Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/i11Vrf5JlSxVlL7sRNs9vs1pgK4.roa
File: i11Vrf5JlSxVlL7sRNs9vs1pgK4.roa (raw, json)
Hash identifier: pxzEWEp8anH/UFZTDyvTL5jbPSJ1TzloxTll5AOWhZw=
Subject key identifier: 8B:5D:55:AD:FE:49:95:2C:55:94:BE:EC:44:DB:3D:BE:CD:69:80:AE
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01852E6F54F5FECA7868F929F8E52EEE73A7
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/i11Vrf5JlSxVlL7sRNs9vs1pgK4.roa
Signing time: Tue 20 Dec 2022 07:28:46 +0000
ROA not before: Tue 20 Dec 2022 07:28:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21100
IP address blocks: 5.105.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2e:6f:54:f5:fe:ca:78:68:f9:29:f8:e5:2e:ee:73:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Dec 20 07:28:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b5d55adfe49952c5594beec44db3dbecd6980ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:b6:50:73:d0:7e:e1:66:b1:61:f2:80:1e:37:
79:04:9f:20:61:f9:a2:3b:fa:61:bb:a4:09:ee:c0:
43:36:e4:7f:e8:47:4c:00:4f:77:b5:ea:65:c6:ba:
5e:07:d5:38:42:7a:6d:4c:f2:1c:03:3c:2a:2e:61:
75:5c:ce:3e:b6:2f:c1:60:f0:01:77:be:33:75:d9:
5e:ce:b0:d4:bf:31:68:80:6f:ad:d4:6f:73:53:df:
c7:ba:de:0a:89:59:75:56:b5:cb:71:83:1c:90:c0:
d2:1f:35:f6:71:a9:1d:d4:d0:9b:ec:d2:bc:72:0f:
e7:84:f5:10:9d:88:b9:4d:df:c6:55:a5:80:ec:b7:
0a:95:9f:53:29:e1:74:7b:83:11:00:c6:92:73:d3:
db:1a:ca:61:39:c4:70:fd:e5:f3:85:e5:7d:2a:cf:
75:5a:85:d1:45:ae:74:78:76:6e:77:c2:1b:ba:81:
14:02:45:ce:0a:cb:12:ed:d8:b7:60:70:e4:58:1a:
d8:c2:26:aa:90:b2:c9:f3:f4:9a:97:ff:96:2d:59:
ec:77:1a:82:2b:d1:cb:e7:d8:9a:68:dc:28:dc:83:
49:aa:cb:16:9f:bd:8d:f0:44:71:3a:07:ae:c9:a0:
84:54:76:df:48:99:3e:d2:ef:b5:fc:0b:97:fb:31:
d9:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:5D:55:AD:FE:49:95:2C:55:94:BE:EC:44:DB:3D:BE:CD:69:80:AE
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/i11Vrf5JlSxVlL7sRNs9vs1pgK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.77.0/24
Signature Algorithm: sha256WithRSAEncryption
08:a6:3b:60:c4:93:77:da:29:7b:05:b6:af:18:b0:cb:94:7e:
93:55:88:f2:b3:d0:43:e9:14:ed:38:5e:6f:7e:dd:f7:33:82:
39:ea:47:5f:e9:5c:01:0f:d9:08:cf:e4:fd:e2:bf:10:80:1f:
c0:b9:b7:59:aa:c9:ff:16:13:fc:19:25:27:ce:05:48:ce:6f:
4c:1c:ca:d7:43:d3:01:c2:28:73:5c:60:d2:9c:96:d1:5b:34:
d3:a5:91:05:1e:06:d8:de:d0:30:f4:8d:0a:34:30:fc:76:2e:
18:dd:3b:41:5c:01:34:11:92:3b:f8:8d:f9:58:dc:7c:f0:67:
78:19:be:f0:3a:ea:b3:c7:76:88:c5:cd:eb:00:de:76:34:04:
d6:95:31:c4:c9:b6:6a:33:da:53:83:59:01:89:e1:43:63:fb:
ba:bb:1f:ff:bb:d3:2b:e1:c8:a6:95:02:7f:b6:fd:66:50:85:
e7:64:20:c3:49:1c:52:fc:90:8c:dc:a5:35:ce:62:b7:32:76:
db:b2:36:6e:e4:16:eb:7c:43:51:b0:f7:d2:a0:0e:38:0c:1b:
73:93:43:7e:f4:dd:19:a1:d1:5e:08:b0:9e:df:e6:5d:b4:e4:
5d:83:58:83:d4:fc:35:e2:95:c3:55:a5:fa:09:ef:95:f5:df:
99:df:40:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:18 2023 by rpki-client on console-fra.rpki-client.org