Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/qGHGzU4TxnrQetjfEpGNo9R34_4.roa
File: qGHGzU4TxnrQetjfEpGNo9R34_4.roa (raw, json)
Hash identifier: fbEir05aO0gLPxaarf4LVYdDS/SVXaEaaO+r9+scyl4=
Subject key identifier: A8:61:C6:CD:4E:13:C6:7A:D0:7A:D8:DF:12:91:8D:A3:D4:77:E3:FE
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0183FB01F4AB14BBC325834028DB67D81533
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/qGHGzU4TxnrQetjfEpGNo9R34_4.roa
Signing time: Fri 21 Oct 2022 14:45:52 +0000
ROA not before: Fri 21 Oct 2022 14:45:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5369
IP address blocks: 5.105.91.0/24 maxlen: 24
5.105.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:fb:01:f4:ab:14:bb:c3:25:83:40:28:db:67:d8:15:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Oct 21 14:45:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a861c6cd4e13c67ad07ad8df12918da3d477e3fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:5a:93:bb:b0:e3:f2:2a:1c:59:d8:93:0e:5c:
03:58:db:8f:4d:68:7c:44:96:0d:f8:e0:35:36:9c:
ae:78:74:b8:b7:0d:aa:29:1a:89:96:7c:db:5e:e5:
50:30:51:99:21:eb:4a:ae:7e:74:42:ea:4b:29:d0:
9c:ce:bf:56:32:5c:3d:d0:d6:a1:b9:a6:cb:74:f3:
36:59:a9:8a:97:e4:b9:94:65:d4:fd:ae:64:d7:84:
ab:e2:a4:05:fa:1c:fc:16:d9:ba:2e:a0:d2:c4:2c:
69:90:fd:d2:4c:ae:d9:be:01:67:ce:5f:77:57:49:
4a:eb:77:14:21:41:4c:c5:bd:53:ec:ff:4d:0f:3e:
07:ed:08:f8:67:54:38:91:a4:74:37:80:44:9f:9c:
28:77:3a:ab:41:3c:d6:f3:7f:e2:6a:7d:35:9d:4b:
54:71:b5:03:d2:ac:6d:4e:37:13:c0:c1:a3:99:72:
87:25:bc:0f:5c:6e:e1:20:69:5f:83:87:7e:c6:4f:
cc:57:e7:41:c7:2a:72:f5:a4:84:d7:3b:88:fe:72:
19:06:55:86:ab:65:b7:b5:5a:c5:3c:ac:ae:56:9d:
74:b1:b7:0b:f3:80:c2:eb:f9:e4:33:d2:a3:6b:2a:
bf:99:a2:7a:09:a8:e8:c7:04:80:1c:e7:a2:56:d1:
df:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:61:C6:CD:4E:13:C6:7A:D0:7A:D8:DF:12:91:8D:A3:D4:77:E3:FE
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/qGHGzU4TxnrQetjfEpGNo9R34_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.91.0-5.105.92.255
Signature Algorithm: sha256WithRSAEncryption
20:2f:69:7d:e9:8e:8a:c8:e9:22:cb:61:f8:29:f4:0d:4f:4e:
e7:6c:05:7e:4a:87:70:1b:f3:ea:d1:9e:7d:b8:ed:de:0b:d6:
40:95:84:00:73:27:94:64:48:c2:e0:10:a6:d7:55:87:22:af:
71:e1:d8:c9:b8:12:da:a8:2b:ec:cc:cc:fb:33:16:df:94:75:
f4:08:a0:99:da:7d:b8:39:9b:ba:06:a0:cc:0a:8b:ba:99:20:
04:ce:5c:b7:a8:d0:40:75:8f:40:0e:ef:e4:65:6e:28:56:03:
44:74:2d:ea:9e:a6:96:53:f6:28:bf:20:83:4d:db:d6:a0:47:
26:4e:5c:63:c1:fe:08:fa:ab:f5:20:5e:0f:b5:ec:f3:f5:09:
ec:a4:77:2e:ce:86:59:93:2f:00:84:09:1a:c8:47:49:9c:08:
a1:e0:e0:74:72:19:a1:e1:4e:44:2b:91:f0:5a:86:94:ce:87:
19:40:41:f2:52:f9:61:9d:fe:3b:07:4b:fb:ca:2d:02:48:9f:
45:ff:ed:cc:78:10:a8:d3:67:79:8a:c8:44:dc:de:6a:b9:b0:
bc:dc:4d:81:fd:ea:c7:77:30:8e:00:18:17:73:ff:f8:e7:f8:
98:70:b4:5f:08:00:82:c1:47:a4:f9:53:cf:99:dc:6d:b4:e5:
95:20:bf:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:19 2023 by rpki-client on console-fra.rpki-client.org