Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/DeXH0AZPb3Dki1twF_RvFJK-v3E.roa
File: DeXH0AZPb3Dki1twF_RvFJK-v3E.roa (raw, json)
Hash identifier: mzaA0UinP5zmpMZ3YSMYs2/eHVzKI0OGcWO9tDXQq9c=
Subject key identifier: 0D:E5:C7:D0:06:4F:6F:70:E4:8B:5B:70:17:F4:6F:14:92:BE:BF:71
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0183FB0B19C74E782867C3A1DEC185DF04E5
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/DeXH0AZPb3Dki1twF_RvFJK-v3E.roa
Signing time: Fri 21 Oct 2022 14:55:52 +0000
ROA not before: Fri 21 Oct 2022 14:55:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399471
IP address blocks: 5.105.22.0/24 maxlen: 24
5.105.21.0/24 maxlen: 24
5.105.23.0/24 maxlen: 24
5.105.36.0/24 maxlen: 24
5.105.35.0/24 maxlen: 24
5.105.34.0/24 maxlen: 24
5.105.37.0/24 maxlen: 24
5.105.44.0/24 maxlen: 24
5.105.47.0/24 maxlen: 24
5.105.46.0/24 maxlen: 24
5.105.45.0/24 maxlen: 24
5.105.55.0/24 maxlen: 24
5.105.54.0/24 maxlen: 24
5.105.53.0/24 maxlen: 24
5.105.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:fb:0b:19:c7:4e:78:28:67:c3:a1:de:c1:85:df:04:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Oct 21 14:55:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0de5c7d0064f6f70e48b5b7017f46f1492bebf71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:be:41:03:9d:e4:ad:3e:ae:47:6c:0d:80:ce:
7f:aa:78:3f:e8:9a:e7:d3:14:7f:48:95:a9:3f:b2:
4b:41:7c:a7:87:24:fd:f8:82:33:8b:12:76:f6:fc:
1c:38:e2:3b:8e:1b:e0:b3:be:d5:e6:dc:ad:70:6c:
b8:61:78:18:42:b3:29:50:66:f8:a7:76:d6:d7:fc:
2c:08:ed:71:fc:87:8e:c6:b8:08:7a:3f:fb:60:07:
9f:90:c3:4f:36:ad:95:99:fe:10:14:06:46:21:51:
1c:42:a5:1c:de:5e:f8:e8:f7:6c:16:4f:9b:18:59:
61:6e:08:40:45:bd:e6:d1:d8:88:87:0c:37:f3:6c:
c7:11:5b:2f:f9:66:5a:4c:a0:ad:2d:5a:bd:dc:04:
b0:0e:c4:02:b2:0f:5e:dd:b8:a8:c2:e9:a9:5d:39:
81:0c:81:a9:40:e4:99:a1:9c:7b:fb:62:1c:39:77:
2b:a4:38:e6:e0:c1:d1:d9:b7:94:c3:cc:0e:ed:da:
1b:94:92:26:3b:91:5b:92:46:fb:d7:df:8e:a0:37:
a9:7c:7a:7f:21:bb:e7:1d:e4:5c:fb:7a:16:ec:5d:
27:cb:4f:9f:f3:37:5e:28:15:11:76:36:ff:6c:37:
87:43:73:22:e7:c1:59:23:b7:fb:6e:02:7f:98:96:
ea:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:E5:C7:D0:06:4F:6F:70:E4:8B:5B:70:17:F4:6F:14:92:BE:BF:71
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/DeXH0AZPb3Dki1twF_RvFJK-v3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.21.0-5.105.23.255
5.105.34.0-5.105.37.255
5.105.44.0/22
5.105.52.0/22
Signature Algorithm: sha256WithRSAEncryption
96:91:7f:d2:bb:57:84:70:5e:63:de:4d:cc:2c:66:a6:40:70:
53:31:c4:92:b1:8e:04:ea:2f:02:8f:2c:2b:96:c3:3a:d3:39:
4a:89:ba:59:d7:14:5a:52:0a:0b:58:c7:45:e8:74:9c:1d:3a:
5a:f1:d8:bf:8c:59:e7:bb:ee:d2:4a:10:05:27:20:df:34:42:
b8:5b:68:cc:06:97:8e:1f:35:9e:37:74:d1:7a:3f:d0:d6:a8:
98:5d:07:e4:4b:b3:04:5a:73:3f:71:c2:03:49:33:7d:97:75:
f3:f0:04:4c:8b:04:42:74:2c:bb:64:9f:cc:4c:68:41:c4:9c:
98:ef:e9:ea:32:8b:e2:dd:78:ca:f7:ad:61:f3:3b:6f:8d:3d:
55:b3:32:5a:3a:9b:c2:ea:ce:4e:4d:c6:b3:77:94:ba:aa:b5:
2f:b8:66:58:49:f0:ed:35:ce:43:75:33:61:b5:18:88:92:b3:
97:45:a2:1e:3d:95:d1:c2:8c:07:14:70:ce:c4:c8:08:a7:19:
b9:e2:05:62:66:a6:dc:28:d1:83:39:b3:fe:57:19:db:af:2e:
ad:ae:3e:9c:39:09:a7:32:3f:24:18:ec:c4:97:2f:a1:b2:f4:
e4:c6:42:0b:5a:30:ce:15:36:da:3e:cb:2f:30:d9:99:54:35:
79:e0:b2:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:56 2024 by rpki-client on console-ams.rpki-client.org