Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/4578b8-b261-4988-90d4-b477a962e365/1/0yzeObdqsEseiLQwYIC8XERoWsk.roa
File: 0yzeObdqsEseiLQwYIC8XERoWsk.roa (raw, json)
Hash identifier: cGe5SiU6WIHpK1IXR1OlL5HR3t9p5DdQXGCA1Pn1lpA=
Subject key identifier: D3:2C:DE:39:B7:6A:B0:4B:1E:88:B4:30:60:80:BC:5C:44:68:5A:C9
Certificate issuer: /CN=19d6ad902c949e9c5ecf896f8c50107eb659ffe7
Certificate serial: 016281
Authority key identifier: 19:D6:AD:90:2C:94:9E:9C:5E:CF:89:6F:8C:50:10:7E:B6:59:FF:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GdatkCyUnpxez4lvjFAQfrZZ_-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/4578b8-b261-4988-90d4-b477a962e365/1/0yzeObdqsEseiLQwYIC8XERoWsk.roa
Signing time: Thu 20 Jan 2022 01:06:10 +0000
ROA not before: Thu 20 Jan 2022 01:06:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 37.72.132.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90753 (0x16281)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19d6ad902c949e9c5ecf896f8c50107eb659ffe7
Validity
Not Before: Jan 20 01:06:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d32cde39b76ab04b1e88b4306080bc5c44685ac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9d:15:a1:79:d1:8f:9a:a8:9d:8b:f1:6f:c0:
85:6c:5a:18:1a:ab:c5:bf:08:7e:a3:2f:bf:f6:5c:
fe:b1:6f:b4:f2:66:d2:cb:a3:b4:bb:a4:c5:79:0e:
40:6b:5b:e9:6a:f8:39:97:6d:69:b8:26:51:65:dc:
75:74:d3:d7:e0:cc:0b:f0:06:4e:16:25:ef:0d:06:
4c:99:c3:82:78:26:ff:e7:9f:6c:53:e3:ad:cc:da:
85:05:22:3f:d6:51:34:8e:11:11:73:8b:8e:3d:92:
5b:b2:6b:08:c4:c0:58:5d:eb:33:98:1f:d1:42:28:
c8:cb:94:30:90:5a:92:c8:f9:ba:84:e9:03:73:f5:
c2:eb:fc:fa:c6:0f:77:91:33:c4:8b:a2:18:8b:df:
73:8b:1f:be:59:b5:93:6d:8b:85:7e:99:44:b3:db:
1a:67:98:82:8c:72:b3:55:e5:e1:54:7f:fe:d5:c2:
02:38:5b:e0:9f:3e:a5:90:99:14:41:4d:a8:21:a5:
9d:e3:77:57:ae:24:f2:c9:d6:ba:40:fb:a0:fa:9a:
c4:46:0a:58:40:1d:ae:36:93:35:7a:95:0d:a3:f9:
60:81:ce:bd:5b:cc:b4:61:42:bd:57:f4:69:98:fe:
ce:5c:87:04:87:29:ca:d5:61:18:bb:90:00:a8:e4:
c4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:2C:DE:39:B7:6A:B0:4B:1E:88:B4:30:60:80:BC:5C:44:68:5A:C9
X509v3 Authority Key Identifier:
keyid:19:D6:AD:90:2C:94:9E:9C:5E:CF:89:6F:8C:50:10:7E:B6:59:FF:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GdatkCyUnpxez4lvjFAQfrZZ_-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4578b8-b261-4988-90d4-b477a962e365/1/0yzeObdqsEseiLQwYIC8XERoWsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4578b8-b261-4988-90d4-b477a962e365/1/GdatkCyUnpxez4lvjFAQfrZZ_-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.72.132.0/24
Signature Algorithm: sha256WithRSAEncryption
39:4f:fe:d8:6e:41:5b:9b:60:5b:76:6b:9a:3d:71:a4:ea:12:
b3:1b:95:0e:61:08:0e:54:02:5e:1d:2b:4a:f3:28:3a:31:68:
42:63:1c:57:08:3d:c7:52:5d:d1:10:60:0c:c1:c6:96:84:e8:
b0:67:c8:4c:2d:8f:ad:f1:f5:ac:71:d6:4d:93:5d:32:5f:fa:
2f:37:1a:58:f2:89:f3:eb:5d:87:d1:6c:83:7e:ec:73:86:15:
27:d0:ae:4e:ca:fd:18:17:ca:04:f4:2d:5c:1c:89:17:06:f4:
24:06:71:04:3c:c8:99:de:c0:5b:32:a0:a6:40:75:50:76:c6:
be:ce:7c:2a:39:bb:3a:5a:0e:a8:e8:3c:a0:b5:ad:bd:6e:41:
dd:45:3a:b2:de:5d:66:df:4f:ef:2d:77:7e:f6:dd:f0:cc:1d:
0f:28:a6:65:22:6b:85:f4:12:a6:d9:f0:00:34:e6:a4:e0:cb:
e1:7a:4c:ae:0d:50:c8:89:bb:94:b4:0a:b6:f7:5a:0a:14:6f:
5b:b8:9d:d7:fc:34:e1:4f:ed:27:ea:39:79:8c:6c:f5:b3:fc:
4f:ec:82:35:4e:d8:4c:2e:f3:47:46:70:34:be:3b:18:9e:ca:
36:81:23:64:22:de:c0:ba:30:86:a1:6c:8b:8f:b0:40:3d:c4:
ed:ec:f6:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:25 2023 by rpki-client on console-ams.rpki-client.org