Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/nXSxOBfi5GZLWYSozx7CMLD01fU.roa
File: nXSxOBfi5GZLWYSozx7CMLD01fU.roa (raw, json)
Hash identifier: ONT9fdpOGvX7Sz0nbMYR5YZruFgEZTnf1KIBMukPNkM=
Subject key identifier: 9D:74:B1:38:17:E2:E4:66:4B:59:84:A8:CF:1E:C2:30:B0:F4:D5:F5
Certificate issuer: /CN=7c3c39d1899e699bf5177418ee381489edff4380
Certificate serial: 1AE6F482
Authority key identifier: 7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/nXSxOBfi5GZLWYSozx7CMLD01fU.roa
Signing time: Wed 02 Mar 2022 23:00:49 +0000
ROA not before: Wed 02 Mar 2022 23:00:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.18.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 451343490 (0x1ae6f482)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3c39d1899e699bf5177418ee381489edff4380
Validity
Not Before: Mar 2 23:00:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d74b13817e2e4664b5984a8cf1ec230b0f4d5f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e9:13:2b:d9:d8:75:bf:0e:e2:e0:43:f4:73:
b6:b6:28:fc:a8:c2:3b:91:d7:af:81:ed:67:c4:9a:
14:dd:ce:53:f4:eb:1d:7f:80:69:0c:a5:1f:91:61:
91:b0:1b:2c:93:d5:3a:4a:e6:0b:f3:49:99:40:37:
8e:78:33:17:ff:bb:dd:ce:0c:01:05:ad:e7:e9:9d:
98:14:f0:58:e1:a8:e7:e8:5c:8a:42:08:12:6c:0e:
7f:19:59:07:62:23:f4:8a:78:57:91:fc:59:78:5a:
fc:89:69:8b:ce:93:15:3c:5c:15:6d:5f:ea:9c:b5:
91:11:2f:6f:4b:18:b4:7e:46:4b:88:1b:26:46:95:
71:23:95:b3:3c:e4:31:70:6f:8f:2e:30:55:10:c0:
73:e6:99:39:d5:b6:dd:a8:6f:cb:50:13:55:ea:92:
43:e3:43:7d:6a:5f:d6:49:ad:b0:cc:a6:7e:01:5a:
dc:a8:44:58:7d:4b:90:4d:a6:bd:d1:cc:22:6c:b3:
a1:d0:f2:2c:b9:06:c2:bb:b8:03:ee:62:3d:27:b8:
eb:3c:ad:d7:d8:ca:17:b7:58:d1:39:54:5b:7b:e5:
90:cb:8a:2c:9b:23:a1:1f:38:4a:a7:2e:22:3c:cb:
eb:d2:c9:90:a9:db:e6:6e:76:b6:94:48:1e:06:4c:
94:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:74:B1:38:17:E2:E4:66:4B:59:84:A8:CF:1E:C2:30:B0:F4:D5:F5
X509v3 Authority Key Identifier:
keyid:7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/nXSxOBfi5GZLWYSozx7CMLD01fU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/fDw50YmeaZv1F3QY7jgUie3_Q4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.18.123.0/24
Signature Algorithm: sha256WithRSAEncryption
04:92:d8:a8:fd:7b:51:bd:dc:41:08:a4:41:ab:52:ed:c2:ec:
9e:47:a5:47:26:e3:26:b8:db:99:f9:19:db:cb:19:63:ae:0d:
fc:67:c6:ba:fe:56:5b:7c:66:ce:9e:4f:c0:64:df:81:aa:16:
ba:75:f1:e2:d7:1d:c8:39:3f:c6:09:09:0c:6e:56:0b:52:4e:
85:a1:00:8d:f3:3b:b0:2d:c7:bb:2c:e0:60:d5:b3:f0:1e:82:
76:78:dd:69:01:44:de:a6:c0:86:d4:ea:90:6d:8e:60:f4:59:
42:73:a7:f9:96:28:f5:9d:0c:db:5a:b6:66:a8:c0:b3:78:70:
4d:d0:ac:5f:6e:e8:31:f3:ce:a2:c3:ef:64:70:d1:7f:87:26:
f9:b6:90:34:3a:75:ba:e8:ae:48:90:b5:0f:ad:79:89:b2:4b:
94:53:7f:d7:ab:4e:e4:38:71:b8:1f:0a:10:fe:86:b1:6c:14:
2c:9c:2a:47:a9:9c:78:8e:50:c6:7b:86:6a:07:70:31:eb:01:
09:b1:ca:63:e1:93:af:b1:6a:c8:a5:d0:b5:5d:7f:76:75:fd:
41:36:ba:86:45:b7:02:b6:7c:2c:73:95:67:66:ac:61:4f:55:
f0:9e:8f:bf:54:b8:c5:0c:2e:ab:05:8d:05:9e:11:bc:20:79:
4e:5e:30:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:18 2023 by rpki-client on console-ams.rpki-client.org