Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/829b02-d326-4c83-93f4-8cc231555e51/1/dfTRR2Ii5NQ7m1skNwcZbrpAgaQ.roa
File: dfTRR2Ii5NQ7m1skNwcZbrpAgaQ.roa (raw, json)
Hash identifier: GxxildjXpW4dCYK8Hx0HKeJYNosEAcGPQBO73sfKc8k=
Subject key identifier: 75:F4:D1:47:62:22:E4:D4:3B:9B:5B:24:37:07:19:6E:BA:40:81:A4
Certificate issuer: /CN=cfba970db187d18e19a91e64f00b0d3160860db5
Certificate serial: 54FD
Authority key identifier: CF:BA:97:0D:B1:87:D1:8E:19:A9:1E:64:F0:0B:0D:31:60:86:0D:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z7qXDbGH0Y4ZqR5k8AsNMWCGDbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/829b02-d326-4c83-93f4-8cc231555e51/1/dfTRR2Ii5NQ7m1skNwcZbrpAgaQ.roa
Signing time: Fri 11 Mar 2022 23:57:35 +0000
ROA not before: Fri 11 Mar 2022 23:57:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398464
IP address blocks: 185.5.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21757 (0x54fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfba970db187d18e19a91e64f00b0d3160860db5
Validity
Not Before: Mar 11 23:57:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75f4d1476222e4d43b9b5b243707196eba4081a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f5:f3:6f:6e:fc:e8:ce:b0:b4:03:67:d0:bf:
e0:09:30:91:26:c6:a5:5e:5f:81:87:86:c7:1e:39:
45:d6:20:fc:9c:64:e6:0b:bb:ea:07:36:e9:72:d3:
cc:8e:f8:d2:1a:c9:15:14:2a:1e:31:cf:7f:d1:a6:
ea:8b:a8:a0:0a:d0:4c:b4:9a:34:99:6d:11:fa:75:
27:73:fb:fa:d9:17:19:f8:b5:9d:3f:27:53:00:04:
92:2a:9b:aa:b1:c6:ad:9d:6f:7a:53:ca:0f:bf:68:
22:c5:d8:3f:38:2e:e2:24:ff:4a:dc:80:a0:33:8f:
ce:2e:3b:96:43:ed:94:f6:ae:ca:f2:c9:a1:12:86:
09:28:21:8d:0e:cc:55:9b:05:38:f8:ed:47:1c:a7:
83:e4:99:e4:9e:8b:e7:ec:55:dc:33:f4:b6:1c:e4:
c4:10:95:95:b2:4a:2e:19:2e:f9:76:36:db:0c:a4:
c1:cf:7d:dd:af:12:7b:32:62:5b:64:86:bf:fc:60:
ca:9e:03:de:ba:7f:52:56:92:66:c6:a1:20:90:eb:
cd:7d:ff:94:45:d0:5c:7d:cf:ee:c6:50:02:d5:f5:
03:bc:59:70:87:28:4d:92:7d:1b:d9:c3:4d:d8:fe:
6e:8d:4c:62:1e:5e:1c:bd:1c:00:7a:c1:70:e6:b7:
fe:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:F4:D1:47:62:22:E4:D4:3B:9B:5B:24:37:07:19:6E:BA:40:81:A4
X509v3 Authority Key Identifier:
keyid:CF:BA:97:0D:B1:87:D1:8E:19:A9:1E:64:F0:0B:0D:31:60:86:0D:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z7qXDbGH0Y4ZqR5k8AsNMWCGDbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/829b02-d326-4c83-93f4-8cc231555e51/1/dfTRR2Ii5NQ7m1skNwcZbrpAgaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/829b02-d326-4c83-93f4-8cc231555e51/1/z7qXDbGH0Y4ZqR5k8AsNMWCGDbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.144.0/24
Signature Algorithm: sha256WithRSAEncryption
34:6a:c0:92:73:f1:64:ca:83:f6:03:5a:aa:65:b4:95:00:c7:
7a:5c:87:63:c2:45:be:fb:d6:3e:e5:5b:ba:e7:cf:c9:fb:60:
99:6d:d9:ef:67:33:ae:96:4d:34:de:fb:e2:38:f5:4c:b9:14:
e7:97:c7:5e:1a:c8:00:ad:f2:11:f8:14:c0:95:ab:2c:c2:5b:
e0:5b:e9:5e:95:be:fb:ba:1e:8a:93:0e:48:b4:10:85:1d:a5:
43:8f:7f:e8:ec:87:03:0b:3d:df:34:63:38:65:13:2b:dd:e1:
53:e6:99:c8:75:9a:d8:4f:24:d6:7d:c7:47:b9:e3:7e:1d:c0:
6f:5d:ff:6b:12:54:74:5d:7e:7f:a2:eb:53:d9:82:a7:64:f7:
24:50:ec:6d:40:5f:dc:ed:5a:07:3d:63:0a:8f:0c:4f:7c:89:
18:3d:26:5d:e0:e3:ec:dc:01:ce:0c:ba:71:77:81:e0:e1:32:
c8:fd:a2:d5:b9:35:96:e6:d9:ee:6d:c5:b6:c3:8c:55:c4:fa:
7d:99:b6:51:6a:6b:6b:5c:88:19:fd:d3:27:17:08:15:56:0c:
3b:e8:c4:bc:38:af:3b:d3:34:12:53:ad:55:cc:7c:cd:5e:5a:
38:1d:a9:ca:ee:e5:af:f9:2e:75:aa:8c:de:e4:8d:a5:5d:f5:
16:76:66:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:32 2023 by rpki-client on console-fra.rpki-client.org