Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/urt-zFYqlRHHm5zPPrIRV2phH6o.roa
File: urt-zFYqlRHHm5zPPrIRV2phH6o.roa (raw, json)
Hash identifier: Lw+b0pPmorWg6a+3/66EpFZ6Ls8CUK9NDiFMtA9s6s4=
Subject key identifier: BA:BB:7E:CC:56:2A:95:11:C7:9B:9C:CF:3E:B2:11:57:6A:61:1F:AA
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 16ED9637
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/urt-zFYqlRHHm5zPPrIRV2phH6o.roa
Signing time: Sat 01 Jan 2022 12:01:46 +0000
ROA not before: Sat 01 Jan 2022 12:01:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210706
IP address blocks: 37.18.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 384669239 (0x16ed9637)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 12:01:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=babb7ecc562a9511c79b9ccf3eb211576a611faa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:46:53:cb:38:6f:a8:d5:67:32:f4:48:06:16:
00:43:8a:36:d2:c8:2c:08:95:42:ad:72:57:fc:4c:
82:b4:c4:6f:53:e5:fe:7b:e2:63:2d:9d:8e:fb:2c:
4d:5f:1d:17:07:be:58:fa:25:5e:6a:35:37:72:35:
96:ca:85:5b:fc:5a:76:59:96:df:57:3e:81:f9:24:
93:7a:76:57:f7:15:38:00:8f:88:3e:6e:e8:09:fd:
d8:a1:03:93:88:44:4e:2d:9a:d5:95:c8:29:49:fe:
b7:b5:d1:81:3f:1b:c4:09:47:a0:18:0a:80:94:bd:
f3:ca:ed:1d:80:74:c8:40:0d:a9:38:62:9d:0d:00:
eb:db:cb:23:dc:fc:83:bf:0c:03:30:89:2c:e2:14:
ed:3b:ee:2a:97:67:22:f2:99:2f:cd:63:89:16:0b:
f6:b9:ea:5a:64:51:65:27:3f:2f:8a:97:65:5c:d2:
62:a1:44:8c:f5:cf:ba:c7:ca:86:84:d8:f4:5a:86:
db:25:c0:52:d7:c6:a1:2e:a1:aa:7a:a4:d8:df:dc:
21:fa:5d:39:00:b7:f9:6e:97:b0:98:bd:a3:84:0f:
ac:3f:e6:d6:aa:50:05:c3:44:99:09:19:2e:66:f6:
54:24:33:2a:95:6d:87:1a:ff:24:5a:28:66:4b:7f:
f2:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:BB:7E:CC:56:2A:95:11:C7:9B:9C:CF:3E:B2:11:57:6A:61:1F:AA
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/urt-zFYqlRHHm5zPPrIRV2phH6o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.18.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:38:91:4b:60:1c:a9:3a:ee:84:d9:66:af:59:b5:82:a7:fc:
6f:a1:af:c5:a4:0e:7b:e6:e8:fe:cb:62:a4:8c:50:95:e1:02:
17:7f:d4:d3:79:f7:c3:30:b2:24:5f:81:07:8a:70:c6:29:8d:
2e:42:86:06:cc:81:47:9e:bb:32:9a:ac:30:c8:99:64:28:5e:
5c:66:46:7d:a5:93:0b:18:4c:69:d9:05:57:1a:c4:a0:47:d3:
43:07:47:73:fa:fe:7d:8d:81:32:ef:b4:1d:5e:d1:58:86:d3:
f1:b7:f9:1c:11:dc:08:e6:af:5a:cb:9c:26:16:d6:e1:f9:79:
7b:13:06:62:65:5b:d1:d7:d4:f3:1e:80:94:4e:5f:eb:28:4d:
90:6e:75:01:07:6d:90:49:0f:08:ae:95:f4:8c:ea:93:ed:6c:
18:23:11:c3:83:d2:73:15:f8:ca:1b:7b:d0:02:d6:80:82:98:
27:ea:b2:54:08:f9:94:2e:e0:b6:db:cb:83:7e:b7:ef:ae:d7:
2b:2e:fa:f5:60:ae:de:35:22:cc:8d:cc:53:b9:e9:d7:b0:25:
d3:92:a6:84:b7:45:8a:79:47:36:44:62:e3:6c:e3:ba:9f:5c:
43:b0:0f:04:d7:c2:66:3f:64:d8:15:51:e7:f2:25:e8:ee:1d:
49:80:3c:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org