Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/B3jqno5W59uNgynSFH5MgukaSkk.roa
File: B3jqno5W59uNgynSFH5MgukaSkk.roa (raw, json)
Hash identifier: y3svZ673wTU3+SeNyJHnhgnCJbZHAcJHWN0h1CYTLs8=
Subject key identifier: 07:78:EA:9E:8E:56:E7:DB:8D:83:29:D2:14:7E:4C:82:E9:1A:4A:49
Certificate issuer: /CN=7c3c39d1899e699bf5177418ee381489edff4380
Certificate serial: 1AEDADB6
Authority key identifier: 7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/B3jqno5W59uNgynSFH5MgukaSkk.roa
Signing time: Fri 04 Mar 2022 12:05:25 +0000
ROA not before: Fri 04 Mar 2022 12:05:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 185.18.120.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 451784118 (0x1aedadb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3c39d1899e699bf5177418ee381489edff4380
Validity
Not Before: Mar 4 12:05:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0778ea9e8e56e7db8d8329d2147e4c82e91a4a49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:d0:01:8b:2e:53:7e:0e:52:29:5f:69:f3:75:
96:b5:dc:50:49:eb:66:ac:6f:ce:16:6e:02:30:13:
4f:39:f4:de:dd:26:3f:ae:be:d1:d8:11:56:21:57:
5d:18:15:a6:1a:ba:83:78:6b:6a:9e:06:0e:27:24:
e7:90:c9:fe:9e:67:29:ce:66:62:51:b8:4b:90:67:
7b:ca:3e:c1:d6:0a:e2:75:07:b7:02:39:a1:fe:90:
5d:20:4c:95:ad:c5:03:f5:42:4e:6d:c8:3d:e7:c9:
f3:ef:0e:da:ca:6e:29:8d:7e:49:44:15:fe:56:e9:
94:05:62:dc:39:41:38:89:c5:09:e2:46:f4:e6:2f:
1b:8f:8d:43:97:76:94:0e:f2:6d:64:c0:d1:12:11:
f2:f3:47:98:9e:62:d2:47:98:98:24:ca:91:b5:f9:
a2:37:12:2c:b0:ae:a3:b0:5f:c8:07:29:4d:70:11:
4a:b0:ab:0e:dd:01:68:2f:c2:09:38:e8:f0:83:ca:
4f:38:fa:91:61:34:4c:2c:94:f2:4d:92:a6:06:f7:
3a:26:18:b8:37:b1:ee:ba:45:49:21:ec:25:a8:4d:
54:44:28:e5:2e:8f:55:c4:b5:ef:7c:26:b7:08:4e:
a8:b9:73:f5:8c:2d:2a:1a:bf:fc:2d:f0:53:8c:c8:
03:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:78:EA:9E:8E:56:E7:DB:8D:83:29:D2:14:7E:4C:82:E9:1A:4A:49
X509v3 Authority Key Identifier:
keyid:7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/B3jqno5W59uNgynSFH5MgukaSkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/fDw50YmeaZv1F3QY7jgUie3_Q4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.18.120.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:39:30:23:36:d2:a7:f5:7b:a1:b7:a4:e4:fd:d0:a7:4b:af:
ba:fa:e1:d4:df:44:50:22:b8:55:9b:df:9a:35:01:15:4c:4a:
ea:ab:46:d9:e4:17:93:1f:c7:08:86:39:5a:5e:a9:09:a2:b9:
a4:de:06:dc:57:bd:24:d9:8e:dc:25:f0:00:7a:83:a6:70:33:
65:04:c0:a9:e8:c9:c3:5a:d8:e0:5a:54:6c:a2:48:dd:4f:19:
0b:c1:f7:7e:89:f6:ae:c5:5d:1b:05:b7:8e:8c:3c:6a:2e:f6:
92:5d:36:36:55:42:18:82:26:35:3b:57:2e:09:ae:2f:bb:ea:
93:52:cd:b7:8f:e8:23:00:53:7f:d8:88:1e:11:29:98:7a:1f:
a9:fd:fa:c1:c3:f9:dc:3a:01:cd:f6:18:6f:e9:fe:ee:12:fe:
14:f5:2f:2b:5d:2c:a6:37:9d:19:63:16:17:1f:e9:6f:47:79:
ac:ca:15:cd:e4:05:e0:f3:c7:17:b3:f6:83:a0:1d:61:2f:41:
cf:03:38:d5:9a:8c:08:b3:d3:94:96:ac:5f:9e:b8:c8:5e:bb:
37:ce:d9:3f:cd:10:43:5c:83:d6:fe:e2:44:3d:1b:8f:7d:95:
f6:43:52:c9:c8:f3:a7:31:d7:00:bf:59:f0:c4:94:bc:75:62:
48:82:5c:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:18 2023 by rpki-client on console-ams.rpki-client.org