Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/1-R7gjtp8y0FlgQ7PnZz9rZF4bMI.roa
File: 1-R7gjtp8y0FlgQ7PnZz9rZF4bMI.roa (raw, json)
Hash identifier: O4VULdSh+2VQbJwlbo/WZjbi4MHjgqcV5oF96VjrZ/k=
Subject key identifier: F9:1E:E0:8E:DA:7C:CB:41:65:81:0E:CF:9D:9C:FD:AD:91:78:6C:C2
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01850ACEB24F1C2FDEA96F936D3B72037EC4
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/1-R7gjtp8y0FlgQ7PnZz9rZF4bMI.roa
Signing time: Tue 13 Dec 2022 09:26:36 +0000
ROA not before: Tue 13 Dec 2022 09:26:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 5.105.17.0/24 maxlen: 24
5.105.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0a:ce:b2:4f:1c:2f:de:a9:6f:93:6d:3b:72:03:7e:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Dec 13 09:26:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f91ee08eda7ccb4165810ecf9d9cfdad91786cc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:0b:8e:04:91:15:44:1e:01:26:2b:e6:9a:6e:
6c:5e:9f:9d:fd:00:72:d6:89:80:f5:64:42:49:16:
ce:5c:03:75:d2:96:73:53:93:12:35:3e:2e:e4:32:
27:ef:87:33:03:e9:95:b3:39:c5:e3:08:a7:68:34:
5c:bc:d7:48:80:16:4b:ef:b6:3b:f6:18:39:4f:0f:
ed:5e:f2:f8:77:50:e9:33:e6:65:58:0e:73:6b:59:
a2:69:cc:b2:a0:e4:26:0a:d7:54:d3:36:b8:10:4d:
69:a3:60:9a:2f:b2:a4:61:b7:cc:a1:8b:49:4d:cf:
e1:cc:d4:f0:3c:13:26:62:a3:be:3c:5e:95:fc:be:
67:44:e0:da:81:3b:8a:a4:f0:23:45:7c:de:33:81:
c1:9b:2e:29:69:22:41:ff:5e:9b:bd:eb:55:b4:f2:
1f:ad:dd:61:cd:60:6a:1c:01:5d:a3:f9:2d:8d:ee:
ed:50:87:ae:85:18:cf:b9:17:60:82:f4:81:df:18:
de:76:dd:c9:03:70:05:bc:06:6f:d9:65:5b:0f:2f:
b5:ed:eb:e0:00:2d:fc:53:2f:58:40:31:c6:1c:5b:
ec:cd:e4:de:d9:ea:d7:a3:4c:0a:4c:8a:45:8b:17:
ba:a1:e8:b2:58:18:44:56:69:6a:d3:fe:b3:ff:78:
30:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:1E:E0:8E:DA:7C:CB:41:65:81:0E:CF:9D:9C:FD:AD:91:78:6C:C2
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/1-R7gjtp8y0FlgQ7PnZz9rZF4bMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.17.0/24
5.105.137.0/24
Signature Algorithm: sha256WithRSAEncryption
58:9f:9b:1d:34:96:36:d4:d4:53:69:db:fd:47:2f:85:43:90:
45:2b:8c:95:cb:dc:f6:16:1e:5c:9e:35:6f:5c:29:81:4d:7c:
64:3b:81:87:1d:f4:bb:62:19:fe:c8:ba:c3:2d:31:ef:16:e2:
64:a2:23:94:98:95:cc:b7:79:d8:f4:66:c1:64:57:5d:0f:40:
40:98:e1:bb:2a:78:f2:39:91:ca:8a:04:b6:8c:f4:0c:d2:99:
f4:09:d3:0d:9c:2a:75:96:09:b6:33:15:14:4a:a1:d6:06:c0:
32:87:5b:48:57:df:54:cd:b3:d4:ec:27:13:20:eb:71:a3:d5:
fd:26:2f:ab:cd:9e:94:2b:02:15:08:1c:32:6e:50:38:23:1e:
b2:9b:bf:31:9e:fa:c5:78:15:be:1c:ea:7f:b1:7e:29:23:33:
a0:ad:17:4e:34:df:74:73:79:ae:26:44:a6:0d:c1:4a:2f:ad:
bd:1b:e8:25:d9:af:5c:e3:23:cd:93:f4:25:bb:eb:2c:22:19:
1e:1a:98:bc:56:85:cb:ad:d3:89:92:fe:ea:08:2d:4d:51:86:
3f:7e:1e:ff:a5:29:f9:57:c8:19:c7:c2:35:5c:c6:52:87:b1:
20:0f:a0:ae:f1:3e:b1:aa:e1:44:20:3d:5f:99:78:29:66:61:
e9:1d:22:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:59 2023 by rpki-client on console-ams.rpki-client.org