Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/81b276-e736-4172-80a9-18d69036753b/1/DtD_euk2t3nQnrdOc2gP5GIV7HA.roa
File: DtD_euk2t3nQnrdOc2gP5GIV7HA.roa (raw, json)
Hash identifier: taoQ4SFuGbR4wmF9z6Is8Ivxv4y1ItdCIdfVIO/B4aM=
Subject key identifier: 0E:D0:FF:7A:E9:36:B7:79:D0:9E:B7:4E:73:68:0F:E4:62:15:EC:70
Certificate issuer: /CN=065c9fedb5b544f696ed4daf135b02dee6d97af6
Certificate serial: 0874565B
Authority key identifier: 06:5C:9F:ED:B5:B5:44:F6:96:ED:4D:AF:13:5B:02:DE:E6:D9:7A:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Blyf7bW1RPaW7U2vE1sC3ubZevY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/81b276-e736-4172-80a9-18d69036753b/1/DtD_euk2t3nQnrdOc2gP5GIV7HA.roa
Signing time: Sat 01 Jan 2022 10:59:49 +0000
ROA not before: Sat 01 Jan 2022 10:59:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196620
IP address blocks: 5.180.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141842011 (0x874565b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=065c9fedb5b544f696ed4daf135b02dee6d97af6
Validity
Not Before: Jan 1 10:59:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ed0ff7ae936b779d09eb74e73680fe46215ec70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:48:2f:fa:b1:22:f5:30:f3:b5:be:0b:fc:c1:
36:f2:cc:ae:5e:a1:df:a2:93:b7:da:ca:4f:6d:1b:
8b:77:61:d5:70:9e:d4:3e:28:35:05:b9:bc:79:b9:
79:5b:09:6c:58:83:5f:08:4c:6d:b2:04:cb:56:0a:
a9:88:3c:b6:e5:25:c1:73:7e:45:53:0f:24:ae:b0:
58:1f:92:d2:75:61:11:42:16:ff:a8:c6:f9:91:3f:
f9:f8:f6:bb:45:25:d3:ca:f7:d8:51:f6:9d:07:d5:
c1:c2:20:7d:67:0c:74:d7:e8:d7:8e:96:39:ba:6c:
0b:4e:48:0f:be:3a:8b:b6:27:3f:6f:75:79:06:20:
2c:f3:a9:7c:80:d4:a6:ee:07:ff:e7:a1:bd:46:aa:
7c:b1:0f:58:e3:bb:98:dd:65:f9:d7:82:f8:4a:4c:
e8:c9:44:15:ac:4e:b8:9d:20:b0:f1:b2:29:47:83:
bd:40:a3:86:13:c6:06:f1:55:76:9f:04:3d:73:f5:
b1:fe:6d:6b:f2:b0:76:e6:eb:04:81:00:17:4b:71:
b9:99:37:b7:ed:e0:39:1f:b7:1c:66:35:42:51:9d:
e2:9a:01:b5:31:44:c3:9f:de:cd:7c:ec:e8:89:a3:
9f:d5:15:16:55:a7:77:48:a4:c3:3f:c7:08:70:53:
58:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:D0:FF:7A:E9:36:B7:79:D0:9E:B7:4E:73:68:0F:E4:62:15:EC:70
X509v3 Authority Key Identifier:
keyid:06:5C:9F:ED:B5:B5:44:F6:96:ED:4D:AF:13:5B:02:DE:E6:D9:7A:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Blyf7bW1RPaW7U2vE1sC3ubZevY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/81b276-e736-4172-80a9-18d69036753b/1/DtD_euk2t3nQnrdOc2gP5GIV7HA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/81b276-e736-4172-80a9-18d69036753b/1/Blyf7bW1RPaW7U2vE1sC3ubZevY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.132.0/24
Signature Algorithm: sha256WithRSAEncryption
44:61:9a:42:cb:9b:b0:c4:4d:44:f7:3a:1c:cd:ee:35:bf:c8:
09:c9:c0:d9:98:7d:df:2e:31:71:b2:da:c0:39:fe:cc:2b:62:
7c:28:93:39:57:5f:c8:35:36:6b:ca:77:e8:bb:f5:6d:f8:da:
b3:aa:25:92:c5:6d:52:bb:d8:45:41:b7:ad:86:9f:25:82:71:
da:cc:55:84:17:f4:df:4b:b3:ec:7e:12:41:30:08:1c:a8:bd:
bd:ea:c8:ff:5f:30:99:80:ee:7d:da:27:a0:e8:ed:76:a7:1a:
d9:0d:29:e5:67:e2:f6:0e:41:f3:37:4c:ef:0e:12:1c:a5:6e:
98:d0:61:bb:18:4b:61:73:0c:26:93:e2:47:15:46:82:7c:17:
0f:55:27:45:ed:98:c3:5b:32:59:eb:cd:95:f3:30:0d:d4:ba:
6c:e2:48:06:41:4e:17:c0:83:54:4b:1a:c6:08:7a:cd:bd:a1:
ea:d4:e0:ad:bf:60:d8:b3:f8:f9:7b:c8:cd:6b:02:60:52:d7:
6d:7a:fd:d6:fa:b2:e8:19:1a:cf:fd:4a:01:72:97:fd:20:6f:
a1:c9:8c:63:8c:d9:19:54:f3:2b:ab:70:77:08:e5:5b:7c:68:
56:0f:5a:7a:a6:1f:42:a5:1e:d5:9f:b5:01:97:a4:d9:c5:83:
ba:ef:a8:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:52 2023 by rpki-client on console-ams.rpki-client.org