Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/d5yxGPzmJoOl3LpvLR2LtY1DyTc.roa
File: d5yxGPzmJoOl3LpvLR2LtY1DyTc.roa (raw, json)
Hash identifier: vlElXK0DZDK7gwsijiIpTFKP9c2N9o7SL2RCNczLaE4=
Subject key identifier: 77:9C:B1:18:FC:E6:26:83:A5:DC:BA:6F:2D:1D:8B:B5:8D:43:C9:37
Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Certificate serial: 1280F4A2
Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/d5yxGPzmJoOl3LpvLR2LtY1DyTc.roa
Signing time: Sat 01 Jan 2022 10:05:43 +0000
ROA not before: Sat 01 Jan 2022 10:05:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15402
IP address blocks: 185.126.18.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 310441122 (0x1280f4a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Validity
Not Before: Jan 1 10:05:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=779cb118fce62683a5dcba6f2d1d8bb58d43c937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:5e:2f:a7:b7:53:15:68:21:79:0b:94:20:34:
5d:0a:16:1c:b9:b9:21:f5:68:cd:7b:c8:3b:4d:52:
d0:f8:91:65:f2:e7:d5:ec:19:e6:cf:f8:b2:cb:e1:
9a:49:a4:9d:2e:81:61:b3:4e:96:ba:15:79:9f:10:
3a:63:21:a6:be:a8:c1:3a:bc:47:5c:84:b4:97:2c:
06:8f:e3:ac:3c:6f:00:fa:f7:d2:b8:ed:1e:2f:06:
70:d4:04:ae:02:04:25:2a:9b:6c:9e:51:16:c9:b0:
0b:74:17:99:ff:93:4e:dc:ee:70:60:19:7a:3e:64:
ee:e7:9c:bf:63:9c:83:a7:44:23:e7:6d:4e:ad:88:
05:4f:3f:c3:e3:18:73:00:dc:a9:45:66:95:54:56:
c5:da:0e:64:34:08:f7:fc:3b:fa:99:34:03:47:4e:
89:cf:93:0c:1a:dc:00:29:0a:07:01:50:ad:31:99:
6a:de:36:30:d9:59:3f:80:b1:15:9b:26:45:5e:e5:
8f:ea:47:2b:c8:25:56:60:23:3b:bf:73:37:28:7b:
b3:bc:d1:e0:6b:00:08:d5:45:32:15:ff:c5:bc:96:
1b:e2:bc:79:ca:08:34:4d:e5:92:5e:b8:2d:5d:b3:
e9:b0:14:3e:b1:a0:e1:61:66:ec:dd:a4:8e:99:d7:
ac:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:9C:B1:18:FC:E6:26:83:A5:DC:BA:6F:2D:1D:8B:B5:8D:43:C9:37
X509v3 Authority Key Identifier:
keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/d5yxGPzmJoOl3LpvLR2LtY1DyTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.18.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:59:a5:56:06:08:c1:5e:9e:e2:62:d3:70:f6:eb:72:50:13:
7e:e3:50:8b:6c:3e:f3:54:72:02:02:18:05:68:23:a9:fd:23:
84:cd:b9:ef:d7:de:88:ac:1f:88:11:f9:1a:74:38:50:c9:12:
eb:ab:ae:cd:17:b5:5a:50:d1:90:2c:58:67:76:6e:e7:1e:53:
f0:3d:9a:58:3d:55:9b:7f:98:40:02:2e:7f:1e:1c:be:bc:d7:
ae:b2:a1:de:fe:4a:ef:27:f1:69:69:ce:e8:c4:63:0e:57:c4:
35:88:6e:1e:0e:76:14:ce:30:8a:b7:de:5b:eb:58:1d:04:a7:
96:a9:32:b8:61:07:22:f7:8e:09:87:ea:c4:87:ae:70:2b:aa:
cf:c3:bd:4e:27:e5:7f:62:18:93:67:0e:d6:ea:e0:ea:d0:57:
95:83:e2:72:53:b2:76:fb:b6:f2:d3:36:f7:47:3f:39:32:fc:
5d:a4:72:bb:5f:64:45:e8:9c:35:b8:34:22:d5:7d:5b:13:77:
b2:9e:43:1e:1e:3e:d5:cd:49:9a:55:62:78:ec:75:09:b4:ed:
f6:75:6a:d0:2f:50:ee:24:24:1a:57:fa:f9:f0:d5:7b:26:a1:
4b:ce:4d:82:fe:05:e9:43:cd:64:2d:65:3e:c0:6c:ed:ed:62:
b7:79:06:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:54 2023 by rpki-client on console-fra.rpki-client.org