Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/RHKFZNo9Nm-OuWY9cazBRzutUjc.roa
File: RHKFZNo9Nm-OuWY9cazBRzutUjc.roa (raw, json)
Hash identifier: lTGVyCsn1e2lt1xD+GBOdqOrl8l1K2WOlpHgXeTRnJM=
Subject key identifier: 44:72:85:64:DA:3D:36:6F:8E:B9:66:3D:71:AC:C1:47:3B:AD:52:37
Certificate issuer: /CN=7c3c39d1899e699bf5177418ee381489edff4380
Certificate serial: 1AE80D03
Authority key identifier: 7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/RHKFZNo9Nm-OuWY9cazBRzutUjc.roa
Signing time: Wed 02 Mar 2022 23:00:50 +0000
ROA not before: Wed 02 Mar 2022 23:00:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 185.18.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 451415299 (0x1ae80d03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3c39d1899e699bf5177418ee381489edff4380
Validity
Not Before: Mar 2 23:00:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=44728564da3d366f8eb9663d71acc1473bad5237
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b6:8f:be:88:c8:3a:07:eb:d7:e1:8b:30:ab:
7b:62:cb:75:5b:c8:1d:65:e0:98:90:26:53:9f:6d:
a0:a2:a1:1b:9b:d3:53:c7:cd:96:ea:74:59:04:89:
8e:bc:03:8a:ed:d5:c4:7c:f4:9a:7b:bd:08:f3:cd:
ca:7a:bf:65:31:2d:b5:58:4a:3f:01:90:c6:be:1d:
ec:ab:e2:27:4a:4e:5b:04:f6:41:40:28:9e:32:a9:
2f:8a:a1:be:8c:94:70:77:d7:2f:de:9b:55:a4:da:
25:0b:90:b2:ee:25:2f:ca:db:eb:44:86:91:29:c1:
68:16:1c:20:52:d8:66:d5:af:c7:ea:44:b5:ed:07:
fc:c8:d5:b9:d8:bb:38:e9:00:8a:eb:c7:bb:02:37:
a0:16:8f:8a:ed:ce:26:8f:44:94:e6:57:7d:ee:a4:
8b:3f:da:c8:12:05:63:64:b6:52:a9:fb:71:c1:f1:
71:58:9f:27:f9:8e:ed:0a:21:ab:d3:76:77:ab:64:
64:85:e2:1d:cd:0f:34:cc:21:c7:3a:b8:32:9e:85:
38:15:b8:61:a2:93:04:34:66:95:2a:79:33:85:07:
9a:12:13:b0:50:01:1f:1c:aa:0f:0f:27:f3:d6:7a:
52:75:90:54:50:35:78:0e:a3:6f:73:ca:d3:b7:c8:
93:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:72:85:64:DA:3D:36:6F:8E:B9:66:3D:71:AC:C1:47:3B:AD:52:37
X509v3 Authority Key Identifier:
keyid:7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/RHKFZNo9Nm-OuWY9cazBRzutUjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/fDw50YmeaZv1F3QY7jgUie3_Q4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.18.122.0/24
Signature Algorithm: sha256WithRSAEncryption
44:e8:80:5f:05:de:14:79:e7:c1:50:a3:20:4c:80:81:66:7a:
06:3b:69:11:37:12:50:06:2a:00:62:61:f3:ba:aa:97:10:54:
41:86:7c:62:6d:2e:25:ae:67:0b:ff:0e:7a:1b:55:42:09:51:
7c:38:76:a5:30:5e:30:53:83:98:c2:ab:8e:22:97:bd:8b:ea:
45:26:b5:ae:18:4c:1a:f8:ad:45:94:58:50:63:94:11:1c:f7:
3f:56:13:b8:aa:76:c0:09:e2:d9:a3:b7:49:2a:f3:bd:e6:1e:
c6:15:f8:4c:61:5e:15:0b:66:e1:10:3f:c8:4b:46:70:86:ac:
b9:b1:9a:c3:d8:9c:72:1f:e4:29:d6:7b:09:12:b2:80:c6:cf:
b7:64:a7:3c:f5:23:5d:bd:0d:dd:d0:ad:0e:80:dc:d6:a4:2b:
7f:42:a4:39:be:81:0a:20:d1:b7:7f:f3:11:e8:bc:ff:28:9b:
17:f9:bb:07:f9:29:a8:0c:5a:8f:d6:6f:df:da:a7:eb:ef:cb:
d6:ae:e4:33:99:81:5e:79:7e:85:31:be:dd:12:9f:5d:94:9f:
d9:10:eb:58:15:12:b7:4f:af:09:c2:40:57:df:1c:69:66:ca:
4f:47:d7:50:22:4b:9e:7b:e4:68:b0:a6:21:33:59:bc:fa:60:
6e:e3:fd:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:31 2023 by rpki-client on console-fra.rpki-client.org