Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/dBXO3M0nVCe_9INvpaPdFuORmco.roa
File: dBXO3M0nVCe_9INvpaPdFuORmco.roa (raw, json)
Hash identifier: ohDZFMauCAKpS3BHOEPSGjq6xV/nHSfvAqx0bntnBD0=
Subject key identifier: 74:15:CE:DC:CD:27:54:27:BF:F4:83:6F:A5:A3:DD:16:E3:91:99:CA
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 1CDDA11B
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/dBXO3M0nVCe_9INvpaPdFuORmco.roa
Signing time: Tue 12 Apr 2022 13:27:12 +0000
ROA not before: Tue 12 Apr 2022 13:27:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 64.43.124.0/22 maxlen: 24
193.36.204.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 484286747 (0x1cdda11b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Apr 12 13:27:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7415cedccd275427bff4836fa5a3dd16e39199ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:de:cc:1e:ba:70:eb:41:78:4c:7a:04:b2:c5:
90:b0:a1:55:9d:49:ba:4f:f7:28:02:5f:84:28:03:
e5:86:a1:e6:c7:12:6e:3f:0c:bf:a3:1b:d9:4d:a1:
8c:60:41:6a:c9:23:12:06:e1:c9:26:41:69:1e:74:
7a:3c:e8:0d:0c:85:2b:14:8b:26:08:94:5b:5c:33:
82:95:90:4f:f4:5b:66:e9:27:01:38:ee:3c:77:41:
68:09:cf:d9:40:e1:88:cb:67:74:46:8d:b4:3e:a3:
22:2f:86:95:7e:1b:57:4c:02:a7:4b:67:08:5c:96:
88:15:37:48:c7:1d:f2:24:6a:be:b4:1c:e7:09:6a:
e3:57:36:0d:6a:76:a8:62:50:3a:e1:1c:83:52:b1:
b3:a4:db:4a:ea:96:a2:df:6b:65:9e:0b:59:d2:7c:
77:96:7a:9f:ff:ee:10:25:35:45:36:d7:c5:e5:6f:
a3:61:73:2e:4c:e3:6d:83:58:d4:0f:3b:69:e1:02:
95:e0:bd:fb:8d:34:98:9e:31:b8:e7:62:11:f2:d1:
e0:8c:04:16:ad:9f:eb:70:0e:8e:fb:a9:43:fd:ac:
0f:46:4b:7d:ae:a3:f1:92:cc:60:12:0d:e5:18:b6:
77:92:3c:44:f1:d6:f8:07:38:10:cb:16:fd:b6:6d:
f4:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:15:CE:DC:CD:27:54:27:BF:F4:83:6F:A5:A3:DD:16:E3:91:99:CA
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/dBXO3M0nVCe_9INvpaPdFuORmco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.43.124.0/22
193.36.204.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:79:01:d5:e6:3c:cb:e7:81:4f:d3:30:45:e0:1a:07:11:74:
73:a8:13:88:d6:dc:c6:5e:fe:39:d6:06:b1:52:ce:3a:49:b9:
9d:29:64:65:94:2f:b3:1c:44:63:2e:3f:30:57:bd:9d:a0:47:
70:1f:2c:d1:86:1d:35:0d:de:a2:75:eb:d2:e4:d4:c4:e8:da:
6d:50:03:86:0f:90:31:9b:f5:8f:87:06:d2:c8:0f:78:2c:72:
b8:5c:9e:53:21:6e:66:04:02:7a:ef:0c:72:82:c5:0a:89:c7:
b0:ab:02:d4:e0:43:d5:91:07:25:f8:66:39:c7:3b:f6:9d:76:
4b:84:0e:81:e6:57:0b:11:48:e6:27:4b:83:67:fa:ba:75:0f:
02:8b:ac:b8:5d:86:bd:50:85:2c:a0:c7:7b:2d:57:83:33:06:
36:32:80:62:18:b4:6a:8b:72:bb:61:0c:21:0d:b5:b7:d4:cb:
e2:d7:8c:3b:1b:12:13:e9:94:3c:d3:cd:d7:c6:25:8f:cd:6b:
6e:14:82:78:ec:15:26:b4:09:11:c8:6f:96:69:b2:f8:27:b3:
57:de:eb:64:33:7e:d1:33:23:e5:47:e5:2e:7f:79:92:09:9c:
bc:8f:ac:57:c8:0b:4f:80:94:86:fe:4c:0c:8b:71:1a:d5:60:
8e:25:32:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:42 2023 by rpki-client on console-ams.rpki-client.org