Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/o0qpBkgLX4E_CP52DmqoNNn-fa8.roa
File: o0qpBkgLX4E_CP52DmqoNNn-fa8.roa (raw, json)
Hash identifier: c3wLiZqCOodhqt/MnS36uSeZn9l5oXpC8i37N5FAyis=
Subject key identifier: A3:4A:A9:06:48:0B:5F:81:3F:08:FE:76:0E:6A:A8:34:D9:FE:7D:AF
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01852FD8F80FD385DE79FDE7B04C62468F16
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/o0qpBkgLX4E_CP52DmqoNNn-fa8.roa
Signing time: Tue 20 Dec 2022 14:03:46 +0000
ROA not before: Tue 20 Dec 2022 14:03:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211373
IP address blocks: 5.105.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2f:d8:f8:0f:d3:85:de:79:fd:e7:b0:4c:62:46:8f:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Dec 20 14:03:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a34aa906480b5f813f08fe760e6aa834d9fe7daf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:81:68:cf:2f:74:f5:61:7e:2c:a4:2c:fb:19:
2a:bf:52:3c:05:9a:20:39:57:a3:6e:b9:98:f2:71:
01:81:6f:91:d4:1f:72:f3:36:7a:7f:43:38:dc:fc:
12:7a:be:a7:ad:c3:ac:59:9b:85:27:ae:cc:fb:4b:
07:97:34:28:05:8a:19:c8:69:d5:f7:84:8c:cf:49:
bb:dc:a9:8c:81:0d:e0:ba:91:b4:88:28:78:69:94:
6a:d2:3d:c1:02:47:57:7b:67:cf:e2:41:5d:5a:fe:
9c:3e:d5:87:2a:b9:be:05:79:fd:7f:d2:4c:c1:ec:
c8:f0:e8:b3:b2:c1:af:a9:ec:94:bd:0f:eb:43:38:
d5:70:15:ff:aa:7b:44:47:49:3e:79:c5:56:fc:a1:
be:48:3c:14:14:d4:d6:f1:7a:94:59:94:7a:63:60:
96:44:11:83:cd:c8:21:84:5c:dd:15:e6:4e:83:d0:
03:b6:2c:d4:73:43:ad:39:75:a1:d2:bd:c7:0e:e9:
f3:4c:75:87:58:94:a9:f9:1a:af:50:02:c4:f6:f8:
9d:d8:28:23:3a:54:44:f6:6d:6c:68:b8:4a:08:68:
8e:60:7d:bc:9a:e6:85:4b:27:1c:17:69:87:80:6d:
b1:22:09:57:56:47:f0:e2:69:34:5c:a7:8d:ee:fa:
5b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:4A:A9:06:48:0B:5F:81:3F:08:FE:76:0E:6A:A8:34:D9:FE:7D:AF
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/o0qpBkgLX4E_CP52DmqoNNn-fa8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.1.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:44:da:63:72:80:e7:0a:68:c0:fe:16:17:44:89:89:0f:52:
10:c9:d7:a7:78:42:f1:05:d4:ad:fd:9e:d4:38:fd:11:dc:49:
25:d6:bd:e5:7a:06:3e:35:d6:87:1e:69:e9:31:0a:2c:fe:a1:
ec:cb:b4:24:89:6c:1e:4b:4b:37:ca:c6:33:76:91:b8:ed:b2:
ab:05:23:61:4b:df:56:35:84:50:1e:08:01:81:1a:17:ac:f3:
20:5f:47:47:99:d3:92:3d:c0:2d:e3:e8:bb:ae:c9:75:6d:fe:
a9:2a:05:a3:97:f8:8f:09:78:30:a3:36:55:53:08:0a:fd:9d:
a4:d5:7b:a4:bb:19:0f:28:58:0f:e0:69:db:e5:ee:0d:d7:c8:
ba:97:d0:48:be:7a:6d:a3:97:c9:15:4c:dd:d0:74:1e:82:89:
6f:fd:19:b3:ab:59:b8:dc:a1:9f:cd:ec:c8:ae:93:32:e0:62:
9d:46:59:8f:da:4a:06:5e:12:aa:ca:ab:a7:42:d4:0b:40:aa:
dc:20:bc:e6:eb:01:ea:dc:43:24:1e:66:34:d1:c8:16:f7:fd:
6e:0a:34:48:ac:b6:fb:b3:6f:d5:13:b6:f1:e7:2b:c1:ae:23:
ba:d5:e5:57:0d:8d:14:1c:a6:86:9f:98:f8:d8:dd:6e:7e:ed:
d9:02:2f:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:01 2023 by rpki-client on console-ams.rpki-client.org