Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/k-oUWgUbLqVkfvK_VVMt_0ge6Uk.roa
File: k-oUWgUbLqVkfvK_VVMt_0ge6Uk.roa (raw, json)
Hash identifier: riSrooxmIPfwri+Q+o1BOxZIGnVkY1X4ZkYrcIvqBsU=
Subject key identifier: 93:EA:14:5A:05:1B:2E:A5:64:7E:F2:BF:55:53:2D:FF:48:1E:E9:49
Certificate issuer: /CN=7c3c39d1899e699bf5177418ee381489edff4380
Certificate serial: 0184450115B8651CF9AE987020B78A0C7DDD
Authority key identifier: 7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/k-oUWgUbLqVkfvK_VVMt_0ge6Uk.roa
Signing time: Fri 04 Nov 2022 23:36:49 +0000
ROA not before: Fri 04 Nov 2022 23:36:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.18.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:45:01:15:b8:65:1c:f9:ae:98:70:20:b7:8a:0c:7d:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3c39d1899e699bf5177418ee381489edff4380
Validity
Not Before: Nov 4 23:36:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93ea145a051b2ea5647ef2bf55532dff481ee949
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:72:00:6b:85:aa:c6:99:7f:78:0d:6c:4a:73:
2b:6f:16:ae:57:3f:c7:0b:55:53:54:88:34:27:31:
d0:54:8a:4e:4f:14:c5:46:d4:52:6c:14:32:68:6d:
05:c5:aa:e0:82:98:e6:48:38:de:3d:d1:cf:51:d6:
2e:53:79:c3:0d:81:24:c3:0c:2a:62:91:a9:e6:c9:
f6:9d:41:68:36:3f:f9:51:ea:dc:8a:6a:d5:6b:08:
55:81:c5:72:84:91:82:01:2b:cd:44:e1:fd:9d:8b:
b7:cb:1e:14:7e:c3:47:94:62:4c:03:9d:e9:3b:94:
a4:b9:fc:6a:70:da:94:ea:a7:be:34:dd:dc:89:37:
51:a1:46:4f:81:b9:99:2b:13:63:34:f7:61:71:fc:
4f:3e:9d:01:10:ad:8c:a2:df:0c:d4:d4:18:ae:29:
51:fa:51:52:c9:05:04:54:79:e8:f7:6a:6a:09:64:
cc:5f:75:3c:01:37:1f:ab:e0:d1:5e:2e:31:09:ce:
7e:59:28:0c:97:a1:8f:5d:95:c9:79:88:0a:13:74:
c9:de:74:5f:0e:a3:23:49:8e:73:6e:d3:39:20:6f:
8b:f4:10:61:da:2e:c6:92:13:a1:5f:fa:86:cb:c9:
c2:70:7d:df:12:88:a1:6b:b8:8b:9b:dc:20:60:6a:
cf:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:EA:14:5A:05:1B:2E:A5:64:7E:F2:BF:55:53:2D:FF:48:1E:E9:49
X509v3 Authority Key Identifier:
keyid:7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/k-oUWgUbLqVkfvK_VVMt_0ge6Uk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/fDw50YmeaZv1F3QY7jgUie3_Q4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.18.123.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:7c:c8:22:f0:97:59:e4:c5:0f:67:4a:30:c1:b9:78:8d:ba:
7b:2d:d3:3a:cd:56:9e:e7:d6:a8:a6:a7:d4:db:65:f4:32:5b:
5a:e9:f8:5b:43:a4:f7:7b:e2:a9:51:11:81:f8:4c:65:64:d8:
75:f7:d2:75:eb:38:4e:97:eb:59:ed:cc:1b:46:36:5d:ad:ff:
b0:1c:4d:5d:10:e6:a2:5d:22:aa:a0:7a:32:ef:ee:92:11:5c:
47:47:03:4e:0a:3e:05:c8:e3:b7:e6:90:4e:94:f0:a3:fe:82:
da:a5:89:a4:e9:26:f5:6b:3c:be:96:bd:fb:05:f5:dd:76:7f:
47:1b:8b:bc:c9:80:9d:7a:8f:7b:8e:a9:df:37:58:7b:e4:68:
81:b5:2e:7f:f3:c2:93:93:87:bd:99:4b:64:d4:7e:bd:75:ef:
16:db:df:b0:ac:22:fd:dc:4b:dd:cc:b5:50:f9:94:78:1c:16:
cc:2f:38:42:1d:ca:13:73:27:31:37:58:eb:cc:34:18:a6:6d:
75:44:08:aa:f0:67:0c:7c:8f:30:75:9e:ba:d6:e8:81:c3:de:
eb:46:86:57:41:b0:e7:d1:b1:ad:7a:ea:b1:ba:10:4a:ef:f3:
9e:a3:88:20:2f:70:70:2c:0f:52:ef:0a:1c:79:75:53:3f:24:
a0:67:9c:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:31 2023 by rpki-client on console-fra.rpki-client.org