Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/a9666e-fcf0-4fb6-a452-38b392c6e1bf/1/EllZdhT19GkKDLplJMsqT2BdAg4.roa
File: EllZdhT19GkKDLplJMsqT2BdAg4.roa (raw, json)
Hash identifier: LMABYOW8M2hiBi9MxiCtNhj2iMYKJAvJ/21234qvF/Q=
Subject key identifier: 12:59:59:76:14:F5:F4:69:0A:0C:BA:65:24:CB:2A:4F:60:5D:02:0E
Certificate issuer: /CN=184fff3cf900e76aae0d2cd2e77dfeae24c5d24c
Certificate serial: 034C35
Authority key identifier: 18:4F:FF:3C:F9:00:E7:6A:AE:0D:2C:D2:E7:7D:FE:AE:24:C5:D2:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GE__PPkA52quDSzS533-riTF0kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/a9666e-fcf0-4fb6-a452-38b392c6e1bf/1/EllZdhT19GkKDLplJMsqT2BdAg4.roa
Signing time: Tue 07 Jun 2022 15:35:02 +0000
ROA not before: Tue 07 Jun 2022 15:35:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198312
IP address blocks: 37.0.97.0/24 maxlen: 24
37.0.96.0/24 maxlen: 24
37.0.100.0/24 maxlen: 24
37.0.103.0/24 maxlen: 24
37.0.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 216117 (0x34c35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=184fff3cf900e76aae0d2cd2e77dfeae24c5d24c
Validity
Not Before: Jun 7 15:35:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1259597614f5f4690a0cba6524cb2a4f605d020e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:da:88:5d:ed:51:e2:c0:d6:49:43:59:aa:38:
8f:15:18:72:49:21:3e:da:df:c1:dc:da:7a:f8:07:
f7:45:21:a7:22:55:7b:92:53:4a:05:55:6f:1b:55:
08:4a:5d:5d:7a:97:14:dd:9f:fd:e4:b1:01:df:77:
16:7f:f5:86:29:62:d1:3e:5f:05:df:be:b7:bd:8d:
3b:05:a1:a4:60:ef:1f:20:8a:e6:e9:3c:80:0c:08:
6c:94:32:aa:f7:1d:8e:ae:95:d1:24:0b:17:1d:bd:
9f:75:0a:5a:e5:62:b5:55:a2:63:58:54:f6:a6:f2:
2d:d0:81:37:a6:72:60:e2:e9:6c:0c:d2:1a:07:d4:
53:8f:79:ff:a7:1a:00:b0:b9:97:8d:d7:a2:78:c1:
cf:8c:11:51:8b:74:92:6f:ef:e8:6c:b0:b6:a8:67:
d1:7d:49:40:11:06:a5:04:9e:0f:af:f6:d9:2c:c5:
7e:05:51:df:b5:80:71:5e:1f:81:eb:6c:7e:0a:2f:
12:b2:7c:f4:3b:88:c3:96:03:d8:6f:9f:b5:fc:1d:
cb:80:25:55:72:62:08:cd:82:f2:48:58:27:75:77:
3c:92:5f:f8:e9:af:9e:e7:3d:22:62:5b:c2:57:33:
49:2d:33:62:7a:39:eb:62:64:6f:cd:9b:cf:18:bd:
85:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:59:59:76:14:F5:F4:69:0A:0C:BA:65:24:CB:2A:4F:60:5D:02:0E
X509v3 Authority Key Identifier:
keyid:18:4F:FF:3C:F9:00:E7:6A:AE:0D:2C:D2:E7:7D:FE:AE:24:C5:D2:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GE__PPkA52quDSzS533-riTF0kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/a9666e-fcf0-4fb6-a452-38b392c6e1bf/1/EllZdhT19GkKDLplJMsqT2BdAg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/a9666e-fcf0-4fb6-a452-38b392c6e1bf/1/GE__PPkA52quDSzS533-riTF0kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.0.96.0/23
37.0.100.0/24
37.0.102.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:df:51:76:6f:6a:2c:ba:c9:07:f9:b0:df:61:8d:db:a5:a4:
dd:63:02:52:92:36:ff:32:cf:03:8b:88:5f:75:51:9e:19:71:
24:06:6d:f0:1d:b2:3e:b5:0b:b9:06:6a:6b:36:d1:f5:7a:c7:
03:f0:18:ea:25:57:b2:2a:0c:d5:d5:ab:69:43:54:82:f8:43:
33:3e:a3:15:95:d3:99:ea:a8:ea:57:a7:bc:54:a0:7e:80:c8:
9c:3e:5e:74:67:af:1f:48:29:c1:68:09:4c:81:64:0a:84:52:
b5:2f:33:e8:53:ad:db:66:bc:73:fc:86:de:40:64:e0:b4:c8:
c9:ad:f8:5f:6d:fe:ff:ee:ad:ba:55:fd:5a:02:bc:e3:86:db:
3c:78:55:4b:27:cd:77:bc:cf:53:c0:a2:7f:e1:34:db:a6:c1:
72:b3:cb:fa:23:95:76:26:cb:da:64:ca:9a:36:4a:b5:8c:fc:
59:66:10:a6:5f:a3:bc:eb:c7:5c:0a:fe:d0:3b:05:88:76:a3:
f3:78:17:fd:ed:89:0e:50:67:8b:2e:cc:0b:d4:64:c2:7c:a0:
00:bc:b7:30:28:08:20:95:d8:50:07:fc:1e:e8:a9:73:58:02:
d3:37:5b:ba:c2:9a:ea:7c:d3:e9:ed:39:dc:7f:94:50:ae:40:
6b:4b:4b:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:32 2023 by rpki-client on console-fra.rpki-client.org