Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/d6MXX0P7A_-KD7qZiHFNTyu-2Aw.roa
File: d6MXX0P7A_-KD7qZiHFNTyu-2Aw.roa (raw, json)
Hash identifier: HGu5IFHUtRTGEeUNYraJEMfLxnEaz6p2/NqU5zxFme0=
Subject key identifier: 77:A3:17:5F:43:FB:03:FF:8A:0F:BA:99:88:71:4D:4F:2B:BE:D8:0C
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0189AD69A14055DDB24F4CE27D58DD030BB5
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/d6MXX0P7A_-KD7qZiHFNTyu-2Aw.roa
Signing time: Mon 31 Jul 2023 19:25:28 +0000
ROA not before: Mon 31 Jul 2023 19:25:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42689
IP address blocks: 5.105.170.0/24 maxlen: 24
5.105.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ad:69:a1:40:55:dd:b2:4f:4c:e2:7d:58:dd:03:0b:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jul 31 19:25:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77a3175f43fb03ff8a0fba9988714d4f2bbed80c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:66:a7:f9:50:3e:0a:ef:7c:25:28:06:ef:19:
12:5a:ed:5d:cb:08:e4:dc:c7:54:2d:b8:bf:72:16:
91:70:57:59:cb:63:aa:c6:92:d7:c3:70:e9:87:a3:
79:cc:9e:92:73:d7:e6:fa:85:51:4e:80:39:b9:fc:
3d:3b:a7:67:2d:da:5d:3f:26:65:5f:b5:55:d6:a9:
0b:9d:60:af:40:34:1f:5c:82:a7:b5:80:24:4c:07:
23:ce:53:e1:f4:5a:d2:9f:11:dd:ad:47:b2:24:65:
fc:55:b0:b4:ec:03:5f:79:22:32:d6:8b:0f:d1:9d:
8d:d1:90:3f:01:03:68:2f:26:1d:d1:94:f5:25:3a:
6d:a9:4b:30:1a:d5:d6:41:29:b3:8d:1d:e4:a3:88:
7e:80:f7:00:d4:4d:b6:c5:b3:52:14:3b:67:ee:e8:
24:f7:9d:b9:a4:fe:9b:ee:df:f7:0e:4d:ec:01:76:
68:62:30:a8:a4:75:28:17:f3:21:db:91:ec:9a:64:
a2:44:38:ab:5c:17:9b:71:a9:fe:d3:dc:68:ad:8a:
7e:db:41:1d:1b:aa:cd:e5:4b:5a:b1:df:21:79:0a:
56:37:40:32:0d:64:cb:3c:38:e0:10:fd:d4:31:80:
df:14:38:14:a1:bb:fe:b4:78:73:02:5d:22:ff:66:
c1:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:A3:17:5F:43:FB:03:FF:8A:0F:BA:99:88:71:4D:4F:2B:BE:D8:0C
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/d6MXX0P7A_-KD7qZiHFNTyu-2Aw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.7.0/24
5.105.170.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:a1:bc:a8:63:4d:4c:c7:a0:63:cd:a3:9f:f8:e0:7c:82:99:
61:1e:fe:d1:eb:e5:72:55:7d:03:3a:db:d3:2f:cc:ee:89:7f:
fb:8a:1b:89:cc:8f:b0:a3:96:1d:67:dd:65:34:6e:39:2c:62:
e1:40:cc:1d:09:60:cc:9a:f9:e3:92:d4:35:b1:af:0a:3e:53:
b9:50:44:fd:36:22:05:02:40:92:3e:b3:91:03:13:80:0b:35:
e2:1b:b4:b0:66:94:95:72:76:2a:65:d0:b6:13:6f:7b:1c:f1:
2c:fa:41:eb:7c:45:49:be:c5:69:f4:05:04:f1:aa:64:06:24:
da:b5:47:44:0f:a5:33:ee:75:03:1c:ef:7c:92:41:0e:e1:c2:
0e:1a:04:a6:80:36:a3:9c:e1:b1:32:72:63:52:b1:37:e9:40:
86:79:f9:c8:13:20:14:84:13:9c:cf:80:ed:a6:33:07:dd:7e:
ab:e4:57:2d:89:f4:c2:44:4a:26:3e:84:c5:0f:b1:e0:cd:26:
6e:02:fd:a3:fc:4d:e8:2c:e0:ea:f6:f7:80:77:61:8a:b2:11:
1d:f2:08:f4:ce:00:b7:18:b1:25:3b:3b:bf:b8:64:a2:af:1b:
7a:68:44:3e:e1:e3:19:2c:45:34:5e:96:35:c8:e1:ba:ac:f9:
bc:eb:00:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:49:43 2025 by rpki-client