Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/8_q_YQEarPd5r40b2TTvhxfIqX8.roa
File: 8_q_YQEarPd5r40b2TTvhxfIqX8.roa (raw, json)
Hash identifier: SXt9Lk7ddNvkIZ7wqCpDisgR/FFn/sLvG4DNNkk/kgM=
Subject key identifier: F3:FA:BF:61:01:1A:AC:F7:79:AF:8D:1B:D9:34:EF:87:17:C8:A9:7F
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01855D089932ABBFAB1D682F88768C4302AB
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/8_q_YQEarPd5r40b2TTvhxfIqX8.roa
Signing time: Thu 29 Dec 2022 08:38:42 +0000
ROA not before: Thu 29 Dec 2022 08:38:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38337
IP address blocks: 5.105.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5d:08:99:32:ab:bf:ab:1d:68:2f:88:76:8c:43:02:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Dec 29 08:38:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f3fabf61011aacf779af8d1bd934ef8717c8a97f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:64:d7:92:c7:55:f1:f8:e4:ac:fe:2c:94:f3:
e0:69:23:57:0f:4b:94:92:c2:c0:a1:43:00:4e:15:
d7:49:3a:03:6f:b5:38:38:69:b9:12:e1:41:fc:b0:
c5:76:0c:72:07:d4:fb:dc:cc:08:33:51:95:7f:1d:
c1:e3:0e:36:fb:d4:fa:e6:94:e9:05:1d:f5:36:88:
74:8e:3b:18:69:8b:2e:66:36:80:de:d7:15:59:ce:
ea:c2:11:c1:6b:7b:65:75:6c:db:4d:ec:d5:da:28:
e7:0c:4b:64:5a:66:5c:08:6d:8a:80:76:bd:a7:b8:
d1:94:4c:1a:8b:c0:f2:b6:a0:a6:b0:f2:65:a5:ae:
1a:22:6f:48:3c:af:3f:94:c3:cd:b2:59:02:0d:a9:
e7:88:d1:20:c5:09:3c:10:a4:db:d4:50:37:b0:da:
d9:05:ed:e0:60:e2:fc:9e:14:fd:44:ad:52:1a:29:
94:d3:00:99:3b:9a:0c:76:a3:9f:15:18:5f:3e:4e:
f2:26:ca:31:8c:58:c2:58:e1:33:7e:1a:7e:32:2c:
ad:88:b9:56:63:a8:93:b3:ee:58:6a:f2:e1:c9:03:
f7:c2:e8:b7:d2:8c:8d:1b:ef:e3:71:1a:cb:1c:1f:
d2:91:59:e7:73:0c:de:34:64:b8:e9:35:c3:11:9b:
5d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:FA:BF:61:01:1A:AC:F7:79:AF:8D:1B:D9:34:EF:87:17:C8:A9:7F
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/8_q_YQEarPd5r40b2TTvhxfIqX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.19.0/24
Signature Algorithm: sha256WithRSAEncryption
74:90:fa:49:6f:51:92:5d:37:ef:de:31:1b:fc:5f:b2:4a:06:
81:14:96:53:01:72:4a:bd:7d:34:d2:4c:80:5b:e9:f2:ae:36:
6c:c5:eb:aa:de:00:65:0d:a3:b1:2e:c5:c9:a5:8c:10:ee:76:
f5:d0:a0:f3:3b:08:7c:e4:ea:7e:4a:62:1c:60:3b:11:cc:83:
ba:e9:e4:34:89:a4:18:7d:d4:72:e0:08:2b:39:22:76:56:1f:
39:48:f1:6a:56:7a:e4:7f:4f:c6:c0:1e:ab:2e:fa:77:33:13:
2b:de:bb:19:af:d5:13:0e:7e:8d:b0:0c:e2:14:69:f6:b6:eb:
de:b4:ae:02:5d:51:7b:d3:d3:d3:73:88:e2:63:53:f4:da:94:
9a:76:73:2a:23:be:25:de:e1:fd:6d:67:ce:9b:35:f8:ca:43:
76:c5:97:ee:1c:09:10:b5:c3:d5:07:48:dc:6a:9b:6a:94:e4:
48:79:d0:3a:30:80:3a:4f:27:dd:eb:39:e7:b6:f7:a3:db:3d:
8f:46:d8:10:4f:29:fb:04:eb:34:cd:ce:1c:11:a0:34:3a:43:
d6:dc:7e:33:db:e0:7d:34:e6:b6:a9:1a:e7:d0:1c:d6:22:7c:
d5:c4:07:12:79:1e:31:1b:30:e8:63:af:66:23:96:55:c0:2a:
1c:3d:50:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:17 2023 by rpki-client on console-fra.rpki-client.org