Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/dkgR0Dnn2OPcsKGqvL0XfF_5zPg.roa
File: dkgR0Dnn2OPcsKGqvL0XfF_5zPg.roa (raw, json)
Hash identifier: /o2ckf3ETjVexvq4Ew73YTLYGPwR/iJIGcgl8T8mZ+M=
Subject key identifier: 76:48:11:D0:39:E7:D8:E3:DC:B0:A1:AA:BC:BD:17:7C:5F:F9:CC:F8
Certificate issuer: /CN=dbd7fc50548287deaea7ce92099e47a04a70d451
Certificate serial: 060CF2AE
Authority key identifier: DB:D7:FC:50:54:82:87:DE:AE:A7:CE:92:09:9E:47:A0:4A:70:D4:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/29f8UFSCh96up86SCZ5HoEpw1FE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/dkgR0Dnn2OPcsKGqvL0XfF_5zPg.roa
Signing time: Sat 01 Jan 2022 08:59:12 +0000
ROA not before: Sat 01 Jan 2022 08:59:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.73.224.0/24 maxlen: 24
2a10:f80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101511854 (0x60cf2ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbd7fc50548287deaea7ce92099e47a04a70d451
Validity
Not Before: Jan 1 08:59:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=764811d039e7d8e3dcb0a1aabcbd177c5ff9ccf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b8:38:4c:db:09:d4:79:99:4e:b4:0f:1d:55:
f7:9b:88:39:f2:43:b4:9b:f8:fc:81:36:79:77:a2:
e5:e7:53:a7:37:29:83:9e:fa:a3:15:10:30:0c:d2:
93:7c:5d:b3:ae:a9:be:c3:8d:11:fd:df:5c:20:fb:
6f:3e:46:a3:d3:18:0a:9f:dc:28:55:fc:80:b2:e4:
ec:2f:c0:39:f8:90:11:c2:42:a4:e0:aa:b5:2a:fc:
ac:38:73:92:cf:8e:61:e2:3c:d0:62:ef:e6:94:a5:
14:da:be:13:b9:ec:02:94:3e:62:41:dc:ed:b7:6e:
d5:2e:bc:4b:aa:5b:05:56:e3:22:4d:97:40:af:91:
88:b3:8b:bc:8e:24:9d:90:df:74:25:42:10:d6:1f:
ca:32:09:10:b2:22:cc:54:d3:52:c6:6b:a8:14:da:
11:fe:53:b0:7f:bc:99:63:8d:48:c1:70:27:f6:f1:
13:e5:37:13:7a:7a:c5:8e:a9:eb:f1:ea:81:7e:3d:
18:28:d3:ba:3d:d7:fd:c5:53:a5:be:96:bf:11:dd:
e7:e8:17:f0:13:82:20:71:04:6c:8d:9c:a1:2f:30:
e8:85:1d:66:3a:4c:09:99:22:47:3d:d2:24:42:10:
66:62:03:2f:e8:ff:d9:97:29:40:cb:40:2f:ca:5d:
a5:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:48:11:D0:39:E7:D8:E3:DC:B0:A1:AA:BC:BD:17:7C:5F:F9:CC:F8
X509v3 Authority Key Identifier:
keyid:DB:D7:FC:50:54:82:87:DE:AE:A7:CE:92:09:9E:47:A0:4A:70:D4:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/29f8UFSCh96up86SCZ5HoEpw1FE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/dkgR0Dnn2OPcsKGqvL0XfF_5zPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/29f8UFSCh96up86SCZ5HoEpw1FE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.224.0/24
IPv6:
2a10:f80::/32
Signature Algorithm: sha256WithRSAEncryption
52:ed:a1:f2:a9:ca:db:17:8d:23:36:ae:80:fe:cc:99:bd:a9:
cb:b1:72:bb:d2:a4:10:62:49:ef:17:01:c3:a9:c0:2a:ea:3f:
f2:22:23:2f:b1:6d:13:86:42:f6:3f:23:1b:0c:14:3f:48:80:
a9:09:83:c2:35:12:e2:46:63:86:fa:d5:7e:66:70:93:e0:0c:
7b:37:4f:ff:6c:dc:bd:1b:57:52:6c:da:4a:e1:e6:95:78:d7:
b2:7b:1a:88:16:9e:6f:2b:0a:bc:22:4a:69:80:54:65:33:40:
01:bb:8e:28:10:4a:a0:d5:df:5a:c1:ac:01:e1:f9:99:32:e8:
53:25:b8:2c:7b:2f:b7:dd:ba:21:8d:39:5c:7a:c9:37:c0:ff:
4f:2e:2f:a9:2c:e7:0c:63:1c:c7:53:32:cf:0f:fa:e4:91:33:
17:36:b3:ff:9e:23:3b:df:c4:bf:26:82:8f:45:0c:2a:e2:ef:
8a:d3:37:b5:d9:d5:61:20:0d:b5:48:c0:10:da:62:ab:76:4b:
1f:dd:8e:b8:dd:16:dc:77:68:d0:f8:1d:5f:cb:33:a2:8c:43:
b0:6b:8b:f6:a0:9c:f2:e8:a3:f3:7e:cb:28:32:ef:63:75:9c:
08:32:24:ad:90:4a:6d:1f:0b:42:3c:39:49:89:e8:33:9d:6d:
41:de:8a:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:31 2023 by rpki-client on console-ams.rpki-client.org