Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/dus_GDuLszd5Q1I9PFXUAKJ5Fhc.roa
File: dus_GDuLszd5Q1I9PFXUAKJ5Fhc.roa (raw, json)
Hash identifier: 4ED0PywBC9E2dlKaWB/cGLxUgVHo5/IC4UpBgfxD8K8=
Subject key identifier: 76:EB:3F:18:3B:8B:B3:37:79:43:52:3D:3C:55:D4:00:A2:79:16:17
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 0184C837A42C8FB613485CE6A8DBD14D4588
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/dus_GDuLszd5Q1I9PFXUAKJ5Fhc.roa
Signing time: Wed 30 Nov 2022 11:06:40 +0000
ROA not before: Wed 30 Nov 2022 11:06:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 31.170.55.0/24 maxlen: 24
94.74.191.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
109.203.164.0/22 maxlen: 24
109.203.160.0/22 maxlen: 24
37.49.144.0/22 maxlen: 24
37.49.148.0/22 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.140.0/24 maxlen: 24
94.74.145.0/24 maxlen: 24
94.74.147.0/24 maxlen: 24
94.74.156.0/24 maxlen: 24
94.74.159.0/24 maxlen: 24
94.74.158.0/24 maxlen: 24
94.74.164.0/24 maxlen: 24
94.74.169.0/24 maxlen: 24
94.74.168.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c8:37:a4:2c:8f:b6:13:48:5c:e6:a8:db:d1:4d:45:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Nov 30 11:06:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76eb3f183b8bb3377943523d3c55d400a2791617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:8c:8a:67:32:9e:41:0f:88:1d:36:37:ba:b7:
73:f7:94:37:ce:4a:2d:8e:25:95:35:04:2a:fd:33:
71:ef:0e:61:e4:26:8f:8b:d8:20:04:86:96:f3:0e:
39:a5:db:98:2a:ee:7d:0a:ab:91:e0:b2:73:68:25:
c3:33:6d:1a:da:68:d6:1c:6b:1e:fe:08:08:c3:0f:
2d:ad:9a:14:b7:14:3d:e6:a0:1a:37:ca:0b:2d:1a:
c4:d1:16:b3:08:67:c9:59:e1:83:53:8c:5a:c8:d0:
f1:fa:d5:df:ff:71:03:89:27:4f:d0:a4:9e:13:24:
86:6e:ac:06:50:5f:ab:ce:4d:38:cc:f6:72:b0:f3:
8b:bf:6d:74:37:6f:45:6f:b1:bf:4d:78:38:6a:8b:
5b:2f:05:7c:5e:3b:30:64:be:92:bc:9b:3d:42:b9:
9b:7f:bc:88:a4:10:8c:7b:05:9a:af:f4:7e:c3:5d:
30:84:10:bc:45:c2:02:07:f9:c2:14:1b:be:29:86:
c4:58:6c:a6:71:9e:cf:7a:f2:cf:d4:ad:65:54:d6:
ac:9f:61:62:4f:e8:60:e5:dd:c2:52:97:09:0d:30:
37:fe:f1:8c:58:78:61:93:3f:38:17:57:d8:f6:38:
79:2f:98:f7:ae:4b:ae:91:18:14:e6:3e:87:4a:d1:
e6:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:EB:3F:18:3B:8B:B3:37:79:43:52:3D:3C:55:D4:00:A2:79:16:17
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/dus_GDuLszd5Q1I9PFXUAKJ5Fhc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.55.0/24
37.49.144.0/21
94.74.137.0/24
94.74.140.0/24
94.74.145.0/24
94.74.147.0/24
94.74.156.0/24
94.74.158.0/23
94.74.164.0/24
94.74.168.0/23
94.74.173.0/24
94.74.187.0/24
94.74.191.0/24
109.203.160.0/21
Signature Algorithm: sha256WithRSAEncryption
62:03:2b:6b:ce:61:2c:f8:d6:a2:f8:9b:0a:cf:3d:ac:49:1e:
64:d6:ea:c1:83:c6:90:bf:0d:02:f9:51:07:c1:23:8b:e2:9a:
c5:95:56:7f:2a:d9:a9:ad:d1:12:cf:f5:71:86:b0:ae:a3:93:
c1:ab:92:72:49:d1:dc:a3:2d:3c:a8:88:51:ce:1f:44:52:05:
83:1a:e0:76:b9:4a:e4:ee:1a:6a:53:ac:da:00:fc:aa:40:7e:
ba:00:85:12:d5:55:a9:6d:c2:58:17:5d:dc:fb:75:55:a3:a5:
2d:63:77:bc:3c:d0:ca:2a:66:66:63:1c:f1:a3:3e:f7:8f:19:
4d:33:3a:79:2d:68:db:e1:2f:dd:b2:f1:a7:4c:3b:a2:1c:62:
b8:41:89:25:a4:d4:0b:26:51:42:d1:6a:96:bd:d2:05:c0:26:
2c:64:fe:50:7e:19:2f:b9:16:b3:cf:d4:ab:0a:96:91:af:9e:
e3:cb:ed:b9:72:9d:42:d5:20:35:65:bc:10:07:1c:df:2d:d2:
ac:bf:9b:d5:74:e9:2f:af:f8:a7:04:d7:b1:3b:bc:fc:b2:88:
18:76:8d:53:34:58:33:b2:97:09:e3:c8:17:56:a5:36:55:8d:
f4:33:8f:5d:f0:1a:d1:96:ee:ad:5d:2b:b4:e8:a5:5a:bc:e8:
16:13:2d:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:04 2025 by rpki-client