Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/o3BG3y2-Jfam2bEuhhz0etvMheo.roa
File: o3BG3y2-Jfam2bEuhhz0etvMheo.roa (raw, json)
Hash identifier: hgNtAr9KvIo06cz3fJ1krIMaPctyrE22PfYjOSspSxw=
Subject key identifier: A3:70:46:DF:2D:BE:25:F6:A6:D9:B1:2E:86:1C:F4:7A:DB:CC:85:EA
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 018441DD4119DE950379FFFE985FE8DB3B84
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/o3BG3y2-Jfam2bEuhhz0etvMheo.roa
Signing time: Fri 04 Nov 2022 08:58:49 +0000
ROA not before: Fri 04 Nov 2022 08:58:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 5.105.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:41:dd:41:19:de:95:03:79:ff:fe:98:5f:e8:db:3b:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Nov 4 08:58:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a37046df2dbe25f6a6d9b12e861cf47adbcc85ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:2f:0f:5e:5a:fc:62:cc:8c:05:2c:9a:15:0d:
d2:5a:f7:e4:31:8b:21:51:25:07:ae:4b:1a:e9:d9:
e4:10:6e:13:77:16:04:de:fa:d4:6b:10:a9:fc:f6:
83:ca:f9:8f:1c:9f:b0:cb:c2:4e:7e:f2:0a:df:99:
d7:d4:28:0b:7c:90:e7:e8:1d:2b:e2:e1:ec:b8:c4:
1f:ff:a0:c1:79:4e:66:9c:dc:b7:3a:e0:97:87:d3:
13:3d:86:a3:8a:43:d2:e3:56:3d:50:ae:3f:ef:ec:
47:eb:03:b9:8b:31:f1:af:65:6c:eb:b6:1e:fd:ca:
93:40:fc:16:29:f5:02:80:ee:ed:e9:44:d1:d9:01:
dc:4d:c9:5f:57:32:58:da:84:54:66:58:b4:d3:05:
bd:fc:c9:e0:a6:7b:28:90:7f:49:52:8f:b8:8a:ae:
c7:cd:6c:0d:f6:11:f7:1f:73:79:f3:f8:26:ef:f0:
36:87:e9:e3:98:51:bc:7c:ab:f6:1b:cf:61:94:8d:
62:35:dd:ee:da:24:bd:a6:cf:9f:02:4e:5c:22:d5:
84:14:bf:e8:fd:17:4a:82:b2:a5:d0:ea:4e:03:9f:
15:f0:e7:08:37:7d:8b:ca:c7:eb:db:2f:13:73:59:
33:97:60:8c:99:10:6d:b6:0b:7c:c0:2a:e6:20:b1:
e0:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:70:46:DF:2D:BE:25:F6:A6:D9:B1:2E:86:1C:F4:7A:DB:CC:85:EA
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/o3BG3y2-Jfam2bEuhhz0etvMheo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.166.0/24
Signature Algorithm: sha256WithRSAEncryption
86:e5:7a:94:ab:df:03:e2:12:3e:c7:b6:69:da:13:e7:02:a1:
09:b5:70:f9:cf:8b:21:98:26:d1:ce:f2:35:3a:e5:81:14:d0:
50:06:98:c4:1f:4c:99:bd:a2:2d:5a:ee:20:8a:ba:b6:92:d0:
05:ba:95:08:d6:a8:cc:b5:db:2e:32:9e:81:5c:0d:c9:8a:76:
02:69:af:62:7a:84:8f:0a:e3:27:99:0e:de:cb:e4:f3:55:2c:
ee:f4:78:c0:9e:59:1b:d0:f0:c1:e0:ed:d5:81:11:ab:be:f5:
79:55:38:99:6f:fa:6b:51:6e:e8:5e:66:86:3e:4d:b9:c9:5b:
98:20:3f:46:e0:54:74:e3:a4:ee:ec:f4:46:73:7b:3e:04:18:
97:b4:a6:e0:03:34:e5:fd:94:02:c6:81:7c:81:39:a5:ae:58:
82:87:52:c9:7a:31:03:75:a8:2a:76:de:ea:a3:cd:7f:d0:a4:
12:49:60:c2:5b:58:0f:cf:9d:4c:7b:d2:8b:f6:fa:7f:19:e2:
65:f4:d5:49:ac:4c:bf:01:90:aa:a9:30:bc:50:98:d5:5b:25:
0c:4b:33:70:7c:56:98:df:75:e9:7f:dd:e7:b9:25:c9:d5:37:
a1:e4:fe:d8:3e:f4:81:0d:55:d7:2d:1d:9d:eb:b6:e4:4f:0a:
9c:7a:dd:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:19 2023 by rpki-client on console-fra.rpki-client.org