Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/gCKx8c7L3IfiwysXw9hBVjHWwc8.roa
File: gCKx8c7L3IfiwysXw9hBVjHWwc8.roa (raw, json)
Hash identifier: OJ59C/0v37SvwG4OiIieHJToRhBRXueADHAR7VVvyg0=
Subject key identifier: 80:22:B1:F1:CE:CB:DC:87:E2:C3:2B:17:C3:D8:41:56:31:D6:C1:CF
Certificate issuer: /CN=f9c9e0305cfed5794448732a8b0bd8427450d813
Certificate serial: 0183CC727459216646B3BC79A4ED86F27FB5
Authority key identifier: F9:C9:E0:30:5C:FE:D5:79:44:48:73:2A:8B:0B:D8:42:74:50:D8:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-cngMFz-1XlESHMqiwvYQnRQ2BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/gCKx8c7L3IfiwysXw9hBVjHWwc8.roa
Signing time: Wed 12 Oct 2022 13:46:36 +0000
ROA not before: Wed 12 Oct 2022 13:46:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8075
IP address blocks: 185.76.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cc:72:74:59:21:66:46:b3:bc:79:a4:ed:86:f2:7f:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9c9e0305cfed5794448732a8b0bd8427450d813
Validity
Not Before: Oct 12 13:46:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8022b1f1cecbdc87e2c32b17c3d8415631d6c1cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:91:8b:0d:c6:52:b8:74:aa:a6:34:30:dc:72:
73:f6:a3:1d:8a:db:41:ac:64:37:8a:1d:be:e8:9e:
ee:13:6a:76:5d:70:8a:f3:9e:1c:84:bc:32:3c:3a:
26:58:f1:c8:31:43:2e:05:8d:fe:29:12:d4:d3:44:
7e:5a:9f:45:cd:94:52:31:a9:9f:00:7c:41:53:31:
41:5e:06:e5:ca:72:bd:f2:c0:e7:fd:66:f8:61:dd:
44:cc:69:31:46:cd:1a:5c:c0:56:64:50:69:35:a0:
f6:1e:b3:c8:02:83:0b:1c:03:d1:11:db:07:13:00:
88:3a:6c:6c:11:8b:bf:2f:aa:19:6d:e3:1c:c7:f6:
da:0a:a7:b5:95:4a:01:21:d5:97:11:24:40:df:c2:
37:bf:a8:26:e4:a6:a7:70:b6:d6:f9:30:fa:bd:da:
b9:98:a4:f4:e7:04:36:c4:f4:ec:8c:6e:81:ac:94:
b8:81:97:4c:80:5d:42:37:40:e6:b8:66:8e:a7:8e:
00:b5:06:09:b3:e9:b4:fd:9a:05:09:c3:5c:60:22:
96:e3:49:c6:6b:de:6e:42:b4:e6:ca:07:32:17:d3:
32:46:66:5a:32:54:0d:c3:2f:c5:94:b6:6d:6e:61:
ea:43:f2:ce:b8:de:0e:74:67:57:e2:e9:41:4a:44:
61:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:22:B1:F1:CE:CB:DC:87:E2:C3:2B:17:C3:D8:41:56:31:D6:C1:CF
X509v3 Authority Key Identifier:
keyid:F9:C9:E0:30:5C:FE:D5:79:44:48:73:2A:8B:0B:D8:42:74:50:D8:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-cngMFz-1XlESHMqiwvYQnRQ2BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/gCKx8c7L3IfiwysXw9hBVjHWwc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/1-cngMFz-1XlESHMqiwvYQnRQ2BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.37.0/24
Signature Algorithm: sha256WithRSAEncryption
