Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/L2MZMxz0bgapIZrcXc6YxKLXSvw.roa
File: L2MZMxz0bgapIZrcXc6YxKLXSvw.roa (raw, json)
Hash identifier: Y6Tx/UjH7Blr4HTGHuEyOSqiNP+jUde2LY99UjbgIjQ=
Subject key identifier: 2F:63:19:33:1C:F4:6E:06:A9:21:9A:DC:5D:CE:98:C4:A2:D7:4A:FC
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0184C8C4A302A9DF895592EE0313B2089374
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/L2MZMxz0bgapIZrcXc6YxKLXSvw.roa
Signing time: Wed 30 Nov 2022 13:40:40 +0000
ROA not before: Wed 30 Nov 2022 13:40:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15723
IP address blocks: 37.128.203.0/24 maxlen: 24
37.128.202.0/24 maxlen: 24
37.128.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c8:c4:a3:02:a9:df:89:55:92:ee:03:13:b2:08:93:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Nov 30 13:40:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f6319331cf46e06a9219adc5dce98c4a2d74afc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b2:ac:6c:8f:c7:9a:63:22:b2:f0:dd:87:43:
1b:dd:ae:e4:69:f9:00:fb:2c:7b:a0:9d:fa:4f:50:
40:b8:07:b3:f6:e4:47:38:93:8a:91:e9:2e:da:0e:
d9:60:b4:23:ca:2d:02:cb:1c:47:5f:f7:77:c3:09:
97:df:38:d2:e8:4a:06:b4:fa:d8:e4:31:a9:0b:35:
e7:eb:9f:79:97:89:93:45:46:99:dd:20:e4:66:29:
0f:19:c7:e4:20:97:e7:be:1b:16:e1:c6:77:db:8e:
03:83:1b:99:db:b5:59:5e:be:dd:1f:7f:91:7e:ab:
2d:82:68:97:62:c6:df:5d:c6:35:c7:9d:ef:ff:bd:
a2:d6:4a:2c:8e:24:95:61:3c:6e:ce:2d:a0:0e:0b:
fd:37:b9:0a:d0:30:8f:db:b3:46:e7:e8:a9:39:11:
50:0d:2e:39:ee:55:64:8c:16:0b:4b:0f:03:76:bd:
a2:7e:5d:29:be:3b:ab:67:1b:0b:66:fe:7b:59:78:
7c:cf:2e:f1:de:91:61:97:b8:8f:fa:be:b9:2b:19:
4a:f7:32:d0:ae:a6:8b:d3:3b:a2:74:bf:87:5f:6b:
06:ce:f3:99:93:d4:aa:78:ad:91:19:d1:6a:88:e3:
1a:cd:fc:b4:1c:be:ee:5b:49:fc:f5:a4:88:f2:8e:
2f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:63:19:33:1C:F4:6E:06:A9:21:9A:DC:5D:CE:98:C4:A2:D7:4A:FC
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/L2MZMxz0bgapIZrcXc6YxKLXSvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.128.201.0-37.128.203.255
Signature Algorithm: sha256WithRSAEncryption
43:a6:23:10:84:e8:7a:dd:4f:2d:a5:e5:f7:cd:37:91:4a:b9:
c5:68:72:79:57:72:20:ec:c8:c5:4a:06:db:96:2b:53:d1:23:
59:28:d1:4e:d4:fb:db:ca:e3:6e:bc:c8:a2:1e:db:32:67:7f:
81:1b:b2:3f:ef:61:6b:cc:a1:ea:8e:8b:a5:63:f0:f0:94:d3:
cd:d6:03:dc:c9:34:6d:a5:67:d8:9e:43:c4:e6:3b:09:5a:78:
47:20:4d:fa:f2:2d:83:13:1f:e3:b8:8d:27:63:dc:f8:62:90:
ae:4c:84:4c:bb:c7:1b:c7:f3:f1:69:bf:1a:e0:68:b5:1f:29:
66:e1:ef:56:af:bf:59:54:25:c2:a6:72:8a:8c:99:01:b8:0c:
bd:eb:da:4a:60:25:30:6a:88:d7:12:d0:50:a2:bb:8f:34:3a:
e6:a3:0b:78:37:59:14:7d:4b:84:e5:9b:bd:00:44:36:d2:45:
aa:28:b8:e5:39:50:a4:82:ac:36:ed:53:01:e6:be:27:95:d4:
58:e1:50:48:02:19:c6:b3:e6:83:2b:7c:b7:47:b0:72:35:cd:
6d:2d:79:18:b2:0e:29:f9:1a:a4:9f:d0:73:f1:c8:ef:61:e4:
14:9d:1a:0c:ef:a2:f3:49:8c:83:e3:ec:44:0e:04:e6:fc:a6:
77:56:7c:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:00 2023 by rpki-client on console-fra.rpki-client.org