Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/41/3138352e33372e3235322e302f32322d3233203d3e20393439.roa
File: 3138352e33372e3235322e302f32322d3233203d3e20393439.roa (raw, json)
Hash identifier: 42pTrtRcBbxjnnu9RC9vqwTkq9tlnzolU+t1YJqqD1I=
Subject key identifier: FB:E2:4C:DD:73:C0:FF:FF:31:5C:D0:83:1F:39:C5:6C:E5:CC:13:51
Certificate issuer: /CN=39f66f45a59b837ed24d6b9f20c60702114b70bb
Certificate serial: 131BC85EA39137D36FD840BCC8949B6ADDF92C22
Authority key identifier: 39:F6:6F:45:A5:9B:83:7E:D2:4D:6B:9F:20:C6:07:02:11:4B:70:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OfZvRaWbg37STWufIMYHAhFLcLs.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/41/3138352e33372e3235322e302f32322d3233203d3e20393439.roa
Signing time: Sat 02 Jul 2022 18:17:21 +0000
ROA not before: Sat 02 Jul 2022 18:12:21 +0000
ROA not after: Sat 01 Jul 2023 18:17:21 +0000
asID: 949
IP address blocks: 185.37.252.0/22 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:1b:c8:5e:a3:91:37:d3:6f:d8:40:bc:c8:94:9b:6a:dd:f9:2c:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39f66f45a59b837ed24d6b9f20c60702114b70bb
Validity
Not Before: Jul 2 18:12:21 2022 GMT
Not After : Jul 1 18:17:21 2023 GMT
Subject: CN=FBE24CDD73C0FFFF315CD0831F39C56CE5CC1351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f4:41:df:8b:27:47:e9:2d:07:4f:bb:ae:23:
1f:be:04:d9:7f:cd:e8:93:c0:a8:da:ab:68:22:08:
5e:65:df:44:d7:63:0c:2b:01:5e:76:da:6a:8d:ea:
ed:b7:d7:33:6d:12:eb:42:3a:1a:18:34:6f:77:a7:
0e:25:eb:9c:58:d2:cb:da:83:78:45:39:8c:93:33:
f6:97:45:db:70:6b:d7:be:31:eb:5f:61:c3:24:7f:
af:fd:13:1e:18:5b:5f:1c:97:e3:e6:07:a2:dd:53:
11:95:b1:e2:58:3a:73:c4:b6:eb:7f:ff:96:d4:63:
f7:77:30:1b:25:b9:06:60:d5:60:42:e1:75:ef:1b:
12:ba:59:88:1a:e4:46:38:6b:71:31:93:d2:09:8b:
6d:2e:1b:b0:88:d3:44:29:ee:5a:a2:54:83:0c:6c:
30:e2:bc:9e:ae:a7:13:e8:03:b0:73:ae:f5:3b:b7:
27:13:29:07:8a:a0:a6:7c:46:8e:7a:53:ca:4c:ae:
e8:d6:b3:b2:a1:b3:c8:2c:ae:19:fd:c5:7f:a3:c2:
6d:bf:1a:13:94:96:b1:c7:71:86:5d:56:f5:66:7e:
58:3f:6c:39:90:25:3d:44:46:fc:a2:ed:23:77:ab:
85:47:18:89:12:34:5c:ff:4d:d5:04:50:c7:ee:e8:
9d:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:E2:4C:DD:73:C0:FF:FF:31:5C:D0:83:1F:39:C5:6C:E5:CC:13:51
X509v3 Authority Key Identifier:
keyid:39:F6:6F:45:A5:9B:83:7E:D2:4D:6B:9F:20:C6:07:02:11:4B:70:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/41/39F66F45A59B837ED24D6B9F20C60702114B70BB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OfZvRaWbg37STWufIMYHAhFLcLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/41/3138352e33372e3235322e302f32322d3233203d3e20393439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.37.252.0/22
