Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/dm3c2rVInQ-ozoDhUitarBSVduk.roa
File: dm3c2rVInQ-ozoDhUitarBSVduk.roa (raw, json)
Hash identifier: fkLl8XhIvP3M+2OXyVNtGdcHhad1ezIRseD8bSR3LCo=
Subject key identifier: 76:6D:DC:DA:B5:48:9D:0F:A8:CE:80:E1:52:2B:5A:AC:14:95:76:E9
Certificate issuer: /CN=65816774b7c5665d67a86c20ceb6487b5b78b38d
Certificate serial: 0AE99B67
Authority key identifier: 65:81:67:74:B7:C5:66:5D:67:A8:6C:20:CE:B6:48:7B:5B:78:B3:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYFndLfFZl1nqGwgzrZIe1t4s40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/dm3c2rVInQ-ozoDhUitarBSVduk.roa
Signing time: Sat 01 Jan 2022 15:55:05 +0000
ROA not before: Sat 01 Jan 2022 15:55:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208860
IP address blocks: 185.52.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183081831 (0xae99b67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65816774b7c5665d67a86c20ceb6487b5b78b38d
Validity
Not Before: Jan 1 15:55:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=766ddcdab5489d0fa8ce80e1522b5aac149576e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6f:76:7c:7d:b9:c4:ae:97:9d:fd:99:12:24:
44:b5:c1:c9:f3:62:78:03:15:e9:b7:7e:7d:f8:75:
e8:2d:78:40:36:5f:71:b9:e9:0d:2d:e5:74:32:e3:
07:6b:41:bb:a6:87:2d:0c:5f:b3:3d:37:04:18:33:
26:04:79:ec:a8:ad:9e:67:17:06:31:81:55:de:7f:
61:30:33:d2:b9:52:70:6f:91:9e:26:2e:a3:73:32:
16:14:29:01:c8:08:2b:bd:32:42:68:05:19:8b:cf:
f2:84:29:5a:e5:b3:25:34:dc:46:59:e3:d7:be:3c:
60:ca:01:5a:50:59:7c:92:20:1d:17:40:d4:b8:2c:
a1:93:fd:7c:42:ba:1d:a7:28:47:c4:dc:4d:a9:60:
76:3d:cd:62:7d:5b:eb:12:44:d3:30:96:18:45:30:
dd:0c:4a:31:6b:a5:b3:cc:3c:cc:2b:71:8d:6b:65:
8e:b1:fc:de:b1:1f:bd:aa:0d:90:bc:fb:47:b2:ca:
42:f0:bb:e7:b5:f4:2b:9d:7c:71:fc:12:80:27:db:
f6:53:02:64:0e:6f:f4:0d:61:d6:dc:55:3f:b7:e2:
89:f9:5b:6f:21:cf:0d:7a:25:9c:3b:25:17:6e:1e:
79:20:16:73:e7:83:40:09:be:21:e0:44:81:a0:da:
df:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:6D:DC:DA:B5:48:9D:0F:A8:CE:80:E1:52:2B:5A:AC:14:95:76:E9
X509v3 Authority Key Identifier:
keyid:65:81:67:74:B7:C5:66:5D:67:A8:6C:20:CE:B6:48:7B:5B:78:B3:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYFndLfFZl1nqGwgzrZIe1t4s40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/dm3c2rVInQ-ozoDhUitarBSVduk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/ZYFndLfFZl1nqGwgzrZIe1t4s40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.52.48.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:f0:e0:fe:90:05:05:64:99:5f:59:1e:ff:0e:10:04:30:1f:
eb:71:6d:de:2d:32:f1:1f:5b:2b:e9:23:2d:68:1e:7c:b5:d4:
35:6e:6b:1a:eb:0d:6c:51:f5:4a:a7:51:a8:27:ce:98:3d:2e:
1d:ac:9a:ce:d8:75:eb:ef:e3:5b:e3:a5:ed:17:95:2e:2a:d3:
cc:ba:80:1d:dd:42:1d:99:fb:8e:09:c1:33:76:40:2d:39:be:
d3:96:8f:04:0b:fe:17:a6:bd:e0:90:c6:1d:0a:d9:d8:ea:b0:
cd:32:4f:a4:4e:75:80:86:64:df:c0:8b:d7:83:5d:88:16:a8:
c8:59:c6:47:7c:40:b0:db:9f:ea:ea:78:06:21:fd:34:01:08:
d0:9e:c4:67:48:43:3b:eb:24:7f:89:bb:f0:1c:82:a5:3e:26:
7f:4a:c8:3a:99:52:56:bc:3d:2a:7e:11:96:2d:dd:20:1e:e7:
48:d3:7d:e6:38:12:9e:7a:43:8b:55:32:97:05:d8:2b:4e:20:
96:00:37:1d:84:83:03:3a:48:5b:81:b6:76:6a:32:b4:94:7c:
88:1d:b2:94:3e:af:9b:09:d3:ea:7c:6b:09:8e:d1:98:21:8a:
f7:e0:b1:f6:9e:29:9a:5c:8b:2b:89:44:69:b4:f8:93:69:d7:
2c:2d:91:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:18 2024 by rpki-client on console-ams.rpki-client.org