Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/X_dqz70dAe_LhYsLwXl_HvuBXFY.roa
File: X_dqz70dAe_LhYsLwXl_HvuBXFY.roa (raw, json)
Hash identifier: 3PN8INAqVtX+YhiJUyMnBnllQ6ksqtMPKTmyr39DdoU=
Subject key identifier: 5F:F7:6A:CF:BD:1D:01:EF:CB:85:8B:0B:C1:79:7F:1E:FB:81:5C:56
Certificate issuer: /CN=7c3c39d1899e699bf5177418ee381489edff4380
Certificate serial: 1B5474F6
Authority key identifier: 7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/X_dqz70dAe_LhYsLwXl_HvuBXFY.roa
Signing time: Mon 18 Apr 2022 13:10:02 +0000
ROA not before: Mon 18 Apr 2022 13:10:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 185.27.176.0/23 maxlen: 24
185.18.120.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 458519798 (0x1b5474f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3c39d1899e699bf5177418ee381489edff4380
Validity
Not Before: Apr 18 13:10:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ff76acfbd1d01efcb858b0bc1797f1efb815c56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:19:73:40:e0:11:60:68:6d:ce:07:04:f2:23:
d8:9f:c9:b5:da:e2:ad:a5:71:bd:cd:cd:c7:d1:87:
61:8c:c3:6f:c6:b3:fc:cd:8c:46:2e:f7:ae:44:e6:
58:57:34:99:ba:ce:4f:dd:21:e4:0c:cb:5b:ee:87:
de:5c:a5:1e:03:01:b4:f0:87:3f:47:b8:b7:ed:cc:
99:de:3e:80:c4:1a:c4:c7:43:8c:7e:d0:48:e9:31:
64:16:0c:6f:8b:f6:b3:22:cd:19:04:52:31:7a:59:
31:d8:b7:4c:55:fb:2f:28:80:91:c1:62:da:7f:97:
6e:0e:c8:9d:86:41:88:46:1c:17:68:a7:97:45:e1:
ce:44:f1:61:56:9c:c8:58:66:55:a3:4b:f2:ea:18:
1e:17:17:60:47:87:a7:c1:8a:bb:c8:af:1e:b4:f0:
75:24:5a:30:62:14:75:d8:a3:57:d1:92:ba:78:a8:
e7:5f:25:41:2f:88:ed:75:f8:8e:4c:c0:92:ab:8f:
4b:93:fc:04:af:47:b2:bf:a5:1f:b9:32:db:ed:74:
6b:d7:5c:6d:5d:15:86:80:3c:e5:d6:c6:c2:94:a2:
f2:ab:42:2f:b6:bc:62:63:d3:c7:34:1b:55:ee:25:
45:6a:fb:45:21:d7:03:bb:1c:3d:33:d1:84:c7:c0:
cb:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:F7:6A:CF:BD:1D:01:EF:CB:85:8B:0B:C1:79:7F:1E:FB:81:5C:56
X509v3 Authority Key Identifier:
keyid:7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/X_dqz70dAe_LhYsLwXl_HvuBXFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/fDw50YmeaZv1F3QY7jgUie3_Q4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.18.120.0/23
185.27.176.0/23
Signature Algorithm: sha256WithRSAEncryption
33:4d:bc:c7:8e:93:2d:ef:97:b0:40:d9:32:93:e8:c9:85:71:
0e:41:f7:90:e9:24:db:23:57:38:a8:15:0e:f0:5a:24:3b:93:
bc:aa:78:10:d5:93:40:da:de:82:36:e7:bd:4f:fa:b3:e7:63:
5f:65:69:19:6f:80:b0:cd:9e:90:f1:a6:4f:11:49:e0:1b:0f:
84:ef:e9:93:2a:ea:9d:83:e2:92:c3:a2:c3:ed:6d:8b:4c:e6:
e2:8f:16:d5:79:21:c4:f2:a7:62:4e:37:84:34:05:bf:4f:89:
5f:87:c6:0d:25:3f:c0:e8:97:6d:ae:7e:86:ec:b3:61:99:73:
bf:66:b1:bc:fc:1d:3c:f1:3e:95:fc:70:ef:09:83:3b:0b:96:
c2:f6:9e:f3:e9:19:5b:04:30:a5:51:76:62:44:dd:83:0d:b5:
c8:81:77:bf:de:97:61:59:72:52:52:b8:0e:85:1b:8e:7d:4c:
8e:a6:a9:29:1e:61:d5:b1:94:96:c3:fc:bf:06:3a:18:ba:7e:
e0:bd:4e:5b:21:64:50:2b:e2:88:47:94:dc:52:c8:25:b9:81:
83:6d:45:08:06:d3:ec:4b:ba:84:42:ec:93:7c:56:a5:3f:33:
70:4f:f8:8c:e3:da:14:e8:04:8c:7b:50:88:95:c5:8b:ca:d3:
57:87:d9:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:31 2023 by rpki-client on console-fra.rpki-client.org