Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Dg9WQK9hVnf0zhO9Zj3l8B3vhJ4.roa
File: Dg9WQK9hVnf0zhO9Zj3l8B3vhJ4.roa (raw, json)
Hash identifier: TykzdUYbY30gHbSyY1jqkxL5dO5L2vNXK3sWJbPj8BE=
Subject key identifier: 0E:0F:56:40:AF:61:56:77:F4:CE:13:BD:66:3D:E5:F0:1D:EF:84:9E
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 03D2B989
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Dg9WQK9hVnf0zhO9Zj3l8B3vhJ4.roa
Signing time: Sat 01 Jan 2022 13:04:01 +0000
ROA not before: Sat 01 Jan 2022 13:04:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49353
IP address blocks: 171.22.164.0/22 maxlen: 22
2a05:a780::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64141705 (0x3d2b989)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 13:04:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e0f5640af615677f4ce13bd663de5f01def849e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:dd:29:ed:f3:e3:96:5c:68:d4:59:e8:de:02:
ab:9b:07:52:b8:21:53:e3:dc:19:fb:be:02:d1:f2:
3b:d8:5a:0f:27:06:09:3a:d5:61:af:2d:bf:51:48:
7e:bf:81:95:95:65:c8:27:80:ce:9f:d4:9d:f3:6d:
da:39:e9:e3:f6:c5:44:c6:10:aa:e1:d4:cb:31:35:
6c:1c:e5:f3:56:d3:3a:fa:1a:29:4e:2c:af:8e:3d:
41:6f:d3:2f:7e:2b:a4:60:ee:6f:3e:fc:b5:29:8f:
89:2d:53:f6:c5:28:5c:8e:60:fc:1d:6a:be:30:48:
ee:77:4c:c9:27:f8:09:91:c0:96:ed:df:7c:8f:6d:
b4:d4:63:63:4f:fd:04:81:65:06:f3:0d:1a:ed:90:
3b:73:b2:97:10:d1:38:82:0d:32:05:db:ee:40:b4:
e9:22:2c:1a:2c:e7:ff:e9:1e:b2:26:f9:99:ac:92:
66:50:79:b9:27:3d:ec:53:4c:ac:40:d2:cf:51:9f:
f6:0b:e9:bb:44:dd:36:31:7c:6b:bf:74:49:b5:39:
57:6e:a5:a9:a2:0a:86:13:b1:72:55:de:a4:97:30:
97:e1:8a:e5:bc:65:a3:1f:48:76:99:9c:81:61:4d:
e5:1d:8f:ab:bc:c4:a7:db:c1:72:14:e3:e5:f6:0b:
ed:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:0F:56:40:AF:61:56:77:F4:CE:13:BD:66:3D:E5:F0:1D:EF:84:9E
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Dg9WQK9hVnf0zhO9Zj3l8B3vhJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.164.0/22
IPv6:
2a05:a780::/29
Signature Algorithm: sha256WithRSAEncryption
3b:2c:d3:39:60:1f:3b:b3:01:58:28:33:36:1d:87:c6:fa:e1:
5b:be:33:e6:f5:20:69:15:9d:0e:72:bf:eb:ec:94:80:2c:b0:
8f:0d:37:bd:83:9a:c7:e7:d0:5c:dd:39:23:ca:81:cd:4c:4c:
83:6b:a0:bd:de:65:c6:0e:7d:63:43:47:03:7c:01:6c:d1:01:
03:ea:58:cf:e0:da:2e:33:42:84:4c:ba:2d:95:99:a3:f6:d1:
fb:65:1a:fc:14:cd:0e:92:60:44:da:bd:3e:4e:92:72:f9:20:
ff:e2:60:72:33:70:b1:53:87:9c:e0:74:71:cd:a9:9b:53:e4:
bd:98:f5:fc:85:2e:a3:a3:ed:30:33:f5:49:27:3f:da:19:78:
13:e1:2e:fb:c4:e7:38:96:b2:87:c6:7a:5c:78:b1:65:70:e2:
2f:54:0d:6e:bb:51:15:b4:d4:d5:78:7f:02:73:70:54:68:41:
4b:af:cb:6f:73:cb:37:79:82:2d:f5:bf:37:ac:fe:09:14:17:
23:1e:57:34:e3:ba:4b:c4:93:fd:72:bb:ef:77:bf:9f:8f:93:
68:3b:30:b9:47:0b:4c:21:f3:20:a6:17:55:26:5f:80:05:65:
89:ef:20:ab:c3:f8:cd:13:a0:30:c9:25:c3:a0:b9:4e:8c:ae:
b9:26:6d:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:49 2023 by rpki-client on console-fra.rpki-client.org