Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/wPdJSSOCRnUccf7VaYIWTkzVueg.roa
File: wPdJSSOCRnUccf7VaYIWTkzVueg.roa (raw, json)
Hash identifier: xdnDaRfvq/+vylUg2vZMbvW1Hglv6+zw2w0EDj58WrI=
Subject key identifier: C0:F7:49:49:23:82:46:75:1C:71:FE:D5:69:82:16:4E:4C:D5:B9:E8
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0188C4B6A3F3AAC3C2D4554F2DF4AA76D493
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/wPdJSSOCRnUccf7VaYIWTkzVueg.roa
Signing time: Fri 16 Jun 2023 14:58:03 +0000
ROA not before: Fri 16 Jun 2023 14:58:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43072
IP address blocks: 5.105.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c4:b6:a3:f3:aa:c3:c2:d4:55:4f:2d:f4:aa:76:d4:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jun 16 14:58:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c0f74949238246751c71fed56982164e4cd5b9e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:86:0b:67:fa:e3:9f:79:34:37:9f:92:5b:e3:
a2:42:ac:77:44:60:6f:88:6a:51:19:cc:04:da:65:
f3:2a:dc:19:80:a1:3a:23:03:2f:f0:f6:76:14:13:
12:e0:67:aa:b7:5e:27:7f:ec:9d:12:48:df:cb:68:
a8:21:c3:f1:15:0a:45:38:6f:11:b8:0b:45:75:b8:
0b:f6:c2:48:a1:00:a2:3d:ec:27:3f:8f:6b:48:47:
07:52:d4:c3:bd:12:50:a0:2c:09:75:b5:5a:0c:12:
6c:04:89:ae:03:60:48:ae:3b:c8:8f:1b:d2:9d:d2:
94:3e:62:50:d9:8d:ab:f7:2e:b8:41:ee:4a:80:c2:
67:1a:18:af:57:3f:90:00:70:54:63:42:f9:c9:4f:
8b:9b:0f:07:8f:73:12:b3:26:a8:8a:32:cb:05:4a:
a1:a8:d6:2e:3b:07:b2:a6:fc:5b:82:f9:ee:05:e4:
4d:de:0b:f8:54:a4:62:59:c2:c5:61:46:96:d7:15:
33:69:b1:b4:2b:ae:d1:fb:6b:03:0a:fd:71:fa:e0:
51:7b:f2:f7:90:f6:19:a9:0b:91:c1:41:65:a7:c8:
7b:4c:e3:df:e3:e0:35:17:a4:5a:75:8a:54:fd:27:
a2:2f:39:39:b6:64:8c:9b:b8:8b:3a:d7:63:d3:94:
89:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:F7:49:49:23:82:46:75:1C:71:FE:D5:69:82:16:4E:4C:D5:B9:E8
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/wPdJSSOCRnUccf7VaYIWTkzVueg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.117.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:07:5f:f8:f8:16:87:bc:b0:70:9c:32:26:57:9b:70:af:c0:
d3:a5:fe:86:18:bf:4e:22:be:f1:24:91:55:12:20:84:25:f5:
02:79:99:be:b2:ec:33:16:f8:c8:99:0b:7b:be:e4:8f:d1:ba:
e3:f6:33:23:7f:0c:b5:43:64:0c:df:ca:98:4c:fd:c2:bb:af:
75:9a:fb:8e:90:8d:9c:03:ae:38:20:a2:4c:3a:f9:5a:04:ed:
36:db:79:bf:8a:53:a9:a1:97:56:6d:ab:06:99:dd:28:1b:67:
28:d8:b5:80:36:54:d3:8c:a3:52:79:75:e7:b5:73:a3:0a:b4:
fc:11:8a:dc:01:4c:8a:89:ab:d4:0e:70:bb:5b:84:86:36:78:
84:40:9e:eb:fc:59:24:23:af:81:4a:08:e1:e1:0b:c8:b6:cf:
f4:27:bf:25:61:a6:f5:1e:68:5f:bc:39:d3:f7:99:df:96:e4:
ae:2f:54:e9:80:3c:f6:ed:8e:d0:f8:d1:77:68:6b:83:9f:67:
eb:3b:8a:0f:80:8b:2b:ad:dc:23:4e:5e:fa:af:3e:54:61:9c:
4e:ba:cc:f0:5f:13:93:78:90:7b:21:5e:52:02:8d:34:30:4a:
b6:c6:45:35:e7:78:a2:6d:7d:c2:4e:3b:5a:1f:6d:b5:e5:80:
05:c3:1c:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 17:25:35 2025 by rpki-client