Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/hGUzJYBUl7otk-Ono56vkWRCTC8.roa
File: hGUzJYBUl7otk-Ono56vkWRCTC8.roa (raw, json)
Hash identifier: GPSaBNH/d3dxWb0+uENmZbNI+JbHJwoF9dM9FzJx+qg=
Subject key identifier: 84:65:33:25:80:54:97:BA:2D:93:E3:A7:A3:9E:AF:91:64:42:4C:2F
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 18C06A3D
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/hGUzJYBUl7otk-Ono56vkWRCTC8.roa
Signing time: Tue 28 Jun 2022 13:12:02 +0000
ROA not before: Tue 28 Jun 2022 13:12:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204496
IP address blocks: 37.18.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 415263293 (0x18c06a3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jun 28 13:12:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84653325805497ba2d93e3a7a39eaf9164424c2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e7:17:32:bb:05:f9:0f:84:84:84:08:5a:7b:
4b:35:ba:1f:08:fe:b3:1f:8d:39:58:ba:da:02:28:
d4:2d:6a:f8:a9:18:ec:9c:cb:47:17:c8:3c:22:9f:
26:67:08:d1:b5:5a:16:0a:f0:9f:85:07:ad:03:de:
dc:6e:aa:36:99:45:96:62:ba:2e:e0:6e:c7:0f:c4:
ea:41:a4:dd:29:77:97:33:75:c8:13:c4:b3:e9:9b:
63:48:2c:b5:1f:68:ae:9c:ec:2e:0e:05:b2:c8:d7:
34:58:a9:03:aa:f2:ff:32:2a:92:70:8c:8a:35:dd:
f4:e1:ba:f1:76:f1:ed:13:32:96:1c:3b:d0:e2:d6:
30:79:02:c8:d1:4e:d7:56:0d:72:56:da:ef:c2:8e:
0a:66:16:0a:0e:70:09:3c:f7:b9:31:a5:b9:a6:85:
7e:f2:b5:a4:79:59:fb:b0:33:1c:25:60:78:44:e5:
35:a1:2f:67:da:a4:be:47:0c:bf:72:18:df:30:7d:
b0:68:46:4d:c2:56:05:0f:fd:d6:66:7e:bf:ed:dd:
e5:38:21:fb:bf:80:96:8a:0f:9a:06:74:63:12:cf:
80:83:ab:ea:88:00:f8:ad:12:d4:ea:f6:8a:1a:0a:
f8:66:79:f0:e7:7c:f9:19:1e:42:8a:71:e0:6d:36:
e1:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:65:33:25:80:54:97:BA:2D:93:E3:A7:A3:9E:AF:91:64:42:4C:2F
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/hGUzJYBUl7otk-Ono56vkWRCTC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.59.0/24
Signature Algorithm: sha256WithRSAEncryption
72:9d:6d:5a:65:09:80:42:1c:48:85:8f:43:56:ae:a9:72:b8:
d1:5c:1a:83:18:ee:c9:d0:d5:7a:c6:7a:73:3d:82:83:8b:24:
a6:cc:ec:53:44:d0:00:6c:f0:48:ff:62:03:3f:f7:f1:86:f4:
23:a0:70:83:bd:b1:0e:3f:4f:83:9c:bf:a4:78:05:ec:67:b3:
96:55:4b:39:b5:f6:7d:13:ca:71:00:be:28:16:bb:97:00:70:
90:91:34:ea:b9:62:22:99:19:6c:59:77:3d:cb:12:e7:3d:8c:
2e:46:51:4f:c2:c9:e3:5f:fd:4e:df:ac:9c:2b:8e:76:fd:ce:
0e:5e:11:31:f8:b7:ae:b0:16:e5:64:ac:0c:50:12:a0:ef:89:
1b:c3:77:80:fa:3a:dd:80:04:cb:86:37:87:9e:f4:26:81:33:
fd:65:da:1b:b0:a6:85:b3:8f:8b:de:1b:94:84:ea:e1:00:a5:
96:7c:4b:00:ab:3e:cc:6b:63:56:87:ee:0d:47:70:b6:50:63:
dc:86:3b:10:98:fb:f7:90:d4:d5:c8:d8:8c:c1:89:e5:fd:56:
cb:a7:a8:72:cf:1b:67:d9:0d:2b:28:ce:c2:8d:33:8c:46:98:
d1:da:f2:40:77:51:5e:4b:20:1f:18:cd:1e:17:a3:f3:b0:a4:
c5:1f:fb:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:32 2023 by rpki-client on console-ams.rpki-client.org