Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/DNt70f-4LP9F3gPIXiHd710wUOw.roa
File: DNt70f-4LP9F3gPIXiHd710wUOw.roa (raw, json)
Hash identifier: cLZUMVsDyBRVi6zqqqclA7CUfJA8sS6sLukTP6eAJno=
Subject key identifier: 0C:DB:7B:D1:FF:B8:2C:FF:45:DE:03:C8:5E:21:DD:EF:5D:30:50:EC
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 0182CAD6DEFE16D99EF78C231F1A04657090
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/DNt70f-4LP9F3gPIXiHd710wUOw.roa
Signing time: Tue 23 Aug 2022 13:14:15 +0000
ROA not before: Tue 23 Aug 2022 13:14:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 185.126.158.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ca:d6:de:fe:16:d9:9e:f7:8c:23:1f:1a:04:65:70:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: Aug 23 13:14:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0cdb7bd1ffb82cff45de03c85e21ddef5d3050ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e0:a9:b4:8f:10:2d:ce:2a:4c:af:f6:83:6e:
05:8c:3c:8e:62:7a:52:79:4d:e7:bd:6b:88:36:52:
b7:50:46:08:6c:41:22:c7:2f:78:45:58:81:98:34:
8b:70:fb:5f:a5:75:1c:7e:b5:63:1d:d7:79:c7:ac:
33:ce:83:12:24:2c:51:d2:ae:f0:bf:b1:fa:ae:cb:
e9:0a:ea:9d:de:74:3f:db:5e:e2:d7:dd:65:09:0c:
63:7d:b8:77:13:ea:f3:c2:ee:66:d7:44:54:c0:a9:
1a:1f:af:18:92:9f:7b:5b:a1:d0:31:17:8e:5a:96:
ff:e4:19:2f:7c:57:3b:59:9e:8c:ab:98:66:f6:9e:
3f:7d:62:c5:e7:39:e1:4d:a3:22:aa:a3:e2:e0:ce:
0e:96:df:5c:a2:72:e2:5b:e1:c6:ab:bb:7f:fd:e3:
68:a4:7c:04:52:ea:7e:6b:be:a4:d9:31:a7:26:75:
ad:58:d7:01:31:28:85:ce:46:03:23:51:ce:68:22:
58:ef:d6:82:86:3c:70:b6:43:95:c3:d4:98:82:08:
82:29:51:d5:42:fc:2b:c4:1d:5d:08:a4:8a:a5:5c:
65:61:c9:a2:8c:f9:6d:7d:7b:6c:3b:4f:66:ef:85:
3a:bb:cb:b7:37:c2:17:a9:14:41:d4:b2:ce:ea:01:
67:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:DB:7B:D1:FF:B8:2C:FF:45:DE:03:C8:5E:21:DD:EF:5D:30:50:EC
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/DNt70f-4LP9F3gPIXiHd710wUOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.158.0/23
Signature Algorithm: sha256WithRSAEncryption
71:56:0c:19:1c:da:a3:13:57:95:19:80:08:7c:46:85:52:53:
d4:35:a3:04:cc:e3:b5:91:07:f4:b4:01:8e:95:c9:c6:d3:c2:
3d:00:3a:f3:ce:00:88:a2:46:1b:64:de:d0:8b:7e:5e:f1:cf:
ed:0b:51:74:3a:a7:c4:eb:9f:22:7a:1a:ab:74:d3:73:1e:cb:
e1:76:ce:9d:6f:d8:c6:85:d4:82:7d:a0:22:74:bc:ef:f6:39:
65:67:9d:1e:4f:a3:14:33:81:b3:50:a0:cd:83:ab:ea:78:2d:
3e:30:36:76:88:b0:8b:f2:fb:5b:27:95:0d:ed:80:ef:7d:c2:
81:62:6d:d6:6e:7a:da:ad:a9:d4:ae:2a:73:f3:7d:e6:ad:9a:
ee:94:52:a1:cd:9f:ca:ec:51:87:df:70:03:2b:f1:29:93:75:
68:2f:4b:69:ac:83:5d:2d:07:4b:06:f1:8a:f8:0a:a3:f0:fd:
2c:b6:86:57:ef:49:37:9a:60:cf:05:2e:db:f4:16:5e:1f:b1:
a7:d2:d8:c4:8f:e9:37:f8:ac:9f:dc:cd:64:f7:59:95:d0:49:
cb:91:b3:86:a7:f6:28:7b:28:ce:80:db:c7:7a:42:7d:b8:1b:
56:4a:5c:d0:6c:a2:94:12:2b:15:d1:bd:d5:db:5f:d5:89:bc:
84:6a:9c:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:38 2024 by rpki-client on console-ams.rpki-client.org