Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/DBPH2YtOD7JMs8BIjPuK0BxpZIo.roa
File: DBPH2YtOD7JMs8BIjPuK0BxpZIo.roa (raw, json)
Hash identifier: F9xIXkqS1Of+AaCYI37XPEcct4nHU/f/lFRYz2AM8oQ=
Subject key identifier: 0C:13:C7:D9:8B:4E:0F:B2:4C:B3:C0:48:8C:FB:8A:D0:1C:69:64:8A
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 01832392712C09C483CEB8D0079968F03C51
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/DBPH2YtOD7JMs8BIjPuK0BxpZIo.roa
Signing time: Fri 09 Sep 2022 18:45:43 +0000
ROA not before: Fri 09 Sep 2022 18:45:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 103.75.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:23:92:71:2c:09:c4:83:ce:b8:d0:07:99:68:f0:3c:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Sep 9 18:45:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c13c7d98b4e0fb24cb3c0488cfb8ad01c69648a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c9:46:91:cf:56:6b:ea:d9:1d:25:3a:67:ad:
09:66:1e:17:da:34:7d:24:a3:42:8b:0f:f3:96:f1:
f4:e0:62:07:af:1b:f5:e5:83:84:97:76:f5:f9:ad:
8f:df:5a:c3:2a:fa:c5:85:4d:b7:0e:79:68:2f:88:
97:8d:4c:2b:b1:f6:f2:9b:b5:c5:ad:72:ef:31:3b:
0f:3d:b7:0a:fa:c4:f8:d3:53:2c:41:a4:4d:17:3b:
90:36:7a:c5:d1:8c:9e:4d:8b:7b:65:ef:c7:aa:aa:
7a:e5:07:44:83:c8:c7:94:86:3b:bf:d3:a6:ac:9d:
73:0a:ae:a2:8c:d9:47:d0:8d:34:75:60:53:e6:ab:
ad:56:83:62:b3:72:55:81:be:38:75:0d:7a:57:60:
35:ca:1d:97:57:a6:5c:7d:64:16:51:00:8b:35:24:
6a:e3:29:9d:29:2b:6c:2b:f7:a2:98:1e:b9:12:95:
39:7d:e5:eb:42:8a:22:7c:7b:71:39:e1:74:1e:ff:
5e:cf:84:1e:99:bc:cb:24:b8:ba:8a:a3:2c:08:cb:
98:99:31:0d:fa:8c:f5:33:4b:3b:7d:29:67:a5:cd:
90:bb:ec:40:5b:2f:4f:26:68:34:58:55:03:5c:72:
d7:40:44:f6:36:89:ba:c8:0e:87:a7:ff:22:73:f7:
77:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:13:C7:D9:8B:4E:0F:B2:4C:B3:C0:48:8C:FB:8A:D0:1C:69:64:8A
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/DBPH2YtOD7JMs8BIjPuK0BxpZIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.75.70.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:31:1d:9e:57:45:1b:c2:7e:24:1b:4e:a9:a3:d7:44:4d:66:
20:ae:d4:61:c1:00:26:39:0b:c5:69:f1:e1:d8:53:3a:4c:2a:
70:83:b4:47:4f:21:24:f5:71:e3:19:79:85:1f:af:ad:d8:90:
92:21:eb:03:b8:00:89:c2:04:0d:e1:c3:04:59:21:64:d9:42:
13:78:0d:e1:84:6b:fa:59:b5:79:57:ba:03:49:de:9b:e9:ee:
87:c0:21:87:7d:1b:bc:e7:db:8c:0f:3d:6a:2b:89:7c:d1:53:
ed:2e:af:fd:13:1c:f8:5b:16:f1:ce:0e:7b:6e:9e:aa:78:4c:
32:cf:69:3a:0c:0f:61:5e:c7:e5:40:b0:a1:87:86:ea:b9:be:
44:f9:c9:ff:00:1e:16:2f:d4:bb:2d:f9:27:c3:13:6a:37:10:
0b:ca:97:8b:d7:24:1d:00:f4:65:78:0b:db:1d:bd:7e:37:d8:
5a:52:b0:e6:70:7b:73:af:ad:00:45:e2:48:64:09:fe:f0:96:
e2:80:68:b2:cb:53:b1:3e:09:8e:83:3a:1b:15:c1:57:9d:23:
16:6e:e7:a9:4a:f6:2e:f6:5a:76:49:32:a1:b6:a4:92:71:72:
01:0a:00:cf:f3:02:41:f9:4f:5e:3d:ad:10:fb:ae:30:90:d7:
79:33:57:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:50 2023 by rpki-client on console-fra.rpki-client.org