Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/g389AotsQkPibar38865SjdrJxA.roa
File: g389AotsQkPibar38865SjdrJxA.roa (raw, json)
Hash identifier: 3aP6xaV/ZOZna4uOcxEWYpcpSFJYUqNUTUs5sUs9X5g=
Subject key identifier: 83:7F:3D:02:8B:6C:42:43:E2:6D:AA:F7:F3:CE:B9:4A:37:6B:27:10
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01840A2EE78393A2A8360D8AEEE574956DBD
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/g389AotsQkPibar38865SjdrJxA.roa
Signing time: Mon 24 Oct 2022 13:29:16 +0000
ROA not before: Mon 24 Oct 2022 13:29:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 5.105.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0a:2e:e7:83:93:a2:a8:36:0d:8a:ee:e5:74:95:6d:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Oct 24 13:29:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=837f3d028b6c4243e26daaf7f3ceb94a376b2710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:68:73:2a:4c:c6:3e:a2:11:13:99:a7:b9:d6:
8a:bc:29:8a:b7:ce:37:8b:fe:47:ca:69:c2:9b:cb:
3f:72:98:a4:e4:72:f4:8b:4e:9d:20:33:8c:57:7a:
bb:93:03:37:8e:d9:be:74:6e:18:9c:c9:c2:8b:99:
d4:71:32:28:57:04:26:98:d1:bb:04:8f:a6:6c:1c:
97:11:3e:4c:85:29:53:bd:23:16:21:85:c3:50:75:
4e:03:fe:4c:01:6b:ee:38:a2:bc:5a:c0:ca:f7:d1:
2f:c9:19:b6:60:88:39:aa:80:81:a6:a2:5c:08:81:
2e:12:88:3d:14:44:7b:38:ef:cc:ac:01:31:23:8a:
f7:ba:72:e6:bd:2d:89:95:94:4c:fb:89:e7:a7:30:
9f:12:3a:61:d8:d2:20:0f:b8:41:30:6f:c3:48:43:
d6:f8:00:c5:2f:65:ea:6a:9e:7b:0b:64:b4:d4:96:
c1:17:11:af:78:8a:ed:85:90:cb:9c:b4:c5:2a:3b:
4c:bb:b6:1f:05:d0:53:29:e1:b2:69:35:56:aa:5e:
b6:2e:d1:8c:14:70:db:66:d3:6b:08:da:b5:d9:68:
fd:72:be:d9:96:7b:e5:19:db:7f:cf:aa:20:eb:1a:
ea:0f:d2:b5:6f:e0:46:19:ad:a0:1f:4d:a2:8c:d6:
06:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:7F:3D:02:8B:6C:42:43:E2:6D:AA:F7:F3:CE:B9:4A:37:6B:27:10
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/g389AotsQkPibar38865SjdrJxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.23.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:8e:12:0e:e9:0c:46:1f:02:4c:3c:90:31:66:21:ca:1e:ad:
cd:33:8b:7d:6e:34:97:44:e1:cc:f0:d0:84:37:28:4d:89:8a:
12:6a:88:47:9c:14:6f:89:b9:53:91:83:90:af:a8:86:05:fc:
13:73:1e:9c:22:ab:55:3f:b1:a4:7c:97:80:87:b2:8b:5c:22:
f2:88:a8:66:2d:bd:89:53:0a:06:d0:93:8b:8c:e5:5f:3a:08:
85:99:e4:50:dc:69:52:a9:90:c1:88:c0:d8:18:75:81:7b:c3:
d9:35:03:b3:d4:85:a5:95:a7:ed:40:e5:1e:7c:2e:72:1f:97:
46:58:f7:15:e0:45:aa:44:03:03:1e:0a:fd:3b:84:ed:6e:81:
50:47:ac:99:a9:c3:a0:eb:94:5c:ad:a0:1e:62:00:5f:20:b4:
ba:7f:62:65:69:56:3a:50:4c:ae:96:e0:b7:36:be:6e:86:19:
18:75:14:14:a7:7d:79:5a:2b:35:35:dd:77:39:fe:24:ee:8f:
76:1c:e5:af:4e:dd:59:06:27:4b:fc:b7:b4:c3:4b:3b:21:73:
49:98:70:da:ca:cc:34:a3:ad:e0:4f:73:d7:49:45:42:ea:10:
6a:ae:50:cc:b4:e0:4c:88:8e:41:f6:61:53:e3:54:2d:e5:a5:
94:c8:18:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:18 2023 by rpki-client on console-fra.rpki-client.org