Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/GQi_bcyriw3J7rFj4gFtH7HpfU8.roa
File: GQi_bcyriw3J7rFj4gFtH7HpfU8.roa (raw, json)
Hash identifier: wbtDHjvSLC5zGWa25zfHEnAy7ER/JrC8idmS3OF9FMU=
Subject key identifier: 19:08:BF:6D:CC:AB:8B:0D:C9:EE:B1:63:E2:01:6D:1F:B1:E9:7D:4F
Certificate issuer: /CN=7c3c39d1899e699bf5177418ee381489edff4380
Certificate serial: 1B4BC0E3
Authority key identifier: 7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/GQi_bcyriw3J7rFj4gFtH7HpfU8.roa
Signing time: Tue 12 Apr 2022 09:30:26 +0000
ROA not before: Tue 12 Apr 2022 09:30:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 185.18.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 457949411 (0x1b4bc0e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3c39d1899e699bf5177418ee381489edff4380
Validity
Not Before: Apr 12 09:30:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1908bf6dccab8b0dc9eeb163e2016d1fb1e97d4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:db:6b:f3:64:b8:39:03:6d:71:b5:8f:9d:74:
be:14:3e:a5:4c:73:f9:1f:26:a5:a5:3e:db:51:c3:
30:cd:71:cd:7f:38:08:c2:4b:00:ef:15:b6:39:05:
ca:1a:dc:54:25:28:62:57:1d:2f:e1:7e:1e:7b:a2:
a7:b4:5a:18:5b:9c:f5:b9:2b:c5:27:1a:d6:3b:90:
2e:0a:d4:9d:ea:dc:65:39:64:67:84:99:45:f0:f6:
ef:a7:f0:de:72:89:b9:b7:e0:cc:04:85:1c:ab:7c:
73:15:f1:8a:94:c5:a3:e8:fe:23:f8:73:ac:cf:73:
80:af:bc:b0:d8:7e:3f:fa:75:e0:6c:1d:a8:18:75:
a3:f6:eb:22:c3:64:4e:8d:52:34:05:7a:ed:c6:26:
4a:bf:46:82:33:f7:dc:8a:91:d3:5e:14:d6:a6:d0:
6d:2f:cd:61:6f:e2:c2:8e:09:46:e7:da:24:d5:31:
93:f0:f7:a6:a6:cd:04:73:ce:4d:e9:b4:30:45:62:
a2:3d:b9:dd:17:1d:2a:eb:ac:1c:d6:df:1c:55:9f:
f0:0e:59:74:0d:e1:d0:36:4b:eb:ad:f3:a3:86:95:
50:2c:41:1c:07:b7:a1:04:23:ec:3d:de:1d:43:0a:
dd:c8:5b:4b:d5:db:a0:10:e7:37:39:68:a9:99:d8:
0f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:08:BF:6D:CC:AB:8B:0D:C9:EE:B1:63:E2:01:6D:1F:B1:E9:7D:4F
X509v3 Authority Key Identifier:
keyid:7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/GQi_bcyriw3J7rFj4gFtH7HpfU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/fDw50YmeaZv1F3QY7jgUie3_Q4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.18.123.0/24
Signature Algorithm: sha256WithRSAEncryption
47:a3:b0:33:5b:ad:aa:26:43:aa:01:5f:c0:a2:96:0c:0c:e6:
bc:c4:45:2a:aa:11:27:66:76:12:57:30:f7:3a:7f:f7:4f:b9:
12:22:1d:a8:b5:ed:3e:4c:8c:77:96:3d:17:df:b2:16:d8:68:
0a:1f:1e:f0:d9:98:c1:cf:6c:a4:64:c3:1a:ad:47:65:cd:72:
68:96:b3:33:28:72:fd:da:eb:60:00:67:4d:ad:30:59:8a:0f:
2d:f1:c5:8d:bb:20:ba:23:5c:c1:db:c3:ae:e4:99:eb:22:12:
3f:37:8d:95:6e:2c:2b:60:65:90:90:d1:76:48:68:7d:58:40:
cc:1d:e0:cb:2e:d3:d1:e9:6a:9e:b7:fa:51:91:18:e0:c1:6e:
6f:50:84:63:e6:be:27:74:c8:00:a9:33:9e:c8:c0:fb:4c:40:
e0:b8:0c:be:1c:22:f6:9f:fa:f9:7f:ad:e8:00:1b:e0:78:c8:
e8:fc:86:5b:9c:5a:e3:30:e7:33:32:47:4d:cb:f2:a5:cb:47:
b9:a4:f8:12:b7:af:34:2f:02:e6:9e:13:54:82:45:f8:da:73:
21:bf:32:50:2e:ae:17:45:7d:81:de:ec:1b:d6:61:8a:80:02:
30:98:d2:e9:98:1a:e1:bc:f8:8b:de:76:43:7d:d5:62:e8:ea:
8e:92:f6:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:18 2023 by rpki-client on console-ams.rpki-client.org