Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/a9666e-fcf0-4fb6-a452-38b392c6e1bf/1/5dew-zydAuEpjjAZwZhUj7W-2pU.roa
File: 5dew-zydAuEpjjAZwZhUj7W-2pU.roa (raw, json)
Hash identifier: SBdiNRjiECXuCmikPl1WCusxq5kiNJmt7TuTHKuFgwI=
Subject key identifier: E5:D7:B0:FB:3C:9D:02:E1:29:8E:30:19:C1:98:54:8F:B5:BE:DA:95
Certificate issuer: /CN=184fff3cf900e76aae0d2cd2e77dfeae24c5d24c
Certificate serial: 02AA95
Authority key identifier: 18:4F:FF:3C:F9:00:E7:6A:AE:0D:2C:D2:E7:7D:FE:AE:24:C5:D2:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GE__PPkA52quDSzS533-riTF0kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/a9666e-fcf0-4fb6-a452-38b392c6e1bf/1/5dew-zydAuEpjjAZwZhUj7W-2pU.roa
Signing time: Tue 07 Jun 2022 12:25:02 +0000
ROA not before: Tue 07 Jun 2022 12:25:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198312
IP address blocks: 37.0.97.0/24 maxlen: 24
37.0.100.0/24 maxlen: 24
37.0.103.0/24 maxlen: 24
37.0.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174741 (0x2aa95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=184fff3cf900e76aae0d2cd2e77dfeae24c5d24c
Validity
Not Before: Jun 7 12:25:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5d7b0fb3c9d02e1298e3019c198548fb5beda95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:07:d0:75:1a:62:c3:a3:eb:e0:c4:d2:06:ce:
6b:59:b0:7f:8f:fc:7a:39:bd:50:fa:47:0c:17:9a:
44:cf:1d:0d:39:6d:55:06:c2:2a:93:52:40:7b:73:
86:74:61:28:86:10:0a:1a:bd:65:3c:ac:16:1e:32:
5c:6f:15:89:22:40:22:5b:3f:1f:76:10:95:57:07:
8c:5e:4e:69:9e:75:52:5b:6d:c9:81:bc:a4:7a:3b:
86:b2:99:94:74:cd:b3:f2:32:02:a5:b9:75:d1:82:
1c:b4:b7:2b:e5:a5:2e:fe:a5:88:c5:2e:32:7a:03:
4b:7e:81:a9:79:cf:1a:66:5a:ac:fc:6f:ee:4d:82:
82:e9:68:e5:44:80:2c:4f:ab:f0:c8:5d:da:ae:7d:
ee:08:e0:61:44:e0:81:5b:38:b2:ef:27:e4:ac:6a:
2b:12:5c:79:5b:35:5e:b5:e0:9d:9a:52:1c:d0:21:
73:d4:09:ce:91:06:e3:63:eb:1a:59:e6:6d:4e:30:
af:48:cf:cd:62:31:66:64:32:1b:ab:33:a8:91:09:
59:8b:a2:95:74:6b:14:ee:17:33:47:02:fe:f4:3c:
82:a2:fd:54:c2:05:a1:44:6d:06:23:8a:28:9b:a7:
41:9f:3d:a3:f3:3e:85:f6:79:52:2b:af:e8:45:de:
21:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:D7:B0:FB:3C:9D:02:E1:29:8E:30:19:C1:98:54:8F:B5:BE:DA:95
X509v3 Authority Key Identifier:
keyid:18:4F:FF:3C:F9:00:E7:6A:AE:0D:2C:D2:E7:7D:FE:AE:24:C5:D2:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GE__PPkA52quDSzS533-riTF0kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/a9666e-fcf0-4fb6-a452-38b392c6e1bf/1/5dew-zydAuEpjjAZwZhUj7W-2pU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/a9666e-fcf0-4fb6-a452-38b392c6e1bf/1/GE__PPkA52quDSzS533-riTF0kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.0.97.0/24
37.0.100.0/24
37.0.102.0/23
Signature Algorithm: sha256WithRSAEncryption
71:4c:e6:5e:53:29:ea:9a:c8:3f:06:c1:2f:6e:0c:16:60:c7:
ff:37:6e:7e:4e:da:b6:7a:9a:7b:3d:0e:d2:b5:03:6b:bf:12:
ec:e3:8f:9b:d6:59:be:5c:6c:3a:b4:ce:8d:95:20:81:44:a1:
80:85:c4:93:60:02:84:1a:67:62:86:dc:be:7e:b4:d5:46:b8:
66:99:74:61:c3:e7:67:2d:09:54:33:d0:ef:41:4b:07:00:ed:
2e:f3:92:b1:79:50:1d:24:22:4b:6f:24:f1:e3:1e:8c:3e:f7:
37:87:06:03:c9:93:34:04:ee:e4:00:ff:80:2d:da:03:50:6c:
94:c6:8e:4f:b8:5b:05:84:4f:93:a9:3c:b6:82:ba:3e:08:28:
dd:d3:31:dd:ee:69:d4:85:e7:16:9c:eb:3c:a0:dd:25:b0:70:
85:f4:2d:1b:0a:03:40:33:9e:15:d8:53:62:7e:15:04:3d:d6:
2b:c6:41:e3:52:b0:38:39:20:f1:9e:9f:24:bf:16:1b:66:82:
19:d4:2c:07:2a:ba:4b:9a:5b:08:3f:da:4a:46:16:ce:86:2a:
92:72:d6:00:12:e8:f6:bd:c7:25:d9:fb:80:36:ba:7f:22:4b:
ae:12:17:6c:8f:d9:48:d3:ac:f4:e1:d8:b8:07:06:ed:d9:9e:
d6:0b:4c:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:12 2025 by rpki-client