Signature Algorithm: sha256WithRSAEncryption
c4:93:09:f5:5f:63:d6:4e:b7:c7:56:8f:87:99:dc:41:1e:48:
9b:85:40:25:3b:96:1c:a3:41:49:b7:20:91:6e:2c:66:88:c7:
40:16:10:8a:d9:87:12:4a:d8:5f:b7:7b:9f:44:28:a1:5e:76:
74:2b:e5:cd:8f:43:30:78:53:69:bc:20:74:eb:a0:1d:3f:1d:
6c:64:09:8d:7d:f1:58:12:a4:aa:e2:02:93:03:ad:18:c7:c0:
e3:57:d9:67:6a:2d:19:4c:4b:43:a4:8e:2b:ac:8b:bd:0e:66:
7d:11:a0:25:fb:81:8d:a5:ec:33:cb:02:3b:43:79:7d:69:8f:
09:de:6d:7a:4a:b9:64:c2:02:7a:fe:d8:a7:12:8e:04:9e:bd:
db:1c:b1:98:b6:b1:14:70:e8:af:99:77:84:1f:b1:3a:b1:b8:
36:cd:d9:20:f5:b7:51:12:95:b8:af:f0:15:a0:86:c7:bc:74:
ab:ce:7d:ca:a4:21:b5:1d:53:43:9a:24:26:8d:a8:15:69:8c:
6a:18:41:96:ec:f3:80:e2:e0:c8:f5:e9:da:80:29:06:97:f1:
63:92:a9:f2:47:b1:6f:7e:ff:e3:da:6e:6f:81:31:c3:71:36:
8f:a4:fe:fd:a4:51:08:7a:62:5a:2e:55:8a:41:65:c9:8f:c2:
b9:e6:3c:56
-----BEGIN CERTIFICATE-----
MIIEwjCCA6qgAwIBAgIUExvIXqORN9Nv2EC8yJSbat35LCIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzlmNjZmNDVhNTliODM3ZWQyNGQ2YjlmMjBjNjA3MDIx
MTRiNzBiYjAeFw0yMjA3MDIxODEyMjFaFw0yMzA3MDExODE3MjFaMDMxMTAvBgNV
BAMTKEZCRTI0Q0RENzNDMEZGRkYzMTVDRDA4MzFGMzlDNTZDRTVDQzEzNTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA9EHfiydH6S0HT7uuIx++BNl/
zeiTwKjaq2giCF5l30TXYwwrAV522mqN6u231zNtEutCOhoYNG93pw4l65xY0sva
g3hFOYyTM/aXRdtwa9e+MetfYcMkf6/9Ex4YW18cl+PmB6LdUxGVseJYOnPEtut/
/5bUY/d3MBsluQZg1WBC4XXvGxK6WYga5EY4a3Exk9IJi20uG7CI00Qp7lqiVIMM
bDDivJ6upxPoA7BzrvU7tycTKQeKoKZ8Ro56U8pMrujWs7Khs8gsrhn9xX+jwm2/
GhOUlrHHcYZdVvVmflg/bDmQJT1ERvyi7SN3q4VHGIkSNFz/TdUEUMfu6J2pAgMB
AAGjggHMMIIByDAdBgNVHQ4EFgQU++JM3XPA//8xXNCDHznFbOXME1EwHwYDVR0j
BBgwFoAUOfZvRaWbg37STWufIMYHAhFLcLswDgYDVR0PAQH/BAQDAgeAMF8GA1Ud
HwRYMFYwVKBSoFCGTnJzeW5jOi8vcnBraS5yb2EubmV0L3JyZHAveFRvbS80MS8z
OUY2NkY0NUE1OUI4MzdFRDI0RDZCOUYyMEM2MDcwMjExNEI3MEJCLmNybDBkBggr
BgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9y
ZXBvc2l0b3J5L0RFRkFVTFQvT2ZadlJhV2JnMzdTVFd1ZklNWUhBaEZMY0xzLmNl
cjB0BggrBgEFBQcBCwRoMGYwZAYIKwYBBQUHMAuGWHJzeW5jOi8vcnBraS5yb2Eu
bmV0L3JyZHAveFRvbS80MS8zMTM4MzUyZTMzMzcyZTMyMzUzMjJlMzAyZjMyMzIy
ZDMyMzMyMDNkM2UyMDM5MzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcO
AjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArkl/DANBgkqhkiG9w0BAQsF
AAOCAQEAxJMJ9V9j1k63x1aPh5ncQR5Im4VAJTuWHKNBSbcgkW4sZojHQBYQitmH
EkrYX7d7n0QooV52dCvlzY9DMHhTabwgdOugHT8dbGQJjX3xWBKkquICkwOtGMfA
41fZZ2otGUxLQ6SOK6yLvQ5mfRGgJfuBjaXsM8sCO0N5fWmPCd5tekq5ZMICev7Y
pxKOBJ692xyxmLaxFHDor5l3hB+xOrG4Ns3ZIPW3URKVuK/wFaCGx7x0q859yqQh
tR1TQ5okJo2oFWmMahhBluzzgOLgyPXp2oApBpfxY5Kp8kexb37/49pub4Exw3E2
j6T+/aRRCHpiWi5VikFlyY/CueY8Vg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:24 2024 by rpki-client on console-fra.rpki-client.org