Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/dquW72vVsGfAXKzEORqbFCbq594.roa
File: dquW72vVsGfAXKzEORqbFCbq594.roa (raw, json)
Hash identifier: HQUikhs67/7D241cABbKgiVdXuyD5AgbaCHK75PM92Y=
Subject key identifier: 76:AB:96:EF:6B:D5:B0:67:C0:5C:AC:C4:39:1A:9B:14:26:EA:E7:DE
Certificate issuer: /CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Certificate serial: 032EE458
Authority key identifier: F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/dquW72vVsGfAXKzEORqbFCbq594.roa
Signing time: Tue 22 Feb 2022 08:11:28 +0000
ROA not before: Tue 22 Feb 2022 08:11:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142617
IP address blocks: 83.136.208.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53404760 (0x32ee458)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Validity
Not Before: Feb 22 08:11:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76ab96ef6bd5b067c05cacc4391a9b1426eae7de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:65:48:54:b5:2d:b0:76:0e:a4:bd:7c:1d:df:
42:0c:42:5f:0b:f1:54:c3:77:1c:95:6c:9c:a0:c7:
63:24:9b:d9:ce:21:b2:dd:b7:75:db:69:7b:29:37:
fb:8a:c2:75:5d:0f:70:40:63:47:28:e4:d1:6d:a6:
77:00:ab:f9:95:90:60:14:66:cc:c5:38:22:06:fc:
64:67:ad:cc:e2:4f:45:2e:79:f5:1c:9b:8a:06:d8:
18:5f:58:13:12:ec:14:bb:a2:59:e7:48:9b:e8:8e:
11:7b:d8:71:3f:97:dc:47:98:e9:26:17:3b:41:77:
0f:40:97:7a:fc:25:f5:86:a4:7f:9e:d0:86:98:48:
2c:fb:fd:bc:47:11:96:b9:37:e1:9b:17:ae:e2:6d:
0e:f2:04:58:99:da:63:0b:01:0b:40:90:9a:6c:2d:
5d:88:43:f0:07:b5:84:ff:e4:9b:01:cb:17:97:a8:
f6:38:1d:3e:e3:53:a4:f0:9c:02:58:a7:b8:e9:52:
15:13:51:05:8f:10:f6:7c:3f:e2:33:1f:57:2d:79:
1b:08:cc:bb:dc:c0:92:a2:bf:50:83:cc:9c:53:de:
85:a3:ef:73:80:f6:56:58:84:1a:a7:06:5a:29:71:
00:2a:f8:e6:ad:b8:4f:e8:9f:8c:9f:3d:43:61:4e:
e1:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:AB:96:EF:6B:D5:B0:67:C0:5C:AC:C4:39:1A:9B:14:26:EA:E7:DE
X509v3 Authority Key Identifier:
keyid:F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/dquW72vVsGfAXKzEORqbFCbq594.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.208.0/22
Signature Algorithm: sha256WithRSAEncryption
46:f3:d3:ac:1d:82:20:2c:82:33:d2:87:41:62:c2:fa:b2:c4:
49:19:cb:01:a6:ed:97:27:f9:2f:ca:1e:7a:b4:ca:8b:65:bb:
0c:a0:7c:88:13:8f:0f:79:f8:b7:ab:70:9f:51:fc:77:7b:54:
ae:07:b4:c6:e7:4b:49:ed:c3:0b:28:cc:f5:50:1a:34:42:6b:
e4:cf:58:61:b1:45:4f:33:50:5a:e5:f8:ca:d1:f1:b3:23:ca:
1b:26:0d:b9:49:1a:7f:d9:11:24:a3:c4:2e:8e:ad:d0:df:ec:
0f:35:7c:eb:70:3e:de:04:39:1c:a1:d0:0d:b8:31:36:11:45:
65:9a:1c:d4:cf:ab:ac:86:16:1b:aa:ee:73:e5:cd:53:0c:b7:
04:79:e5:e3:76:b2:d0:c1:4b:09:a8:dc:85:5e:f2:47:51:56:
97:7f:cc:2a:b3:29:3e:2e:be:cf:a1:4b:1c:d4:9a:79:9f:bb:
c1:ef:d7:bc:c6:5b:df:3d:c9:49:62:57:85:d5:1b:80:0b:ea:
d6:08:71:b0:6d:ac:3b:4f:82:64:0b:c7:6d:31:89:ce:3a:44:
16:11:4f:00:b0:b9:18:56:b1:dd:90:22:26:7f:01:02:29:62:
4f:ee:2b:43:cf:a4:6c:c3:f4:2d:12:0c:e8:d6:58:1d:4f:fa:
14:64:46:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:53 2023 by rpki-client on console-ams.rpki-client.org