38:12:95:8b:d3:5a:29:53:d1:d8:02:6e:0d:70:6c:6d:9e:14:
97:37:2d:d1:04:e0:50:62:5f:ac:9f:06:e4:36:80:f9:b0:6d:
91:9c:db:af:76:f4:2f:e4:a1:e8:da:51:1f:d6:a1:38:9e:d0:
e2:ca:c4:4b:8f:fb:ad:04:1d:99:51:58:ec:8c:7f:0d:b4:6b:
4c:08:e1:e6:ad:98:1a:45:ac:16:1c:0b:65:8b:93:3e:23:52:
cc:82:6f:2e:86:1a:aa:33:04:94:4b:f4:3d:15:22:7e:14:6b:
d5:c2:5f:87:b6:7a:e5:8c:86:47:d9:32:6b:21:77:d5:72:84:
ce:4b:d3:40:4c:4f:2f:7f:ae:91:db:02:28:e8:3c:33:5e:55:
99:2d:13:7a:0f:68:ab:6c:0b:51:60:6d:00:55:7e:94:ef:38:
98:53:c4:81:c2:4e:65:45:c5:1c:d6:88:8d:2f:3e:5c:d6:7b:
f8:48:12:d7:14:f7:fe:ac:d9:32:8c:88:29:b2:46:56:25:a3:
bb:d5:dd:ad:9f:88:3d:65:4e:64:b0:fb:1a:8a:b2:2d:4c:f4:
24:96:85:7b:1d:3e:0f:e8:d4:0c:95:89:38:6b:19:07:b5:9f:
45:32:8a:45:8b:58:cc:02:80:a6:07:7e:a4:ff:bb:92:d4:17:
dc:8e:5b:6b
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYPMcnRZIWZGs7x5pO2G8n+1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY5YzllMDMwNWNmZWQ1Nzk0NDQ4NzMyYThiMGJkODQyNzQ1
MGQ4MTMwHhcNMjIxMDEyMTM0NjM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MDIyYjFmMWNlY2JkYzg3ZTJjMzJiMTdjM2Q4NDE1NjMxZDZjMWNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1JGLDcZSuHSqpjQw3HJz9qMdittB
rGQ3ih2+6J7uE2p2XXCK854chLwyPDomWPHIMUMuBY3+KRLU00R+Wp9FzZRSMamf
AHxBUzFBXgblynK98sDn/Wb4Yd1EzGkxRs0aXMBWZFBpNaD2HrPIAoMLHAPREdsH
EwCIOmxsEYu/L6oZbeMcx/baCqe1lUoBIdWXESRA38I3v6gm5KancLbW+TD6vdq5
mKT05wQ2xPTsjG6BrJS4gZdMgF1CN0DmuGaOp44AtQYJs+m0/ZoFCcNcYCKW40nG
a95uQrTmygcyF9MyRmZaMlQNwy/FlLZtbmHqQ/LOuN4OdGdX4ulBSkRhzwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFIAisfHOy9yH4sMrF8PYQVYx1sHPMB8GA1UdIwQY
MBaAFPnJ4DBc/tV5REhzKosL2EJ0UNgTMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1jbmdNRnotMVhsRVNITXFpd3ZZUW5SUTJCTS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzcvMzYxOTBkLTFjNmMtNDhjNi1hNDE0
LTJmYmIyMDhhZDE4Mi8xL2dDS3g4YzdMM0lmaXd5c1h3OWhCVmpIV3djOC5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMzcvMzYxOTBkLTFjNmMtNDhjNi1hNDE0LTJmYmIyMDhhZDE4
Mi8xLzEtY25nTUZ6LTFYbEVTSE1xaXd2WVFuUlEyQk0uY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC5TCUw
DQYJKoZIhvcNAQELBQADggEBADgSlYvTWilT0dgCbg1wbG2eFJc3LdEE4FBiX6yf
BuQ2gPmwbZGc26929C/koejaUR/WoTie0OLKxEuP+60EHZlRWOyMfw20a0wI4eat
mBpFrBYcC2WLkz4jUsyCby6GGqozBJRL9D0VIn4Ua9XCX4e2euWMhkfZMmshd9Vy
hM5L00BMTy9/rpHbAijoPDNeVZktE3oPaKtsC1FgbQBVfpTvOJhTxIHCTmVFxRzW
iI0vPlzWe/hIEtcU9/6s2TKMiCmyRlYlo7vV3a2fiD1lTmSw+xqKsi1M9CSWhXsd
Pg/o1AyViThrGQe1n0UyikWLWMwCgKYHfqT/u5LUF9yOW2s=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:30 2024 by rpki-client on console-fra.rpki-client.org