Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/DckcWB7uV0a9MRIlV38NJH_g5pc.roa
File: DckcWB7uV0a9MRIlV38NJH_g5pc.roa (raw, json)
Hash identifier: /14W8+ARWN6FSUez/C8CFI5amQEulXodzXrfGSMBHDs=
Subject key identifier: 0D:C9:1C:58:1E:EE:57:46:BD:31:12:25:57:7F:0D:24:7F:E0:E6:97
Certificate issuer: /CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Certificate serial: 0184F0B4A1E04D382FED7E00B4DC11B0AD8A
Authority key identifier: F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/DckcWB7uV0a9MRIlV38NJH_g5pc.roa
Signing time: Thu 08 Dec 2022 07:48:00 +0000
ROA not before: Thu 08 Dec 2022 07:48:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 83.136.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f0:b4:a1:e0:4d:38:2f:ed:7e:00:b4:dc:11:b0:ad:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Validity
Not Before: Dec 8 07:48:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0dc91c581eee5746bd311225577f0d247fe0e697
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f0:8b:bb:03:e1:7a:b5:99:b8:c4:17:e9:0a:
26:24:76:a4:2f:84:60:82:db:8d:74:e8:c9:22:1c:
48:b1:47:6f:66:dc:a5:40:e1:c0:62:82:bf:1b:36:
ae:57:b6:04:6e:0e:2a:57:49:e0:22:89:3a:7f:fb:
65:ac:0e:7e:9a:ef:21:51:67:4a:e6:e9:7d:1d:10:
9b:64:36:b5:96:77:f0:37:48:28:cc:ee:39:b9:f2:
3e:b3:67:e3:3d:81:80:12:b5:c5:14:8a:42:57:17:
08:41:98:d7:d3:28:65:9f:7b:12:88:75:5e:b4:52:
e5:cc:2c:42:e0:e0:4b:b9:1e:38:c5:b8:ad:cf:bf:
be:fb:ef:d8:d4:e9:32:92:dc:0b:3f:fa:56:b7:93:
3b:ac:6e:47:13:f6:aa:d2:bd:d0:6e:87:08:d0:b2:
9d:d0:9e:91:02:d0:34:b2:f2:d1:d8:32:7e:d1:a7:
95:92:78:30:2c:ae:28:58:00:b7:f8:0e:bd:95:cc:
62:62:eb:c7:5d:92:ba:fa:43:21:72:9f:6a:1f:cc:
ff:81:4c:7e:7f:56:42:b8:bb:da:f9:54:cc:c7:48:
be:32:4f:5f:c4:8a:2f:08:c3:b0:20:52:02:ef:a2:
06:97:cc:3b:91:b7:41:e8:33:82:ff:f1:16:84:65:
14:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:C9:1C:58:1E:EE:57:46:BD:31:12:25:57:7F:0D:24:7F:E0:E6:97
X509v3 Authority Key Identifier:
keyid:F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/DckcWB7uV0a9MRIlV38NJH_g5pc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.212.0/24
Signature Algorithm: sha256WithRSAEncryption
64:43:32:e7:fa:b4:e2:60:9c:11:25:fd:bc:98:ea:40:0c:c9:
0b:b1:d6:f4:71:d7:10:22:10:ca:87:99:00:dd:89:70:21:3f:
1c:8a:b5:69:44:30:ce:12:bd:07:75:0b:49:78:82:9f:b1:6d:
63:f8:bf:d4:03:22:04:e1:55:f3:a3:ee:cf:95:43:50:b1:a2:
dd:28:82:36:26:56:2e:42:1c:df:34:ce:35:79:13:b5:37:f4:
35:61:ba:f3:0d:74:e4:b8:03:fd:cd:41:73:aa:3e:57:46:fd:
f2:9c:8d:0d:51:08:8c:c6:28:3b:46:90:fb:dd:6e:fb:af:46:
52:1e:9f:e2:09:86:fa:cb:62:d7:d6:a0:0d:ca:7e:18:dc:6f:
4c:44:c1:20:22:dd:ea:89:0c:8e:39:a9:61:72:a5:45:91:67:
06:fa:1c:b1:dd:e8:15:ce:9e:35:9f:42:d1:de:16:30:74:81:
b0:2e:b2:fd:95:67:7d:c2:09:ea:f1:45:ab:88:1c:7c:fd:48:
7e:90:a8:32:90:5e:1d:23:1c:11:41:a3:28:1c:0a:5d:0a:b9:
5c:42:42:c1:7a:ad:b0:f2:41:e8:f3:b0:2f:7c:0f:9b:ad:e0:
fc:95:a2:e3:25:e9:f5:76:bc:94:2c:16:86:d6:c7:4a:4e:51:
1f:25:3f:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:38 2024 by rpki-client on console-fra.rpki-client.org