Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/gHWiY1VCdOFQCIW87CI4SeXGq00.roa
File: gHWiY1VCdOFQCIW87CI4SeXGq00.roa (raw, json)
Hash identifier: KTMtTMmpxr6bobrOGMEi3KLaYS9eUIbW1JciZjh5wIE=
Subject key identifier: 80:75:A2:63:55:42:74:E1:50:08:85:BC:EC:22:38:49:E5:C6:AB:4D
Certificate issuer: /CN=52a5c90ca928313bc70d2683bb0f64d632b273a1
Certificate serial: 01853C0985A41FF105AC4B8D2B4F3BB00B2D
Authority key identifier: 52:A5:C9:0C:A9:28:31:3B:C7:0D:26:83:BB:0F:64:D6:32:B2:73:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqXJDKkoMTvHDSaDuw9k1jKyc6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/gHWiY1VCdOFQCIW87CI4SeXGq00.roa
Signing time: Thu 22 Dec 2022 22:52:14 +0000
ROA not before: Thu 22 Dec 2022 22:52:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 185.76.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:3c:09:85:a4:1f:f1:05:ac:4b:8d:2b:4f:3b:b0:0b:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a5c90ca928313bc70d2683bb0f64d632b273a1
Validity
Not Before: Dec 22 22:52:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8075a263554274e1500885bcec223849e5c6ab4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:11:cd:9d:99:2e:75:59:be:c0:cf:e4:b5:e8:
9e:c1:71:b6:be:78:d8:2e:04:af:ae:a8:c9:1f:2c:
f8:77:b2:e7:81:80:f4:c6:5d:66:35:c1:fb:e6:66:
c0:0a:6a:e0:57:3e:96:30:45:be:d6:22:d9:5d:d1:
f1:ad:2a:13:24:24:32:a6:b0:ef:9a:3e:36:02:f6:
96:f6:3f:1e:67:b5:67:84:1b:46:55:1d:51:ea:71:
27:0e:8c:f4:d0:0e:85:e3:5a:10:62:41:1e:22:e3:
b0:6a:1a:67:f4:45:b6:3a:80:ed:db:11:0e:56:79:
b0:c4:61:73:e0:f8:15:70:7f:1f:52:f7:84:3c:11:
ff:e0:76:a9:b4:a7:79:53:e2:44:a6:7c:60:36:e7:
c2:da:dc:c9:0f:a1:4f:2c:91:d9:02:34:a7:aa:6a:
b6:b2:a7:8e:ab:59:22:80:35:a8:6c:a1:ae:cc:1b:
c5:bb:f3:f3:ca:23:0e:51:6f:a9:aa:9f:51:93:d1:
dc:b4:ad:7e:dd:fc:1f:06:76:f6:46:2e:d1:29:18:
55:67:f8:b6:2c:ca:16:f8:57:a0:83:6f:82:7b:ae:
53:4f:ea:ec:8b:2c:b4:de:d8:cf:7c:5f:aa:01:a7:
48:80:94:24:e2:c7:3b:90:a1:08:20:e3:64:59:61:
11:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:75:A2:63:55:42:74:E1:50:08:85:BC:EC:22:38:49:E5:C6:AB:4D
X509v3 Authority Key Identifier:
keyid:52:A5:C9:0C:A9:28:31:3B:C7:0D:26:83:BB:0F:64:D6:32:B2:73:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqXJDKkoMTvHDSaDuw9k1jKyc6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/gHWiY1VCdOFQCIW87CI4SeXGq00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/UqXJDKkoMTvHDSaDuw9k1jKyc6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.41.0/24
Signature Algorithm: sha256WithRSAEncryption
09:1e:2a:04:56:d4:8e:db:b7:94:36:6a:70:88:a2:94:6a:50:
49:d1:41:e7:c9:75:5a:19:5d:b2:c0:d5:f8:53:dd:fd:3a:4e:
2c:ca:46:47:84:9c:df:b4:9a:b5:1c:45:3a:46:d5:76:80:ff:
f7:a3:bf:52:03:21:02:13:97:5c:ad:6d:81:58:87:b8:d1:4c:
61:f6:6c:0b:4b:96:2f:22:d0:d5:ff:0f:0e:72:8c:28:f2:2e:
77:d5:4b:69:a6:3d:2f:a8:6b:a4:1c:27:10:17:9c:3c:8f:be:
a8:3f:ff:3d:56:be:a0:7c:01:96:f3:7c:4d:30:25:ef:ef:8e:
ae:b4:05:6a:6b:bb:d5:c7:d1:86:a2:80:70:74:e5:f7:8e:d4:
86:be:dc:ad:cb:9a:aa:5f:77:bc:16:93:77:f8:d5:ed:ad:49:
e5:e3:99:09:5d:4c:cd:35:55:7e:97:d6:0f:74:1d:60:9f:9b:
bd:26:92:d4:24:15:58:35:d8:c9:e0:7d:4d:3a:35:78:fd:1e:
54:16:96:96:8a:db:98:5c:14:ea:95:16:ee:43:11:59:e5:1a:
b4:42:dc:e5:51:85:85:f0:d4:2d:74:21:2d:15:ce:43:33:8b:
5b:39:0a:23:9a:d0:40:32:cf:19:b9:47:04:9b:77:ff:71:74:
d0:96:2a:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:25 2023 by rpki-client on console-ams.rpki-client.org