Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/V6dqGkGk5DP6sLGItTJY0e1QxOc.roa
File: V6dqGkGk5DP6sLGItTJY0e1QxOc.roa (raw, json)
Hash identifier: k8UsYK/Jf97hbiOdz/bHxsabkcY5fpD/UJgu0pl1fBw=
Subject key identifier: 57:A7:6A:1A:41:A4:E4:33:FA:B0:B1:88:B5:32:58:D1:ED:50:C4:E7
Certificate issuer: /CN=f9c9e0305cfed5794448732a8b0bd8427450d813
Certificate serial: 36F8693A
Authority key identifier: F9:C9:E0:30:5C:FE:D5:79:44:48:73:2A:8B:0B:D8:42:74:50:D8:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-cngMFz-1XlESHMqiwvYQnRQ2BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/V6dqGkGk5DP6sLGItTJY0e1QxOc.roa
Signing time: Tue 22 Feb 2022 16:36:58 +0000
ROA not before: Tue 22 Feb 2022 16:36:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396982
IP address blocks: 185.76.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 922249530 (0x36f8693a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9c9e0305cfed5794448732a8b0bd8427450d813
Validity
Not Before: Feb 22 16:36:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=57a76a1a41a4e433fab0b188b53258d1ed50c4e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:dd:b3:5e:3a:1c:4c:33:17:17:1e:b6:ec:a1:
bc:6a:e3:1e:b4:26:51:e5:38:d7:bb:7e:35:30:c1:
18:33:64:98:f2:e2:68:6f:94:51:85:9a:99:12:a5:
bb:27:48:4e:13:b4:8c:9a:ec:1d:46:64:0c:34:2f:
a1:37:54:5f:71:bd:7c:21:a5:bf:d5:db:36:c7:6f:
36:7c:d4:41:16:0f:2b:04:35:d5:07:4a:79:55:c1:
70:00:7e:81:9e:9d:de:66:00:23:47:ce:7f:db:2d:
9c:00:f1:14:a3:2d:a6:67:2a:d9:3f:f8:2a:94:63:
49:a1:70:5e:76:37:35:71:bb:d3:35:bb:bc:89:d1:
7c:a0:a9:cc:ce:84:e8:1c:d9:82:62:48:9e:20:0c:
9e:50:45:0c:27:94:f1:d6:a2:1a:da:65:ce:73:39:
05:9c:14:c0:e8:86:4b:e3:74:2e:61:8f:73:1f:ca:
34:f8:29:d1:e6:d0:e1:08:7c:59:ce:a6:71:cd:3b:
29:1c:e1:bb:a2:53:21:45:e8:34:6c:29:ee:90:d7:
5d:2a:c6:ae:ad:bf:57:15:82:3f:28:2d:6f:70:08:
9f:6a:84:a9:84:cd:1b:f2:57:5e:cc:4b:e3:74:1e:
ad:f5:8b:0c:c9:e1:a5:78:f6:a3:11:db:62:bc:44:
85:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:A7:6A:1A:41:A4:E4:33:FA:B0:B1:88:B5:32:58:D1:ED:50:C4:E7
X509v3 Authority Key Identifier:
keyid:F9:C9:E0:30:5C:FE:D5:79:44:48:73:2A:8B:0B:D8:42:74:50:D8:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-cngMFz-1XlESHMqiwvYQnRQ2BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/V6dqGkGk5DP6sLGItTJY0e1QxOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/1-cngMFz-1XlESHMqiwvYQnRQ2BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.36.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:1c:11:84:cd:98:58:87:16:9d:00:d5:bc:b6:1f:3e:f6:7b:
10:2b:2c:c6:2b:af:8d:a8:8c:73:43:5e:ea:b7:8b:db:2e:aa:
28:f8:ed:92:9a:71:50:a0:d3:1e:a7:95:5a:5e:0d:a8:a9:32:
8d:78:a7:f8:b8:a9:27:90:ee:0b:f6:66:86:9a:41:d9:3a:37:
c9:f4:27:d9:02:12:79:a3:e8:06:66:9e:f7:e3:51:a8:b8:2e:
51:d8:d7:18:c7:68:68:92:fb:02:a9:71:30:51:9d:b9:39:5f:
98:c9:18:13:af:e8:7a:cd:24:ec:a2:c0:01:5d:40:5f:2c:82:
5c:13:cf:90:5b:e8:40:76:a3:a7:2e:a4:20:24:32:56:98:63:
81:d9:05:52:fe:46:cb:69:7d:bd:e2:b9:f4:35:80:d4:6d:1e:
42:d6:0a:9f:b5:02:af:3f:38:c4:02:36:ff:39:a0:e9:19:5c:
68:1c:e0:a1:81:1a:08:38:bf:ce:e7:35:f2:28:9b:3b:91:0d:
9b:68:06:bc:83:aa:0d:fd:87:f4:89:0c:29:2b:5f:a8:27:cc:
0d:d2:44:4b:b2:d1:7f:55:53:23:14:52:1f:dd:f4:c2:67:35:
de:79:dd:d4:36:b3:c2:69:90:0c:4f:ba:f8:90:5a:4a:1b:54:
d9:36:59:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:10 2024 by rpki-client on console-ams.rpki-client.org