Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/9f9590-7f0a-41b3-ac4f-efd14db957fb/1/DHTTRPUiljAQL1F6dw2r-dnxaRI.roa
File: DHTTRPUiljAQL1F6dw2r-dnxaRI.roa (raw, json)
Hash identifier: 6CLeMHMyFMKWVXaK5Ijnugy/0FJZd3xie2/AZ1Hsuiw=
Subject key identifier: 0C:74:D3:44:F5:22:96:30:10:2F:51:7A:77:0D:AB:F9:D9:F1:69:12
Certificate issuer: /CN=f9856d674f0e9dbf6012d5b5d3d96b43afd76473
Certificate serial: 0182E06F09D64B37978C29AA6A31F21CEA91
Authority key identifier: F9:85:6D:67:4F:0E:9D:BF:60:12:D5:B5:D3:D9:6B:43:AF:D7:64:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YVtZ08Onb9gEtW109lrQ6_XZHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/9f9590-7f0a-41b3-ac4f-efd14db957fb/1/DHTTRPUiljAQL1F6dw2r-dnxaRI.roa
Signing time: Sat 27 Aug 2022 17:52:29 +0000
ROA not before: Sat 27 Aug 2022 17:52:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15526
IP address blocks: 212.68.145.0/24 maxlen: 24
213.8.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:e0:6f:09:d6:4b:37:97:8c:29:aa:6a:31:f2:1c:ea:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9856d674f0e9dbf6012d5b5d3d96b43afd76473
Validity
Not Before: Aug 27 17:52:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c74d344f5229630102f517a770dabf9d9f16912
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:20:70:83:c7:cd:49:13:be:c0:12:ed:8d:ed:
f6:36:df:e7:a6:4a:b4:43:fd:59:39:cd:8b:5d:e7:
26:cf:d5:32:f9:6d:2f:9d:ab:3d:7f:e6:46:bf:73:
d2:f6:e7:16:8d:7f:2d:5e:c2:9b:a4:80:90:88:e4:
a3:d5:f8:e4:88:2a:a8:81:c6:75:dd:e2:3b:5f:74:
fa:9e:68:8b:43:33:26:9c:40:2b:7a:48:17:1d:66:
4e:6b:a2:e5:bb:c7:2e:68:33:83:bd:c7:6b:26:91:
3f:a2:11:b2:74:21:69:50:2a:ae:00:5c:a6:64:f7:
69:56:11:87:f3:4b:bb:aa:90:00:65:e9:d1:86:b6:
6a:10:e6:63:1f:6f:8d:1d:a2:ea:5b:ce:22:89:83:
17:1a:40:83:14:7e:19:40:41:e6:a3:d0:08:9c:f9:
cf:ec:98:0a:f1:e8:3f:34:50:24:51:bb:cf:1a:dd:
d9:53:66:f3:1b:60:30:47:bf:3a:ea:f0:b7:df:16:
63:5f:bb:db:63:df:ad:f6:37:48:eb:de:3b:15:33:
eb:64:17:c2:58:6b:1f:c9:76:3c:87:8e:be:09:6e:
6c:52:72:99:fc:4d:98:4f:ff:55:d7:7b:a1:61:9b:
d3:f9:75:29:aa:7b:ce:6c:cb:35:ab:60:0d:ba:5f:
01:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:74:D3:44:F5:22:96:30:10:2F:51:7A:77:0D:AB:F9:D9:F1:69:12
X509v3 Authority Key Identifier:
keyid:F9:85:6D:67:4F:0E:9D:BF:60:12:D5:B5:D3:D9:6B:43:AF:D7:64:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YVtZ08Onb9gEtW109lrQ6_XZHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/9f9590-7f0a-41b3-ac4f-efd14db957fb/1/DHTTRPUiljAQL1F6dw2r-dnxaRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/9f9590-7f0a-41b3-ac4f-efd14db957fb/1/1-YVtZ08Onb9gEtW109lrQ6_XZHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.68.145.0/24
213.8.23.0/24
Signature Algorithm: sha256WithRSAEncryption
76:34:b2:92:ff:b2:cd:72:c3:b0:21:bf:3c:8b:2e:87:28:15:
d9:85:ba:11:2b:f2:a0:e8:90:61:f0:8f:42:0b:40:d5:bd:c1:
3d:08:6b:0c:e2:92:92:1e:11:79:34:d0:0b:0b:c7:37:6f:c6:
f5:5b:f7:c4:09:3b:75:a1:b0:e8:b3:df:57:5c:bf:78:06:35:
2c:ce:1f:29:2f:c9:89:dd:85:81:f0:64:74:41:2c:26:78:80:
c4:eb:72:e7:38:13:e5:c5:d5:a6:29:1c:26:43:50:56:93:55:
ea:ac:68:de:9b:1a:87:b2:3f:da:f7:50:e4:7c:17:ff:3f:dd:
1f:4e:31:1f:e1:b9:1c:af:6f:03:8e:9f:25:ca:79:52:e0:12:
fc:72:80:04:f5:2d:16:99:6c:16:8f:0e:e0:8e:d5:ee:28:71:
dc:5c:d5:c8:df:42:f3:aa:61:66:7f:f0:84:4c:b1:d3:e0:c9:
37:67:83:70:a0:22:bf:f5:6b:af:58:0c:81:3a:b3:78:e2:a4:
fa:7d:10:c7:bf:35:67:40:6c:d8:7c:fd:c2:58:cd:44:48:17:
5a:46:47:61:2d:42:26:e2:89:ef:d0:1d:d7:f3:64:4c:81:b2:
1e:35:47:20:5e:ca:cc:d4:69:69:de:23:3a:99:ac:20:ef:62:
74:68:22:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:55 2025 by rpki-client