06:37:f3:a0:97:20:bd:0a:12:ee:13:7f:6f:0d:8e:
eb:a0:36:70:54:0c:e7:ed:35:52:cb:23:09:a7:b9:
50:43:ad:8f:59:10:18:41:d5:4b:06:c9:07:1f:12:
43:e7:a1:c8:85:53:dd:8b:dd:21:2a:e7:bd:68:bf:
6b:52:ff:76:a0:a4:71:43:b1:82:29:d7:54:1c:f4:
8c:4c:1c:e4:fe:5a:c8:6c:28:1a:b6:e0:cc:4b:46:
77:2f:f6:a9:d1:3c:f9:5c:bb:84:62:48:4e:d7:6f:
5d:6d:e0:d4:e0:cb:43:39:bc:5c:0a:67:3f:29:9d:
39:ee:85:31:1f:89:1a:6d:36:e4:37:3a:b1:60:c4:
e8:ba:54:f2:ff:01:bf:77:c7:c6:d1:b7:5b:3c:72:
7e:01:86:40:45:37:2c:24:ba:2c:19:4e:0d:7d:d1:
e5:a2:da:21:5e:27:42:66:8c:c5:c5:71:ce:10:57:
f1:7d:fd:52:47:63:ea:c8:85:cd:2c:f7:a2:46:c3:
78:bb:cc:ea:b5:ec:46:88:66:b7:c8:f2:b9:b7:24:
80:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:7A:03:B9:14:6C:52:72:7A:E1:CF:BD:06:4F:C0:44:D8:9F:65:AD
X509v3 Authority Key Identifier:
keyid:4D:70:AF:1A:99:88:6C:91:01:D1:35:F5:4B:D2:BD:EF:35:8B:26:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TXCvGpmIbJEB0TX1S9K97zWLJm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/W3oDuRRsUnJ64c-9Bk_ARNifZa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/TXCvGpmIbJEB0TX1S9K97zWLJm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.71.0/24
Signature Algorithm: sha256WithRSAEncryption
53:f3:61:24:98:67:02:ed:20:81:8f:8c:84:3e:df:71:cf:17:
53:7a:12:b2:6c:92:32:ea:3b:b3:6e:f2:cb:ff:62:7f:88:64:
8d:fc:d4:2d:39:f7:9a:0b:25:e9:7b:05:70:6c:0c:cd:6c:07:
00:99:84:bc:e1:cd:37:4a:c6:3f:ad:18:0c:cb:31:a3:39:72:
01:1e:4b:f6:0b:5c:a8:3a:13:ae:dc:9e:f7:56:04:2f:40:5e:
9f:b3:af:e2:66:40:cf:88:3f:4d:c2:4c:4b:4d:c5:55:07:ff:
53:ac:6e:d9:26:7d:9a:b6:3b:a3:53:f4:97:47:c7:be:aa:5c:
29:8d:d8:18:11:84:61:dd:90:40:4d:09:c1:aa:a0:23:df:d4:
63:f9:58:18:36:73:04:76:a3:ea:d0:eb:62:23:f5:af:b8:fb:
6c:33:41:66:f6:e0:96:45:0b:79:00:97:78:a8:25:a9:56:41:
5e:5d:14:bf:6b:a5:67:18:e5:34:d8:76:91:16:33:4d:63:10:
6e:26:b6:58:bc:1e:46:27:71:3f:f2:74:26:44:f7:21:cb:14:
7f:aa:8d:df:92:6d:7c:c1:4c:6f:dc:dd:b9:fa:4a:e2:f4:4a:
3e:5f:02:0a:6c:f9:50:b4:b4:58:32:3a:df:84:d2:df:bd:d4:
9a:9e:3e:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:10 2024 by rpki-client on console-ams.rpki-client.org