Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/78859a-f43c-4c21-96e2-9a7ae32c625b/1/dugYQ-YVZvOPjo49aApUDMQaSXc.roa
File: dugYQ-YVZvOPjo49aApUDMQaSXc.roa (raw, json)
Hash identifier: KlPKu7od6KHRIxV+Aw2/X83HQir7P2/yd6hkWUu1Xec=
Subject key identifier: 76:E8:18:43:E6:15:66:F3:8F:8E:8E:3D:68:0A:54:0C:C4:1A:49:77
Certificate issuer: /CN=da01323efafee332064e278b97cb8d1f9d8fef79
Certificate serial: 0181F90037A17CD934354AD466D1B8DFF5A4
Authority key identifier: DA:01:32:3E:FA:FE:E3:32:06:4E:27:8B:97:CB:8D:1F:9D:8F:EF:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gEyPvr-4zIGTieLl8uNH52P73k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/78859a-f43c-4c21-96e2-9a7ae32c625b/1/dugYQ-YVZvOPjo49aApUDMQaSXc.roa
Signing time: Wed 13 Jul 2022 19:19:09 +0000
ROA not before: Wed 13 Jul 2022 19:19:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206766
IP address blocks: 188.244.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f9:00:37:a1:7c:d9:34:35:4a:d4:66:d1:b8:df:f5:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da01323efafee332064e278b97cb8d1f9d8fef79
Validity
Not Before: Jul 13 19:19:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76e81843e61566f38f8e8e3d680a540cc41a4977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:40:d9:65:7f:b3:b7:33:52:ba:26:47:fc:1a:
ef:3e:8f:2c:5f:37:10:2e:d7:77:45:e6:49:5c:ec:
d9:71:60:75:f2:1a:02:b5:28:b0:7e:75:e9:ff:33:
5a:65:e2:d0:cf:b4:b3:34:e8:6c:4b:85:1a:b2:f7:
38:cb:fd:5c:47:1d:90:99:3d:27:26:4d:16:a1:77:
44:63:9a:82:22:0a:34:6f:48:ab:b9:35:69:ce:7c:
e0:cc:38:2c:30:d3:07:69:74:21:f3:68:2a:4c:82:
0b:bd:3b:8b:af:7e:0a:8a:ef:95:fc:a0:4b:78:df:
b3:12:6a:b7:27:ca:56:5f:bc:98:03:d7:97:9f:8e:
95:8e:e4:eb:8d:ef:10:3d:68:fa:a6:29:1f:ee:1a:
3d:f5:30:8c:be:32:86:b7:1f:ad:1a:d6:bf:76:fe:
ff:e5:e9:4a:e9:d9:41:14:71:4e:88:bc:01:36:d5:
dd:1e:26:38:8c:61:66:39:c3:1e:b8:33:db:35:f2:
24:4d:55:f6:94:44:b8:9b:f8:79:44:1a:4e:79:6d:
e5:f5:b2:0a:d5:b9:69:e6:37:a6:bb:89:1a:19:ed:
d4:d7:94:15:1b:91:b6:12:f9:63:84:30:66:10:7b:
1f:18:78:61:0a:ae:d3:26:cf:3c:18:03:69:e3:c7:
30:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:E8:18:43:E6:15:66:F3:8F:8E:8E:3D:68:0A:54:0C:C4:1A:49:77
X509v3 Authority Key Identifier:
keyid:DA:01:32:3E:FA:FE:E3:32:06:4E:27:8B:97:CB:8D:1F:9D:8F:EF:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gEyPvr-4zIGTieLl8uNH52P73k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/78859a-f43c-4c21-96e2-9a7ae32c625b/1/dugYQ-YVZvOPjo49aApUDMQaSXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/78859a-f43c-4c21-96e2-9a7ae32c625b/1/2gEyPvr-4zIGTieLl8uNH52P73k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.244.112.0/24
Signature Algorithm: sha256WithRSAEncryption
53:be:b4:04:42:84:6f:81:7c:0d:40:ca:d4:cd:3b:83:a1:36:
bd:28:5d:3d:cc:42:a4:9e:a9:88:51:62:06:5c:3f:9b:9b:48:
e0:ba:a1:8f:9b:47:1f:db:ee:2d:2c:fc:32:a5:09:e5:da:6a:
f1:48:c0:67:63:00:40:20:06:02:b7:8a:ed:85:4c:db:76:e8:
d5:91:97:5c:ff:0e:f7:e2:70:77:c0:cf:35:2b:13:83:fe:09:
39:6b:a7:2f:67:78:58:85:db:68:f9:58:c9:3c:ae:7c:a2:0b:
cd:14:d6:40:43:ca:81:27:4e:fd:ed:a6:89:6f:0c:1e:c1:67:
7f:f5:7d:c4:66:95:ee:15:3e:8e:b8:df:d0:37:2b:28:75:0c:
91:a3:fe:ad:06:1d:19:75:97:12:e0:d9:c3:30:1b:52:78:37:
04:40:19:c6:70:3d:49:74:37:aa:2c:55:3b:23:36:99:be:93:
6e:b6:19:2b:98:ca:2d:e3:c2:ee:75:38:62:77:a5:0b:00:48:
a1:ce:45:11:3a:83:3d:34:5d:94:c5:c8:9d:2d:f4:61:6e:4c:
07:de:17:5f:d7:4b:75:ec:9c:7a:c6:c1:07:8a:8b:c7:12:40:
ff:da:b1:0c:16:35:60:79:87:d6:e7:96:45:bf:07:94:a5:d1:
f4:c2:5c:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:48 2023 by rpki-client on console-ams.rpki-client.org