Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/7159eb-dd37-44ad-83e2-b26412aeb3ae/1/Dpc8F6mGX5_gPKl-QGbqxNy2dsM.roa
File: Dpc8F6mGX5_gPKl-QGbqxNy2dsM.roa (raw, json)
Hash identifier: FbQfg44hsRCdvUfFHV1b8SZBjphOWply0243BPv98n4=
Subject key identifier: 0E:97:3C:17:A9:86:5F:9F:E0:3C:A9:7E:40:66:EA:C4:DC:B6:76:C3
Certificate issuer: /CN=33d2d885477d0280264e458eb071f45d91691520
Certificate serial: 057B72EB
Authority key identifier: 33:D2:D8:85:47:7D:02:80:26:4E:45:8E:B0:71:F4:5D:91:69:15:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M9LYhUd9AoAmTkWOsHH0XZFpFSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/7159eb-dd37-44ad-83e2-b26412aeb3ae/1/Dpc8F6mGX5_gPKl-QGbqxNy2dsM.roa
Signing time: Sat 01 Jan 2022 01:52:48 +0000
ROA not before: Sat 01 Jan 2022 01:52:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9063
IP address blocks: 185.13.28.0/22 maxlen: 22
2a03:9b40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91976427 (0x57b72eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33d2d885477d0280264e458eb071f45d91691520
Validity
Not Before: Jan 1 01:52:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e973c17a9865f9fe03ca97e4066eac4dcb676c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:85:ba:cd:36:86:99:e8:d0:5e:84:ea:a8:16:
58:45:12:da:11:2f:15:b7:32:b3:a2:ce:17:3a:ab:
68:b1:0d:14:b5:0a:77:d3:bf:11:fd:ee:57:f8:6c:
59:95:5d:51:10:d7:53:e0:41:4c:b5:00:6b:b0:fe:
e1:54:18:71:a9:c7:f8:05:ac:00:fe:7b:9f:c7:c6:
e0:b5:ba:b4:96:1f:15:cd:87:18:bf:53:62:f5:95:
ba:3d:7c:4c:0f:dc:53:52:bd:d0:7d:db:60:46:45:
f5:2f:a3:ca:6d:9c:79:a8:c5:43:8b:a6:ad:7d:22:
53:3b:84:0c:d9:3a:ae:52:91:bf:08:e0:d4:79:4d:
52:57:a4:a3:3f:11:b0:8f:b2:bd:72:a2:a9:17:83:
c5:28:15:63:71:05:00:9f:96:d3:ad:f2:28:15:72:
27:d1:a4:4f:d3:19:a6:49:b4:99:53:08:9d:b9:e6:
10:3d:1e:8d:6f:b6:e5:9e:fb:7e:44:fd:9b:2c:40:
ff:2b:49:21:2f:3a:9b:27:0e:98:ee:34:23:eb:da:
20:ea:b7:b5:a8:e2:95:68:99:bc:87:fe:7b:09:5e:
45:17:4b:40:5e:57:16:f8:ce:34:02:b3:8a:c9:92:
be:7d:f9:0d:b2:0b:b3:92:a6:d9:32:29:81:d7:59:
5d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:97:3C:17:A9:86:5F:9F:E0:3C:A9:7E:40:66:EA:C4:DC:B6:76:C3
X509v3 Authority Key Identifier:
keyid:33:D2:D8:85:47:7D:02:80:26:4E:45:8E:B0:71:F4:5D:91:69:15:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M9LYhUd9AoAmTkWOsHH0XZFpFSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7159eb-dd37-44ad-83e2-b26412aeb3ae/1/Dpc8F6mGX5_gPKl-QGbqxNy2dsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7159eb-dd37-44ad-83e2-b26412aeb3ae/1/M9LYhUd9AoAmTkWOsHH0XZFpFSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.28.0/22
IPv6:
2a03:9b40::/32
Signature Algorithm: sha256WithRSAEncryption
10:ac:e8:bb:34:7a:a6:38:5b:9c:58:09:a2:dc:60:9d:f1:94:
5b:81:09:84:86:1f:72:a5:d5:c5:81:ff:b6:f8:e9:5c:ae:4a:
fa:cb:69:d5:f5:b0:c5:b5:d3:c6:79:ef:3b:61:82:f5:22:b4:
24:f0:d0:68:db:2b:26:b4:bf:8a:be:60:de:a6:29:68:99:4d:
97:da:47:3d:8d:1c:22:31:18:91:1e:23:bf:8c:d6:0f:5c:28:
54:ac:fd:42:4b:ec:68:3e:41:3b:43:f5:48:a7:41:63:71:4c:
aa:13:9a:4a:5f:83:95:ef:06:d2:a9:79:73:7a:5e:84:ad:28:
26:3d:5c:4e:41:a1:c0:ba:9b:b4:ab:e3:ae:ef:53:93:b8:b2:
94:a1:7a:ef:e2:59:32:cd:37:32:03:4f:20:76:28:c6:9f:4d:
7d:fd:d8:51:e4:9e:43:2b:1c:0d:45:ba:3f:ee:d2:6e:7e:38:
61:33:93:8e:d3:a5:53:1f:c3:30:3c:db:03:d2:73:b1:c8:09:
63:f6:0e:38:15:c3:8f:23:86:af:94:65:20:e4:ad:cc:7c:25:
57:45:dc:cf:28:f3:ed:4b:19:ee:21:fe:e7:47:9e:dd:26:4b:
29:c5:2d:a3:b1:ca:5b:2b:38:f4:4e:bc:7b:eb:9b:34:5f:b0:
ec:32:2e:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:52 2024 by rpki-client on console-ams.rpki-client.org