Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/161daf-248f-4e3a-8beb-77efbc362503/1/davDGDLmPI9b1DqfDx3DNxhW7kc.roa
File: davDGDLmPI9b1DqfDx3DNxhW7kc.roa (raw, json)
Hash identifier: 6iEBolPxOrsSHMZ8R/Sz4kE8Tjnup8nqGkm89jL+NsE=
Subject key identifier: 75:AB:C3:18:32:E6:3C:8F:5B:D4:3A:9F:0F:1D:C3:37:18:56:EE:47
Certificate issuer: /CN=19ca39890f97f728152bcd85c236d8e5ff460429
Certificate serial: 069E65A2
Authority key identifier: 19:CA:39:89:0F:97:F7:28:15:2B:CD:85:C2:36:D8:E5:FF:46:04:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gco5iQ-X9ygVK82FwjbY5f9GBCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/161daf-248f-4e3a-8beb-77efbc362503/1/davDGDLmPI9b1DqfDx3DNxhW7kc.roa
Signing time: Sat 01 Jan 2022 08:03:15 +0000
ROA not before: Sat 01 Jan 2022 08:03:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 559
IP address blocks: 141.249.0.0/16 maxlen: 24
2001:67c:13c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111044002 (0x69e65a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19ca39890f97f728152bcd85c236d8e5ff460429
Validity
Not Before: Jan 1 08:03:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75abc31832e63c8f5bd43a9f0f1dc3371856ee47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a7:be:64:44:66:b8:b8:8f:0c:63:22:06:06:
47:34:26:94:af:eb:90:fe:57:19:e6:08:38:b5:da:
b3:2d:93:2b:03:bb:35:92:92:1e:07:b5:51:3e:cd:
05:8a:70:57:65:43:09:a7:73:fa:b3:43:12:7d:f6:
81:26:71:86:b4:95:ca:c7:ec:e9:2e:6d:f7:be:67:
34:c6:1d:3c:4b:bf:be:c0:97:43:09:b7:7c:53:4b:
24:98:33:5a:ab:0d:4d:9b:f4:b5:60:59:92:ac:a1:
d7:c9:1b:c7:40:84:34:df:0e:3a:7d:eb:92:73:66:
cd:8f:7b:e1:31:e6:0c:86:da:bc:89:7a:93:29:9f:
10:d1:4b:94:95:99:cc:bc:b9:65:81:7b:6b:09:10:
e8:9d:4b:25:0a:0d:30:26:ea:84:ca:91:f9:84:f4:
c6:68:f6:23:33:56:54:c5:77:a5:4b:e8:19:f9:6f:
c4:ec:a4:ff:b8:42:a1:96:89:42:8d:ad:da:4a:b0:
cd:08:74:98:57:73:c4:5c:1a:05:f8:b6:67:b3:6b:
c6:ee:e6:0d:6f:15:89:04:11:63:ae:7c:16:c3:3e:
a9:35:d2:f6:d2:86:62:f3:f1:4c:ad:91:92:45:1c:
aa:02:1b:58:62:19:ee:4d:34:50:54:53:c7:ef:78:
41:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:AB:C3:18:32:E6:3C:8F:5B:D4:3A:9F:0F:1D:C3:37:18:56:EE:47
X509v3 Authority Key Identifier:
keyid:19:CA:39:89:0F:97:F7:28:15:2B:CD:85:C2:36:D8:E5:FF:46:04:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gco5iQ-X9ygVK82FwjbY5f9GBCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/161daf-248f-4e3a-8beb-77efbc362503/1/davDGDLmPI9b1DqfDx3DNxhW7kc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/161daf-248f-4e3a-8beb-77efbc362503/1/Gco5iQ-X9ygVK82FwjbY5f9GBCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.249.0.0/16
IPv6:
2001:67c:13c0::/48
Signature Algorithm: sha256WithRSAEncryption
86:86:ed:46:b5:0a:94:cc:32:b8:cf:90:26:c4:6f:8a:b7:ac:
48:1a:4f:9c:58:6a:f3:ce:2d:14:7b:1c:97:3e:20:fc:e3:fd:
98:9e:b4:ac:83:ae:47:cd:fa:44:52:b2:54:b5:c7:47:11:18:
96:83:ec:4d:78:38:64:64:0c:c8:b6:4f:df:bc:70:7f:78:fb:
ed:63:aa:2e:3c:72:4b:94:8c:ab:29:2d:c7:85:f0:21:48:26:
b5:78:d2:b3:40:71:23:d8:0a:09:fd:4a:b7:f1:aa:90:69:2b:
38:65:3a:19:c9:1f:6b:d7:23:2b:20:b3:a8:4d:65:bb:23:83:
1d:66:df:4f:4b:f9:cd:1d:59:34:97:5e:b8:b3:62:7d:17:3d:
df:66:bc:e0:ab:cb:97:72:e7:1a:2b:4d:cd:36:b4:6a:ad:aa:
8b:f6:7f:d2:d3:45:99:74:a6:30:ca:20:44:a3:15:56:b2:7b:
6f:66:fc:9f:5b:15:49:cc:20:36:08:dd:12:ec:84:54:07:47:
79:64:9b:6f:10:c7:12:8e:fa:87:3a:11:2d:50:04:ba:46:95:
4c:7e:68:4b:bd:08:54:6b:2f:6f:a3:6a:ba:ab:82:4a:61:33:
36:1b:2e:fb:62:14:b0:5d:51:7f:2f:4e:0c:39:b2:dc:89:8d:
2f:b9:c2:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:57 2023 by rpki-client on console-fra.rpki-client.org