Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/a604cf-1947-4b12-9a6b-3eb9134ec79d/1/g0w6RidLZzlRsqJfWwgVdP-V_Ac.roa
File: g0w6RidLZzlRsqJfWwgVdP-V_Ac.roa (raw, json)
Hash identifier: opL7v4wTdcILA4I/7hAVaEG6GYHfL8ozGpQJBhXyzwE=
Subject key identifier: 83:4C:3A:46:27:4B:67:39:51:B2:A2:5F:5B:08:15:74:FF:95:FC:07
Certificate issuer: /CN=e390f2ee0a70bcaefe0195a3d8b377d34297a943
Certificate serial: 01856EEFEF19F6CBE5C70DA310507400D560
Authority key identifier: E3:90:F2:EE:0A:70:BC:AE:FE:01:95:A3:D8:B3:77:D3:42:97:A9:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/45Dy7gpwvK7-AZWj2LN300KXqUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/a604cf-1947-4b12-9a6b-3eb9134ec79d/1/g0w6RidLZzlRsqJfWwgVdP-V_Ac.roa
Signing time: Sun 01 Jan 2023 20:04:56 +0000
ROA not before: Sun 01 Jan 2023 20:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51324
IP address blocks: 185.37.152.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:ef:ef:19:f6:cb:e5:c7:0d:a3:10:50:74:00:d5:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e390f2ee0a70bcaefe0195a3d8b377d34297a943
Validity
Not Before: Jan 1 20:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=834c3a46274b673951b2a25f5b081574ff95fc07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c6:b4:11:5d:b7:fd:0f:0e:df:44:01:e0:c8:
14:4e:d3:fa:5f:0e:90:18:b5:f1:d0:e0:07:a4:a1:
e4:01:8c:cd:63:e5:72:fb:3a:a8:51:55:bd:bd:5a:
49:f0:75:64:ed:29:08:0a:8b:62:e0:52:11:df:8b:
d8:0a:a7:35:d3:0c:9c:a2:4c:6c:24:23:8a:72:a1:
ea:25:36:c3:4d:f5:1f:16:99:b8:f3:8a:2e:be:c1:
b0:48:94:f8:25:d0:7a:dc:f4:d3:cc:98:ad:40:69:
6b:da:50:8b:06:76:35:d8:9a:58:17:de:02:4c:a6:
5a:c8:fc:11:61:0d:0d:d3:87:da:e8:b0:6a:84:be:
ca:a8:30:16:ab:85:aa:73:6d:fd:46:14:21:a9:e3:
90:66:ba:b2:85:e8:8c:19:ca:d0:ef:bd:63:45:d4:
e8:4a:1e:ea:d1:c7:1e:d4:6d:31:9e:e1:dc:09:79:
a6:41:5a:6e:46:1e:12:99:f7:aa:ba:bd:c3:a8:ef:
e3:ae:2f:ce:3f:1e:00:e9:f1:3b:b5:d8:87:ba:dc:
44:7a:a3:59:a6:b2:3a:f6:07:7d:ba:aa:ac:32:86:
a7:03:f4:cd:66:60:36:fb:cd:fe:74:f7:b9:12:29:
59:fb:02:d4:6b:d8:91:fd:43:56:ef:98:dc:6d:b6:
2f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:4C:3A:46:27:4B:67:39:51:B2:A2:5F:5B:08:15:74:FF:95:FC:07
X509v3 Authority Key Identifier:
keyid:E3:90:F2:EE:0A:70:BC:AE:FE:01:95:A3:D8:B3:77:D3:42:97:A9:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/45Dy7gpwvK7-AZWj2LN300KXqUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/a604cf-1947-4b12-9a6b-3eb9134ec79d/1/g0w6RidLZzlRsqJfWwgVdP-V_Ac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/a604cf-1947-4b12-9a6b-3eb9134ec79d/1/45Dy7gpwvK7-AZWj2LN300KXqUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.37.152.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:de:3e:73:a0:3d:cc:aa:ef:16:fd:cf:04:d6:42:c9:02:1d:
06:d8:e4:5d:4b:a3:84:6f:11:b3:ac:2d:05:d2:b6:54:f2:ab:
3a:c7:a4:08:41:b1:94:ae:a0:fc:64:bb:4e:f4:19:39:66:77:
0e:06:cc:b6:76:47:8a:ad:6b:af:d0:85:74:75:e7:49:6a:d6:
24:14:91:c2:66:36:42:4f:c5:f9:5a:f6:3f:6d:15:d2:9e:0e:
17:23:d4:c0:92:3f:32:a8:43:ab:88:bf:89:53:70:9e:d0:9f:
bf:23:dd:76:36:a8:50:bc:85:b4:3b:2d:f5:f1:9d:0c:ba:6b:
50:17:31:ac:ad:47:bf:a4:b8:59:83:35:bc:51:6b:9a:e6:f2:
99:2e:5a:81:d0:32:27:32:e9:44:e5:0b:18:86:53:10:d4:5f:
0c:dd:22:f0:6b:3f:ce:6e:ff:bf:35:29:a5:db:fe:85:1c:48:
62:32:31:30:f3:5a:38:64:ea:24:eb:c9:25:cb:17:ac:51:d5:
ae:41:3d:1f:bc:67:87:56:0a:3a:5a:d9:9a:53:07:bd:06:aa:
86:0d:dc:d9:5c:8c:d1:1e:f0:07:83:65:07:d0:03:8c:c2:b0:
9a:16:3d:ae:9f:64:1a:93:d2:73:95:a1:e3:05:a9:e7:b4:9e:
65:a5:2a:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:26 2025 by rpki-client