Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/de956f-e55b-437e-85d9-686f836cbcad/1/1aLoM6AUvk43RKiOr6sUGcPDU3A.roa
File: 1aLoM6AUvk43RKiOr6sUGcPDU3A.roa (raw, json)
Hash identifier: ruLgTwFr+JZ9grgCedlksNK4l/qf9BEnBrXuNjdwzbY=
Subject key identifier: D5:A2:E8:33:A0:14:BE:4E:37:44:A8:8E:AF:AB:14:19:C3:C3:53:70
Certificate issuer: /CN=37b8221099486a3b133e0139e34b934264cdd700
Certificate serial: D9421E
Authority key identifier: 37:B8:22:10:99:48:6A:3B:13:3E:01:39:E3:4B:93:42:64:CD:D7:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N7giEJlIajsTPgE540uTQmTN1wA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/de956f-e55b-437e-85d9-686f836cbcad/1/1aLoM6AUvk43RKiOr6sUGcPDU3A.roa
Signing time: Sat 01 Jan 2022 06:52:55 +0000
ROA not before: Sat 01 Jan 2022 06:52:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203541
IP address blocks: 37.61.184.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14238238 (0xd9421e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37b8221099486a3b133e0139e34b934264cdd700
Validity
Not Before: Jan 1 06:52:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5a2e833a014be4e3744a88eafab1419c3c35370
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:21:28:80:08:9c:61:00:9f:f1:bb:dd:1f:1b:
a8:6d:0a:ba:31:dc:c6:79:c9:28:36:27:b5:66:bb:
6e:41:00:52:0e:17:d2:fe:cb:ed:2a:d8:2b:ba:54:
ae:ea:eb:87:63:34:20:5b:2b:a9:d2:f1:5d:9e:d7:
89:bb:e4:77:2b:25:39:7e:3e:c0:c5:4d:93:e1:0f:
af:f5:89:c0:a1:8b:45:08:e9:66:d3:88:9e:12:d2:
28:c7:70:85:a3:8e:a6:22:2e:94:ea:20:cc:d9:71:
0e:ae:7a:5e:6b:04:fc:00:49:08:50:2d:39:75:e6:
23:5d:a8:3d:18:11:e8:c1:f0:03:be:a4:76:22:d1:
2e:fb:80:6e:77:09:9f:3e:d2:d1:33:95:57:e5:ff:
e9:ba:37:97:bf:b3:e5:79:59:f3:23:ff:c8:c5:98:
00:17:90:b9:84:2e:8e:54:4c:3f:04:99:2b:2e:8b:
41:35:5f:9f:c3:a9:5e:c9:ad:3c:3d:a2:73:8e:ec:
a7:9c:05:89:cb:4b:fc:b4:82:6b:f4:70:f4:fe:f2:
bc:d6:f8:12:08:8d:40:36:43:67:39:f7:cb:42:ed:
61:ea:13:b4:4c:6a:7b:35:b2:2e:59:8b:80:77:68:
cf:37:84:10:87:b6:fe:9c:fd:ca:c4:7f:3e:53:94:
5f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:A2:E8:33:A0:14:BE:4E:37:44:A8:8E:AF:AB:14:19:C3:C3:53:70
X509v3 Authority Key Identifier:
keyid:37:B8:22:10:99:48:6A:3B:13:3E:01:39:E3:4B:93:42:64:CD:D7:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N7giEJlIajsTPgE540uTQmTN1wA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/de956f-e55b-437e-85d9-686f836cbcad/1/1aLoM6AUvk43RKiOr6sUGcPDU3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/de956f-e55b-437e-85d9-686f836cbcad/1/N7giEJlIajsTPgE540uTQmTN1wA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.61.184.0/21
Signature Algorithm: sha256WithRSAEncryption
70:d1:ed:72:60:03:72:25:00:ce:78:6f:8a:6d:dd:bc:05:a2:
2a:f9:7a:ba:b2:f9:17:80:1c:5f:b3:f5:22:d3:1c:cc:7d:ac:
f4:30:9c:70:0a:9f:45:48:29:ec:cf:64:13:50:25:f1:b6:5d:
6c:fe:38:e7:a9:8e:a9:af:37:21:8b:fc:a2:be:d1:2a:14:05:
b8:bb:e8:47:29:67:f8:60:b5:5c:63:05:03:eb:90:b5:17:b7:
fa:f5:7b:de:53:3d:da:8d:fe:f8:db:a9:42:90:70:ce:c4:5e:
bd:92:a8:1a:a4:ed:22:31:51:b6:f0:97:9d:30:62:77:ad:c7:
20:be:10:71:08:5c:7a:35:d4:04:27:95:07:0c:37:04:38:bb:
b4:54:aa:24:c0:50:4d:48:6d:f4:65:d3:8f:fa:66:5b:a3:53:
77:ef:36:95:e5:ff:10:14:d2:74:c8:68:2c:57:8c:da:d0:12:
5f:ab:7b:2b:34:e6:ae:ab:07:a9:67:bc:30:3c:c5:4b:00:5c:
31:79:8e:50:7b:9d:30:5c:be:55:87:20:dd:65:ae:1c:b1:01:
cf:37:13:08:41:27:85:8c:3d:d3:a4:f0:f6:01:e6:e2:1b:a0:
cf:b2:1e:3b:50:36:ec:fc:e9:95:b3:5d:79:a1:39:ef:e6:d6:
af:70:32:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:53 2023 by rpki-client on console-ams.rpki-client.org