Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/78d8f4-3e0f-4bbe-9214-5374c7e0ffa1/1/RTtlZb8spC11UCW5YM26mUZYt-Q.roa
File: RTtlZb8spC11UCW5YM26mUZYt-Q.roa (raw, json)
Hash identifier: noOtkczViPpd7/Y3EBY10Rigqvk0Sbwp9nt8CzP1oBo=
Subject key identifier: 45:3B:65:65:BF:2C:A4:2D:75:50:25:B9:60:CD:BA:99:46:58:B7:E4
Certificate issuer: /CN=df2e1ce94e88a13f38fe7f943b79416bc07a1df0
Certificate serial: 1A8BAAF3
Authority key identifier: DF:2E:1C:E9:4E:88:A1:3F:38:FE:7F:94:3B:79:41:6B:C0:7A:1D:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3y4c6U6IoT84_n-UO3lBa8B6HfA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/78d8f4-3e0f-4bbe-9214-5374c7e0ffa1/1/RTtlZb8spC11UCW5YM26mUZYt-Q.roa
Signing time: Sat 01 Jan 2022 15:57:11 +0000
ROA not before: Sat 01 Jan 2022 15:57:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200129
IP address blocks: 185.36.183.0/24 maxlen: 24
185.36.180.0/24 maxlen: 24
185.36.181.0/24 maxlen: 24
185.36.182.0/24 maxlen: 24
2a00:e860:181::/48 maxlen: 48
2a00:e860:182::/48 maxlen: 48
2a00:e860:180::/48 maxlen: 48
2a00:e860:183::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 445360883 (0x1a8baaf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df2e1ce94e88a13f38fe7f943b79416bc07a1df0
Validity
Not Before: Jan 1 15:57:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=453b6565bf2ca42d755025b960cdba994658b7e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e6:3f:4c:37:98:0a:5a:13:29:f1:2c:7c:57:
63:a2:35:a2:b9:af:fe:d6:b4:9c:e7:2a:1e:01:12:
c2:ef:f4:dc:50:e2:80:65:45:c1:1e:2b:2f:51:d3:
98:55:71:3d:fe:9a:a4:fb:45:66:67:6d:82:05:16:
61:17:0d:93:72:37:f8:1c:57:19:80:b6:1a:68:f0:
5d:62:9c:61:ea:05:88:e3:cd:1a:7a:55:46:61:7f:
52:cf:bf:e6:e7:1f:b6:9c:cc:32:6e:34:2e:c4:80:
db:c0:19:66:88:eb:6b:ea:9e:9a:a5:d5:cc:29:e0:
e6:5f:de:98:63:cb:a3:23:d1:ae:69:b1:56:f3:e7:
58:62:7f:fe:61:8f:07:4a:30:6c:7a:27:50:a4:ac:
32:8c:09:e3:61:30:cc:f1:ea:4d:f7:9f:4c:a7:9d:
35:d7:86:bc:2a:f8:71:33:d8:59:dd:e5:2f:a5:42:
a1:d7:c6:64:59:e7:3c:ef:37:57:87:6a:f6:b4:2b:
5d:bd:a0:b9:7b:6e:9d:14:21:9a:95:3a:96:13:83:
03:da:cf:ee:3f:09:f4:54:a0:6b:c2:81:bb:05:07:
ee:87:56:fe:ba:11:ee:23:6c:23:6d:2c:91:d1:52:
d1:71:28:5b:9d:b5:a8:47:13:7b:a1:1e:12:d8:ad:
a1:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:3B:65:65:BF:2C:A4:2D:75:50:25:B9:60:CD:BA:99:46:58:B7:E4
X509v3 Authority Key Identifier:
keyid:DF:2E:1C:E9:4E:88:A1:3F:38:FE:7F:94:3B:79:41:6B:C0:7A:1D:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3y4c6U6IoT84_n-UO3lBa8B6HfA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/78d8f4-3e0f-4bbe-9214-5374c7e0ffa1/1/RTtlZb8spC11UCW5YM26mUZYt-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/78d8f4-3e0f-4bbe-9214-5374c7e0ffa1/1/3y4c6U6IoT84_n-UO3lBa8B6HfA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.180.0/22
IPv6:
2a00:e860:180::/46
Signature Algorithm: sha256WithRSAEncryption
77:b4:34:e9:1a:d7:97:79:88:29:65:02:a7:b9:c2:7d:7f:bf:
6d:bd:be:df:d0:c5:1d:13:0a:f6:de:f2:07:30:01:00:6c:16:
04:d0:dd:7a:dd:e1:1c:45:60:90:ee:a0:78:c8:70:f1:0c:f7:
7c:80:35:0d:c0:52:b2:bf:5d:80:83:61:36:4d:7a:17:94:f3:
6d:88:92:78:73:5a:d8:57:82:48:e1:5c:b6:e1:fc:ef:48:92:
eb:5b:ab:36:58:63:d8:0b:15:0f:77:6a:97:b5:8c:48:33:d4:
da:b4:c0:81:1f:13:7d:72:87:a8:2d:37:78:51:39:de:80:d3:
76:d5:80:de:e7:cf:b3:07:da:9a:d6:7e:e9:7f:14:39:3a:a8:
0d:59:91:a5:25:1c:54:ec:14:0b:48:20:ea:9e:93:24:24:63:
03:54:bc:3f:db:ea:0d:45:8a:e1:59:d2:68:63:29:b5:57:20:
64:6c:30:73:b4:a2:d7:03:cd:d8:5f:b0:17:13:33:f2:0c:f3:
0c:64:4e:0e:39:3b:e2:a4:65:07:7e:11:52:7f:62:9c:36:20:
fd:e2:2b:18:09:38:a6:3a:37:b9:a4:e8:d4:5f:1f:f3:ba:f5:
f7:fa:d9:5a:f6:38:08:b7:46:a6:91:56:01:d5:97:9b:61:48:
87:43:ca:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:53 2024 by rpki-client on console-ams.rpki-client.org