Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/Gw5xQN6c2c5Q9t70VDOHT53D-uA.roa
File: Gw5xQN6c2c5Q9t70VDOHT53D-uA.roa (raw, json)
Hash identifier: OMt0Zu+OFaiz5+66tV9vwbmJBV/66XG62xoabl66yAI=
Subject key identifier: 1B:0E:71:40:DE:9C:D9:CE:50:F6:DE:F4:54:33:87:4F:9D:C3:FA:E0
Certificate issuer: /CN=1d65b7b7b898faaee70767d09715c436a83fcdc2
Certificate serial: 26BA8D2B
Authority key identifier: 1D:65:B7:B7:B8:98:FA:AE:E7:07:67:D0:97:15:C4:36:A8:3F:CD:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HWW3t7iY-q7nB2fQlxXENqg_zcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/Gw5xQN6c2c5Q9t70VDOHT53D-uA.roa
Signing time: Sat 01 Jan 2022 15:02:52 +0000
ROA not before: Sat 01 Jan 2022 15:02:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39151
IP address blocks: 185.68.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 649760043 (0x26ba8d2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d65b7b7b898faaee70767d09715c436a83fcdc2
Validity
Not Before: Jan 1 15:02:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b0e7140de9cd9ce50f6def45433874f9dc3fae0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:98:27:13:d2:f7:10:cb:fb:37:fa:77:45:95:
10:26:6e:84:e2:06:a3:e3:82:20:d4:1a:fe:39:72:
6d:6e:1a:52:90:2a:69:e8:87:c2:cd:74:95:99:28:
12:52:9e:0d:3a:ed:74:ed:28:e8:e1:9f:ea:5b:d1:
7c:a9:10:bf:51:a6:93:35:54:89:71:59:de:22:1e:
73:8a:54:95:44:ed:0a:c5:f4:ed:6b:29:f0:62:62:
07:bc:0f:da:a2:b7:c9:33:fe:ae:04:1b:21:a3:58:
8e:c3:e2:79:0a:7d:c2:5d:5f:20:b5:bc:89:ff:35:
0e:3d:82:83:ea:c1:de:2c:fa:0f:de:3b:f6:e1:fb:
92:7d:87:da:da:f0:b3:78:5a:bd:35:da:d7:2b:6e:
f5:af:b0:88:a5:80:d8:17:14:56:65:a1:69:2a:26:
83:cf:93:1f:b9:74:3b:7e:cb:1f:7e:15:03:78:61:
04:df:71:01:e0:a5:90:e3:20:f7:e5:a7:cf:4c:f8:
73:d2:1d:f8:92:5c:80:5e:6c:a0:2d:8e:44:b9:a9:
fc:5d:14:48:bd:6f:24:67:db:e0:b9:00:a6:cb:f4:
60:48:6d:78:88:a8:b0:90:43:eb:67:5c:da:a3:81:
04:62:2d:93:97:95:cd:b7:b9:63:3e:02:e4:f7:33:
8c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:0E:71:40:DE:9C:D9:CE:50:F6:DE:F4:54:33:87:4F:9D:C3:FA:E0
X509v3 Authority Key Identifier:
keyid:1D:65:B7:B7:B8:98:FA:AE:E7:07:67:D0:97:15:C4:36:A8:3F:CD:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HWW3t7iY-q7nB2fQlxXENqg_zcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/Gw5xQN6c2c5Q9t70VDOHT53D-uA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/HWW3t7iY-q7nB2fQlxXENqg_zcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.68.234.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:f4:b7:7a:0f:db:73:a8:41:97:65:c0:67:07:ed:c4:e7:63:
58:f4:8b:04:19:0b:40:96:72:5a:05:a4:6e:e5:96:5b:20:e7:
74:59:78:98:67:7c:d8:f5:5c:0e:ad:08:48:90:28:82:94:90:
50:eb:1e:81:dc:3e:4c:bd:23:31:20:e8:27:b1:7d:26:b1:dd:
b7:e6:ba:cb:3a:55:63:1c:d6:37:e8:a1:fd:81:79:21:07:90:
b6:db:98:9f:94:d6:a3:b3:0d:31:54:13:da:25:7c:cc:e3:78:
52:72:f3:80:e4:63:20:f5:b5:62:c8:f6:77:03:e3:43:03:8a:
fa:cc:08:06:65:3f:3f:79:18:13:ce:8e:e1:25:fd:82:b3:d8:
32:7f:2a:ad:bb:16:16:ac:62:b1:b9:a7:07:84:45:b4:17:c1:
67:24:90:95:cc:f5:d4:ae:71:5c:9c:0b:c4:c1:bf:25:21:df:
e6:13:30:8b:7e:b6:cc:54:bc:92:a1:a8:35:86:44:c6:04:06:
de:41:5f:65:bb:62:bb:8e:69:c8:32:b6:b3:91:2e:20:a1:6f:
b5:4b:77:1d:09:8c:f2:32:18:73:5d:b7:fa:f2:3e:ed:b1:73:
5e:db:68:3a:6f:69:4e:fd:f0:49:9e:b6:19:10:59:4d:5a:73:
a8:51:6e:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-ams.rpki-client.org