Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/OOQ0Pe2GodeYPsu6p_vyCQfEj2c.roa
File: OOQ0Pe2GodeYPsu6p_vyCQfEj2c.roa (raw, json)
Hash identifier: kiwXFNnOsf+rSrHJ0YlFWafTMHk5qlc0sfAyE4fhOSQ=
Subject key identifier: 38:E4:34:3D:ED:86:A1:D7:98:3E:CB:BA:A7:FB:F2:09:07:C4:8F:67
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0183A8B404EAAB1D9502A1AE6E1C417C2740
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/OOQ0Pe2GodeYPsu6p_vyCQfEj2c.roa
Signing time: Wed 05 Oct 2022 15:11:53 +0000
ROA not before: Wed 05 Oct 2022 15:11:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 5.105.24.0/24 maxlen: 24
5.105.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a8:b4:04:ea:ab:1d:95:02:a1:ae:6e:1c:41:7c:27:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Oct 5 15:11:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38e4343ded86a1d7983ecbbaa7fbf20907c48f67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f9:4a:c0:9b:f1:68:98:1b:b7:27:f1:a1:ab:
c0:24:ec:2d:dc:dc:8f:bc:13:bb:c4:ff:07:c1:45:
63:8c:35:c4:62:1a:76:83:d3:9f:a8:aa:9b:a0:73:
1d:b3:c9:4e:2a:56:4f:5b:2f:cb:3e:8c:8d:41:36:
1b:73:e0:ca:a9:5d:2a:ac:74:42:ce:08:4b:64:3d:
eb:70:b4:ee:38:d9:0a:fb:ff:d3:a5:6b:03:22:70:
9e:3a:f4:a2:92:54:fe:e9:70:e9:ed:67:6b:85:ba:
f6:39:ee:14:72:77:a4:6b:12:95:86:eb:a3:02:27:
48:ce:83:29:29:b2:e1:e8:1f:db:bf:6c:60:f6:0d:
36:90:39:d1:d1:72:91:59:77:8c:22:f7:05:96:0a:
66:94:63:9a:7b:96:90:dc:6c:79:4f:24:12:bf:43:
ea:66:11:d5:f0:00:2a:1a:19:3a:bb:42:44:10:99:
e8:e7:f2:1c:7d:65:68:fd:e0:d3:bd:d7:6e:39:cf:
70:59:27:95:0d:2c:1c:cf:3a:f6:f4:85:42:a2:44:
b7:93:ba:02:bb:e2:ff:29:05:15:d5:56:8d:82:a7:
aa:39:1b:a5:80:e6:72:26:1c:85:54:27:21:2b:5d:
93:e2:74:6c:7d:ad:27:42:6c:ae:30:df:f1:a5:b0:
79:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:E4:34:3D:ED:86:A1:D7:98:3E:CB:BA:A7:FB:F2:09:07:C4:8F:67
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/OOQ0Pe2GodeYPsu6p_vyCQfEj2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.24.0/24
5.105.166.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:b4:66:8b:ee:f5:f4:0e:b3:76:77:9e:94:f9:e7:37:83:3a:
c4:77:93:01:84:02:69:e5:81:4a:95:6a:00:6e:58:f8:0e:24:
73:c0:69:f1:66:0e:05:58:3d:5e:dc:25:73:35:98:32:59:56:
0e:fc:ed:4e:a7:67:13:67:3f:a5:e1:1f:ed:26:d5:37:92:98:
5e:da:32:88:75:41:e8:d1:7b:94:00:f0:9f:e8:1c:27:bd:24:
df:5d:db:29:77:a5:ef:31:77:94:e4:c9:ae:0c:dc:f4:b5:18:
7b:ca:18:43:5c:0a:e4:b3:1f:66:ae:47:aa:3c:f1:5a:87:7f:
23:c0:43:7d:a8:50:a3:af:0b:b0:f8:f0:88:98:4b:1a:ab:2b:
36:4b:46:c8:91:c1:fb:35:03:c9:53:8d:b9:bb:84:7b:62:3e:
f3:fd:80:64:81:97:3f:a2:69:99:d4:36:8f:99:5a:f4:bd:e3:
07:8c:53:86:de:cc:7a:81:0e:74:39:f8:50:84:9c:f3:0e:f8:
36:1f:d0:b9:2a:75:76:54:99:42:02:c2:47:68:1c:03:1c:53:
75:47:75:4b:fb:1e:bb:2e:57:47:e2:a5:3c:87:9e:1a:50:3c:
a2:d7:e4:41:8b:f6:97:fb:fb:29:ff:77:c0:73:66:bd:67:55:
76:6a:c2:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:17 2023 by rpki-client on console-fra.rpki-client.org