Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/4Q2OMKZUOWFMI42crbts1GLrXEg.roa
File: 4Q2OMKZUOWFMI42crbts1GLrXEg.roa (raw, json)
Hash identifier: IgrR5toM/SXhfSvU11CQ13PQGXmbZWoN3XiHGMsy2Bw=
Subject key identifier: E1:0D:8E:30:A6:54:39:61:4C:23:8D:9C:AD:BB:6C:D4:62:EB:5C:48
Certificate issuer: /CN=7c3c39d1899e699bf5177418ee381489edff4380
Certificate serial: 0183378CB0991419BA364F3AC31CB398AB2F
Authority key identifier: 7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/4Q2OMKZUOWFMI42crbts1GLrXEg.roa
Signing time: Tue 13 Sep 2022 15:51:50 +0000
ROA not before: Tue 13 Sep 2022 15:51:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205570
IP address blocks: 185.18.120.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:37:8c:b0:99:14:19:ba:36:4f:3a:c3:1c:b3:98:ab:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3c39d1899e699bf5177418ee381489edff4380
Validity
Not Before: Sep 13 15:51:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e10d8e30a65439614c238d9cadbb6cd462eb5c48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f9:70:f9:fc:e5:34:df:23:76:67:dc:21:e9:
bb:79:9a:cc:9e:d0:2e:0e:f5:ce:cc:66:b9:40:d6:
02:64:c4:25:d0:7c:80:a7:a9:8c:af:85:93:73:cb:
f1:ff:6e:28:3e:48:04:ea:c2:5d:0c:15:b4:1b:58:
c7:0e:1d:4a:dd:46:84:3d:da:87:de:6b:cc:d1:8a:
eb:a1:ee:5c:54:ba:29:9e:ee:d2:2a:95:36:06:66:
e8:5a:9f:5d:f6:22:5e:bc:d8:0c:c1:0b:4f:e5:83:
d4:6a:65:28:8b:b0:02:d9:af:64:c8:4f:9c:2a:d6:
ba:fb:a0:f8:15:6a:47:6b:0b:6e:6e:14:ff:f6:27:
d2:84:69:bb:45:7b:50:dc:8a:7c:df:6c:64:14:b4:
35:98:29:b0:f3:2f:ae:8c:8f:d2:46:db:1f:57:24:
40:24:e9:98:3b:76:9b:68:70:49:15:b0:f4:83:66:
ca:39:ba:5f:90:8d:ab:3f:a4:4b:60:07:fa:4f:6d:
03:2a:f2:a0:13:b0:95:44:7f:84:24:21:ea:47:7a:
01:f8:6d:36:36:7d:43:e0:a5:82:63:93:44:59:cd:
d1:1e:39:1e:26:15:f7:e8:34:e4:32:9c:03:bd:00:
52:97:1a:1b:43:63:85:c4:bb:ad:61:b4:b8:d1:46:
ce:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:0D:8E:30:A6:54:39:61:4C:23:8D:9C:AD:BB:6C:D4:62:EB:5C:48
X509v3 Authority Key Identifier:
keyid:7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/4Q2OMKZUOWFMI42crbts1GLrXEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/fDw50YmeaZv1F3QY7jgUie3_Q4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.18.120.0/23
Signature Algorithm: sha256WithRSAEncryption
81:19:49:9c:14:1d:4c:31:be:7b:51:d8:ae:eb:ff:a8:9b:bf:
e9:5c:51:f2:20:c2:0e:ad:40:f9:57:d7:09:07:3a:bf:22:51:
0e:95:06:6a:db:4e:77:56:62:a2:e0:c0:97:6c:c1:c5:3b:2c:
75:b1:c9:4f:02:8d:c3:c8:eb:d2:ad:69:8f:63:98:20:9c:a9:
4b:c4:f7:39:11:9d:ce:02:ed:a8:79:9b:61:36:50:c4:43:2a:
5e:52:af:24:45:0f:f2:d0:f4:87:c9:5d:c6:14:a3:74:bf:41:
77:4a:d2:0e:d3:5a:b3:6d:df:95:ac:e6:24:6e:0e:26:8b:51:
08:a0:4d:87:80:e3:59:e7:0a:d7:3e:ad:29:06:3f:d8:c9:7f:
1c:0f:f5:3e:48:05:c6:fe:54:99:f2:f4:d9:70:ad:65:1f:f9:
8d:7c:e5:f8:c9:d3:c2:30:91:eb:58:d6:63:47:2b:6d:75:5f:
10:7c:69:47:35:bb:f3:63:7f:80:87:d5:c6:cb:d7:86:4d:13:
30:f1:2d:98:39:11:9e:5e:7f:5b:4a:3a:5e:05:f8:42:10:da:
73:81:1b:c1:19:35:1f:7a:b3:6d:b6:01:8c:c4:87:56:23:1c:
dd:28:e0:5d:3e:1d:24:62:17:67:55:f1:14:d3:8e:fa:fc:59:
a6:06:d6:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:18 2023 by rpki-client on console-ams.rpki-client.org