Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/0BjQVMfv2B0hSSHJpL0DtjX2GXc.roa
File: 0BjQVMfv2B0hSSHJpL0DtjX2GXc.roa (raw, json)
Hash identifier: 89DDbs/cqHbYdXWSuidOnpAtusDn5aPtYeE4o3RvMcI=
Subject key identifier: D0:18:D0:54:C7:EF:D8:1D:21:49:21:C9:A4:BD:03:B6:35:F6:19:77
Certificate issuer: /CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Certificate serial: 05DED3B6
Authority key identifier: 6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/0BjQVMfv2B0hSSHJpL0DtjX2GXc.roa
Signing time: Sat 01 Jan 2022 11:02:58 +0000
ROA not before: Sat 01 Jan 2022 11:02:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33905
IP address blocks: 2.18.48.0/24 maxlen: 24
2.18.49.0/24 maxlen: 24
2.18.50.0/24 maxlen: 24
2.18.51.0/24 maxlen: 24
2.18.52.0/24 maxlen: 24
2.18.53.0/24 maxlen: 24
2.18.54.0/24 maxlen: 24
2.18.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98489270 (0x5ded3b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Validity
Not Before: Jan 1 11:02:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d018d054c7efd81d214921c9a4bd03b635f61977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:57:32:e9:a8:45:c1:0e:36:8c:f8:3a:c5:49:
df:5a:39:d4:c4:a9:42:67:c8:1e:1c:f5:94:6d:4b:
cd:7f:f8:ff:45:98:8e:50:87:36:71:8e:3a:d1:2a:
06:42:65:4f:ca:14:99:b8:34:53:c7:f5:a9:c6:c9:
f8:2d:b7:06:29:00:b4:50:43:c2:a9:d8:cd:a8:66:
f0:0e:f5:25:0d:ca:a5:71:af:51:a1:7c:a2:a5:80:
77:92:e9:4e:c3:02:e6:da:ac:a1:dc:32:e9:e6:a8:
f5:cb:4e:94:2a:c0:76:0f:df:a8:86:3c:be:2c:f7:
68:46:1b:4c:33:7a:0a:40:96:33:8d:7f:f9:9b:24:
8a:cf:82:c5:1c:dc:65:d7:a3:b8:4d:46:a6:33:36:
f8:a4:6f:8d:1c:f5:f0:8f:d2:a8:b4:c1:ce:23:16:
22:9c:57:6a:9d:56:1f:f2:63:c9:01:99:d1:06:6d:
9c:5b:d4:f7:79:9b:27:bb:a6:bc:b9:59:f7:1b:09:
5b:a9:fd:5a:fd:3e:5d:39:08:88:8d:63:db:8c:1b:
45:a4:21:aa:c1:94:cf:0f:df:35:a0:b1:80:a7:bf:
5d:9c:8d:96:6b:6c:c4:e9:95:a5:13:4e:1f:b2:91:
36:63:32:cc:6d:6b:19:7f:b9:c3:c2:9b:27:61:77:
e9:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:18:D0:54:C7:EF:D8:1D:21:49:21:C9:A4:BD:03:B6:35:F6:19:77
X509v3 Authority Key Identifier:
keyid:6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/0BjQVMfv2B0hSSHJpL0DtjX2GXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.18.48.0/21
Signature Algorithm: sha256WithRSAEncryption
1d:90:94:3a:3a:6b:b2:17:c9:f4:ec:b7:c4:fe:93:28:72:2d:
74:32:f9:37:fa:da:60:72:9a:9d:7a:77:19:c6:e0:13:da:2d:
63:4f:d2:8c:aa:48:e8:c6:06:8e:33:78:62:9c:71:7f:a4:d8:
a5:c5:8c:82:96:6e:cb:3d:9b:c8:62:66:90:db:0c:7d:7d:30:
b8:5c:37:3c:06:b7:81:76:f5:37:9f:af:09:0d:a5:ea:1d:b2:
79:19:22:8d:28:3e:97:df:f6:3f:09:0c:6d:e3:88:7e:e0:14:
d9:f2:a8:31:f5:67:ea:8c:13:06:f5:92:9d:38:ac:65:48:0b:
12:90:ea:a6:09:a5:8d:50:2a:24:a6:40:17:70:e5:c7:55:39:
26:70:96:9a:53:6d:56:cb:94:59:8e:83:b3:14:e7:01:64:c8:
a8:16:98:f2:dd:d8:07:d6:93:c7:0d:38:88:c0:38:92:bb:b4:
8d:9a:f9:25:d3:97:e6:d3:24:e8:6c:42:4f:58:80:b5:9c:e1:
f6:09:8f:bc:71:71:86:33:4f:b8:cf:f9:29:fb:8e:e3:07:a3:
6b:b8:59:57:89:e2:e3:b2:98:cf:79:30:09:78:fd:ba:44:eb:
5e:38:2f:3f:83:45:16:f7:3e:ad:ea:42:ca:f0:88:1a:d5:e7:
6b:d5:4e:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:41 2023 by rpki-client on console-fra.rpki-client.org