Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/04piwet8bZUmb7SGP-RD7EPNcjc.roa
File: 04piwet8bZUmb7SGP-RD7EPNcjc.roa (raw, json)
Hash identifier: igzHO9cNECcwWkNf9qDI5LjprZdpEeqU2IbKXPHEJ+M=
Subject key identifier: D3:8A:62:C1:EB:7C:6D:95:26:6F:B4:86:3F:E4:43:EC:43:CD:72:37
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 018465E5666A7EC57E42647D7C19E0B194AC
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/04piwet8bZUmb7SGP-RD7EPNcjc.roa
Signing time: Fri 11 Nov 2022 08:54:03 +0000
ROA not before: Fri 11 Nov 2022 08:54:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 103.75.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:65:e5:66:6a:7e:c5:7e:42:64:7d:7c:19:e0:b1:94:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Nov 11 08:54:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d38a62c1eb7c6d95266fb4863fe443ec43cd7237
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b4:ba:ea:95:e7:53:c9:18:8d:9f:1d:26:31:
ed:27:93:45:d7:df:fc:79:fc:82:37:87:22:0d:3b:
3a:ff:64:ed:a6:93:dd:36:9e:97:4d:e9:ee:12:f9:
d4:a3:6e:2b:a5:80:35:36:bc:5c:bb:a5:ba:41:57:
c9:83:da:aa:95:0e:6b:c5:42:41:b3:41:03:92:66:
3d:0b:06:21:ee:2b:8d:63:3e:c8:4e:da:f6:38:fd:
7e:8e:6a:ab:35:45:04:e7:c8:1f:be:47:19:0d:88:
bb:5b:dc:43:4b:c2:b7:21:57:32:a6:44:18:c9:d1:
fd:b8:3c:71:f2:39:2e:19:86:b6:b8:ca:d9:04:4f:
33:68:ee:e5:86:c0:e0:82:9c:c1:78:af:40:8c:6a:
c8:09:52:64:02:3f:f4:e8:1c:9f:ff:99:d2:c1:5f:
cd:7f:01:c9:4e:13:c3:90:2d:bf:15:de:2e:86:e9:
db:6b:69:b1:be:32:31:17:92:3c:87:5d:7a:eb:6b:
9e:dc:f3:e9:e8:12:6e:9a:b0:2f:66:e7:1c:f1:5d:
cf:77:8e:15:66:68:37:64:5d:75:59:a3:f2:e4:91:
b6:f3:46:e9:d4:e1:bb:ce:2b:0f:e1:a0:3c:1f:cb:
76:c4:f9:41:6d:0a:72:58:9c:72:b1:9b:83:36:52:
4a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:8A:62:C1:EB:7C:6D:95:26:6F:B4:86:3F:E4:43:EC:43:CD:72:37
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/04piwet8bZUmb7SGP-RD7EPNcjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.75.71.0/24
Signature Algorithm: sha256WithRSAEncryption
23:45:65:b4:be:e7:08:ca:01:e0:da:09:dc:98:e1:f7:10:32:
8d:c8:fc:69:98:88:24:37:69:df:8b:69:d6:37:c7:36:64:b8:
7b:fe:9d:f8:14:79:2e:53:25:8e:56:37:41:c9:1d:2c:b4:57:
84:3b:87:cc:38:48:ac:c9:7b:0d:fd:bd:af:0d:e6:e7:c2:78:
7c:72:63:17:67:ed:87:0f:37:b4:13:74:d5:7a:92:9c:ec:43:
59:77:64:b3:e5:f2:03:a1:32:c5:e3:49:c8:f0:33:41:8d:0c:
30:39:76:0b:4f:af:64:7b:00:fa:fb:ee:e0:77:01:c9:5a:2b:
46:3d:0c:32:cc:5b:8f:13:62:22:45:bf:36:84:59:c5:30:c6:
b4:ea:90:57:ed:c9:a3:ea:2b:65:7d:b9:7f:28:d0:99:49:be:
84:90:c5:d4:a1:a2:85:5d:dc:f6:76:3b:f7:1c:22:42:de:5b:
97:ee:66:82:ee:2a:fd:e3:d0:d0:8c:7c:50:4f:6a:68:ae:61:
08:ec:70:c3:72:e2:af:8f:9a:a1:76:04:fe:63:93:49:8c:f7:
ae:6f:38:19:07:a0:3a:01:2e:55:1b:41:af:72:bb:6d:f0:5c:
40:84:49:cc:ca:09:2a:fd:46:c6:a0:6d:ef:61:7e:84:89:7a:
e2:73:97:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:34 2023 by rpki-client on console-ams.rpki-client.org