Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/wxWJkyXt63SHpAl3zEv5f35T7lQ.roa
File: wxWJkyXt63SHpAl3zEv5f35T7lQ.roa (raw, json)
Hash identifier: IILGtBd0+ppdcUgg0QpBYumOsu5fK6N4LU/+Mc2o64A=
Subject key identifier: C3:15:89:93:25:ED:EB:74:87:A4:09:77:CC:4B:F9:7F:7E:53:EE:54
Certificate issuer: /CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Certificate serial: 533DF2
Authority key identifier: B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/wxWJkyXt63SHpAl3zEv5f35T7lQ.roa
Signing time: Fri 04 Mar 2022 06:50:47 +0000
ROA not before: Fri 04 Mar 2022 06:50:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208410
IP address blocks: 37.32.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5455346 (0x533df2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Validity
Not Before: Mar 4 06:50:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c315899325edeb7487a40977cc4bf97f7e53ee54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c3:9d:fe:aa:c3:1b:33:2e:ad:66:b8:d1:62:
ab:ca:cc:67:40:6d:92:d4:83:1e:6b:3e:87:62:a7:
49:5c:16:48:02:34:6a:8f:2d:59:48:a7:1e:1f:0e:
44:32:1b:41:1e:f7:47:23:f5:e4:af:ad:5d:3e:92:
da:d3:80:92:1a:db:cc:89:ee:77:b6:21:aa:7e:c4:
df:87:65:e9:4c:f2:a2:e3:da:da:96:48:82:80:4b:
57:26:cf:52:28:9e:b3:f1:10:d7:c6:82:f9:9e:e1:
32:de:8e:e6:0c:21:37:28:ac:53:83:ba:b5:cf:da:
ff:c7:dd:f6:68:2a:11:a5:d6:a5:d6:25:ac:4b:e0:
63:9a:29:64:ec:7b:13:c7:c4:69:10:29:fe:73:11:
5a:6e:6e:20:73:53:72:47:3f:a3:c5:66:5e:a5:20:
e2:e5:ba:19:b3:aa:d3:d7:34:74:a9:ce:82:9f:62:
7c:05:7d:b0:64:db:4a:72:8d:a8:3b:a1:d2:2f:77:
6a:36:58:76:31:ed:f2:94:a2:41:29:f4:c8:84:a5:
52:d5:a3:e4:ba:c8:10:d8:f8:69:f0:66:6a:65:1f:
c7:b1:27:1b:53:5f:bf:b3:a9:05:51:19:14:2d:d3:
4a:c5:8a:b9:aa:fc:4a:ca:00:a5:9a:c1:c4:42:02:
02:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:15:89:93:25:ED:EB:74:87:A4:09:77:CC:4B:F9:7F:7E:53:EE:54
X509v3 Authority Key Identifier:
keyid:B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/wxWJkyXt63SHpAl3zEv5f35T7lQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/tOgroXFdaurlsBAnJf_gyDRzXX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.78.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:b2:00:db:b5:87:54:78:09:ca:db:e1:aa:6b:40:b9:83:6f:
18:55:1a:db:b0:16:fc:91:8c:e4:a5:45:33:69:2a:57:5a:44:
62:d0:cc:1f:cb:9c:45:c9:a3:62:09:7c:71:d4:a3:db:1f:dc:
9a:d0:53:09:0d:7d:91:67:7a:41:fb:67:8b:9b:c7:ed:a1:bc:
a4:22:8a:62:24:87:e5:89:7f:91:f4:86:bb:b5:d4:72:e6:1c:
d5:5b:23:a3:91:0e:24:20:5c:70:de:59:8c:01:d6:4c:9b:0e:
ab:53:2f:83:12:cf:5e:83:b7:93:58:1b:20:a0:24:67:9a:e7:
3e:74:bc:88:7a:75:5b:d8:50:b7:53:5c:6a:ec:94:5d:b4:33:
e9:08:b7:b4:90:7d:30:79:a4:b9:87:88:db:75:f9:1f:ad:71:
a0:77:8c:cd:ea:c4:26:f6:bb:01:64:c3:c7:c9:e6:f2:c2:15:
fd:be:f5:43:d0:19:3c:2a:ea:22:3e:4b:ec:5a:00:29:a9:6e:
16:60:6f:b1:66:27:4b:63:75:06:b0:89:56:98:62:ab:eb:ee:
c7:38:b9:28:80:ca:b5:f3:84:6d:1c:1a:5f:a0:c9:d1:27:a8:
2c:0a:5e:28:6c:1e:08:68:7e:d6:e5:a7:15:c6:20:82:b9:25:
c8:b2:2e:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:16 2023 by rpki-client on console.sobornost.net