Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/caa2b6-87e8-4e24-a446-775888a87194/1/kaLtHX4ZeKPdyRFA0lvI-aPZZQI.roa
File: kaLtHX4ZeKPdyRFA0lvI-aPZZQI.roa (raw, json)
Hash identifier: adLdVcAXKZ+0Be53OtuQOqqRf16VtygEyv4jubCQHLU=
Subject key identifier: 91:A2:ED:1D:7E:19:78:A3:DD:C9:11:40:D2:5B:C8:F9:A3:D9:65:02
Certificate issuer: /CN=3144e609e361913e3c3b0a78d7486aa45b562401
Certificate serial: 18AB2131
Authority key identifier: 31:44:E6:09:E3:61:91:3E:3C:3B:0A:78:D7:48:6A:A4:5B:56:24:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MUTmCeNhkT48Owp410hqpFtWJAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/caa2b6-87e8-4e24-a446-775888a87194/1/kaLtHX4ZeKPdyRFA0lvI-aPZZQI.roa
Signing time: Sat 01 Jan 2022 15:07:13 +0000
ROA not before: Sat 01 Jan 2022 15:07:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200189
IP address blocks: 185.108.37.0/24 maxlen: 24
185.108.36.0/24 maxlen: 24
185.108.36.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 413868337 (0x18ab2131)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3144e609e361913e3c3b0a78d7486aa45b562401
Validity
Not Before: Jan 1 15:07:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91a2ed1d7e1978a3ddc91140d25bc8f9a3d96502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:47:2b:c9:1c:e0:5f:c2:46:4f:b4:7d:72:09:
7c:29:a7:36:c8:20:b9:cd:57:da:f0:4c:70:9f:29:
eb:a0:14:98:2c:b2:a7:b9:87:7c:c9:04:83:f1:a1:
9c:d3:67:fa:8a:b9:eb:54:f6:14:12:48:3a:07:d9:
df:0c:d0:13:ee:53:cd:c1:db:fc:16:ca:a8:0b:6c:
b9:be:33:55:6c:d6:99:55:0c:9c:7c:7a:77:45:57:
dc:7c:ec:89:b3:58:25:b5:80:26:1c:b7:51:f1:7b:
2a:7d:27:e2:9a:48:52:aa:7c:dc:af:45:06:da:b4:
a3:e6:9b:f9:b3:78:28:5f:cd:18:33:91:1f:f3:83:
e0:6a:2d:bb:f9:a8:38:ae:4f:29:b8:79:f8:00:2a:
20:95:7b:e5:7a:ec:8e:52:cd:2a:af:a3:90:df:ef:
2d:a5:30:26:25:eb:6d:92:3f:8c:ee:aa:26:30:30:
b7:90:b3:8f:18:04:8f:df:ed:5d:eb:67:14:be:8e:
eb:6f:86:be:b2:23:59:f5:06:95:be:3a:67:cf:5c:
e0:6d:3b:31:ce:ba:5c:ed:e9:61:d1:c1:c5:6b:e6:
58:5d:fe:4b:a6:e4:7d:58:0d:03:4b:83:6b:a5:38:
92:ff:f7:fa:9a:0a:80:6b:93:3c:d1:1f:a0:d3:f2:
4c:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A2:ED:1D:7E:19:78:A3:DD:C9:11:40:D2:5B:C8:F9:A3:D9:65:02
X509v3 Authority Key Identifier:
keyid:31:44:E6:09:E3:61:91:3E:3C:3B:0A:78:D7:48:6A:A4:5B:56:24:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MUTmCeNhkT48Owp410hqpFtWJAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/caa2b6-87e8-4e24-a446-775888a87194/1/kaLtHX4ZeKPdyRFA0lvI-aPZZQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/caa2b6-87e8-4e24-a446-775888a87194/1/MUTmCeNhkT48Owp410hqpFtWJAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.108.36.0/23
Signature Algorithm: sha256WithRSAEncryption
69:fc:a7:d2:87:71:40:88:cb:f1:87:0c:0a:8d:63:30:6c:46:
a0:2b:be:61:c6:75:4f:03:66:9b:33:97:a0:dd:de:22:43:59:
a8:ab:cc:a2:8e:ec:cf:39:fd:78:3a:ea:f8:0f:5b:ed:62:9e:
ea:6e:ef:3a:c3:5e:a2:2a:34:9b:97:fb:10:eb:3b:07:16:75:
52:31:ba:a3:48:f8:86:63:50:f0:33:d0:07:e2:ac:2b:25:ca:
8e:6a:3f:31:2d:1b:a6:5d:34:b8:f7:4d:fd:37:f0:68:41:c3:
22:7f:75:9a:24:a4:47:74:b1:2a:6c:96:7b:56:fb:b4:93:cb:
79:ce:f7:c6:ec:92:17:f4:ea:bb:20:9f:1b:73:97:1c:d7:fb:
78:7a:52:d9:54:3e:5c:0f:e4:2f:05:53:5c:00:e7:b5:aa:c7:
08:0c:fb:d4:33:98:a7:ac:9a:9f:e9:d7:8b:8e:21:bd:81:1d:
ec:49:9e:3e:47:a5:18:65:f3:30:08:28:94:f9:f5:dd:f9:ab:
91:e2:d5:82:3b:a3:1b:f3:1e:7a:50:66:6c:fd:5d:fe:82:4e:
d8:01:4d:d5:cf:27:47:27:ad:7a:fd:8f:41:de:03:07:94:2c:
d1:7c:db:38:28:a2:eb:5f:60:c6:5e:34:cb:1a:73:b8:ad:99:
b6:6a:64:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:57 2023 by rpki-client on console.sobornost.net