Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/67df1c-c9e1-4c5b-b640-8ccc1952eb4f/1/bGjcgJ1lhCBvv0EGfYl9zsbu_jM.roa
File: bGjcgJ1lhCBvv0EGfYl9zsbu_jM.roa (raw, json)
Hash identifier: cSnHumTVp5XQLk59cBrhF/z4dJDKnVMPrtFhpRvSzk4=
Subject key identifier: 6C:68:DC:80:9D:65:84:20:6F:BF:41:06:7D:89:7D:CE:C6:EE:FE:33
Certificate issuer: /CN=ef2c5c4b61d78af998cce9b7c357bcfcf4181a4c
Certificate serial: EB33
Authority key identifier: EF:2C:5C:4B:61:D7:8A:F9:98:CC:E9:B7:C3:57:BC:FC:F4:18:1A:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7yxcS2HXivmYzOm3w1e8_PQYGkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/67df1c-c9e1-4c5b-b640-8ccc1952eb4f/1/bGjcgJ1lhCBvv0EGfYl9zsbu_jM.roa
Signing time: Fri 04 Feb 2022 10:25:37 +0000
ROA not before: Fri 04 Feb 2022 10:25:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197954
IP address blocks: 37.10.80.0/20 maxlen: 20
31.44.112.0/20 maxlen: 20
185.49.212.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60211 (0xeb33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef2c5c4b61d78af998cce9b7c357bcfcf4181a4c
Validity
Not Before: Feb 4 10:25:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c68dc809d6584206fbf41067d897dcec6eefe33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:76:f8:76:53:19:5f:7c:18:79:dc:cb:6b:b4:
06:42:81:ea:e7:54:c2:05:f5:cd:b4:17:d0:47:65:
eb:df:8b:27:80:de:d8:4a:0f:10:ce:5e:67:74:ad:
06:6c:1e:f7:e7:26:02:31:9a:d2:05:5b:99:14:c6:
0b:c0:db:47:b1:85:39:7c:33:33:bb:f4:99:94:44:
77:a5:25:df:0b:4b:d3:d6:31:72:64:48:28:53:9e:
93:98:60:c2:74:fc:3c:11:18:67:32:3c:46:b2:16:
16:6d:dc:15:ab:8c:4a:f0:5e:ad:73:05:93:fc:b8:
b0:59:69:24:a6:2f:12:15:97:b5:3d:31:71:44:f2:
0a:e2:62:f8:ee:68:59:f3:0d:df:c0:1a:98:2c:b3:
75:65:37:d7:25:57:5c:18:6d:1a:41:ce:db:0c:a6:
7f:ed:1e:71:04:f4:d1:fb:2a:41:83:54:ad:00:54:
5c:af:20:e1:71:b4:38:7e:51:02:37:a3:ad:03:62:
6f:8c:d9:47:45:57:77:8f:31:59:4d:85:db:ec:6a:
32:19:12:8b:05:7b:2a:78:84:51:4a:79:b1:04:19:
48:69:c9:84:3b:74:37:79:9f:5a:26:7f:ff:d9:86:
74:7f:aa:26:dc:32:95:52:e2:fb:22:00:dc:1e:3d:
bd:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:68:DC:80:9D:65:84:20:6F:BF:41:06:7D:89:7D:CE:C6:EE:FE:33
X509v3 Authority Key Identifier:
keyid:EF:2C:5C:4B:61:D7:8A:F9:98:CC:E9:B7:C3:57:BC:FC:F4:18:1A:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7yxcS2HXivmYzOm3w1e8_PQYGkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/67df1c-c9e1-4c5b-b640-8ccc1952eb4f/1/bGjcgJ1lhCBvv0EGfYl9zsbu_jM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/67df1c-c9e1-4c5b-b640-8ccc1952eb4f/1/7yxcS2HXivmYzOm3w1e8_PQYGkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.44.112.0/20
37.10.80.0/20
185.49.212.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:8e:c7:52:85:26:69:4a:92:d4:1c:67:f5:6f:5a:e5:ef:bf:
e9:62:c5:08:c8:f5:1c:b1:36:7d:5b:fa:94:02:00:ae:9e:4d:
d0:1f:69:ea:76:28:70:90:ec:4d:1d:38:e2:e8:3b:91:25:6a:
f4:e8:a2:46:87:a7:a7:a4:fa:7e:f4:dd:3e:6d:1e:0b:4e:fe:
86:af:4b:70:ec:59:7b:f9:50:ea:17:4c:04:3f:8d:ba:63:26:
a4:a9:d4:1e:3d:80:2c:72:bc:e7:9d:64:da:bf:39:f2:e0:46:
1f:da:2c:2e:6c:e7:04:96:48:20:8e:7b:e8:c0:97:19:7b:e3:
10:cb:11:86:c4:a3:01:7c:3a:4d:25:4c:1e:dd:b2:de:ff:cc:
04:96:28:d3:ea:a6:9f:84:e7:69:c3:68:fc:5b:93:15:43:04:
fa:e0:cd:a1:95:fe:28:3d:27:0a:f9:8b:dc:1a:07:fb:e1:13:
ad:e9:ab:5d:b7:59:c7:c5:cb:39:ff:95:f2:0a:ee:df:6a:b4:
ac:81:0a:1a:34:18:fd:48:d9:70:89:9a:92:03:67:5b:0c:e1:
49:38:e3:ab:84:70:a6:87:35:06:b4:6d:37:e1:f8:20:96:48:
b1:95:86:c0:fb:39:f2:0c:84:35:6b:2e:ce:4c:79:08:3d:b5:
a6:63:06:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:26 2024 by rpki-client on console-ams.rpki-client.org