Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/2d125f-1a60-468d-a93a-c5b6aecb6c9c/1/DwDfNi8PEj1H94syDe1d4pDPTtY.roa
File: DwDfNi8PEj1H94syDe1d4pDPTtY.roa (raw, json)
Hash identifier: ZJLizj2wlXVFN/4ATb0bFq0Y880dZ3NsJUMx8Pvwq0k=
Subject key identifier: 0F:00:DF:36:2F:0F:12:3D:47:F7:8B:32:0D:ED:5D:E2:90:CF:4E:D6
Certificate issuer: /CN=d25f2cd1a9f0da435f2e3b3ee70e64fdaf4b6121
Certificate serial: 3056C4ED
Authority key identifier: D2:5F:2C:D1:A9:F0:DA:43:5F:2E:3B:3E:E7:0E:64:FD:AF:4B:61:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0l8s0anw2kNfLjs-5w5k_a9LYSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/2d125f-1a60-468d-a93a-c5b6aecb6c9c/1/DwDfNi8PEj1H94syDe1d4pDPTtY.roa
Signing time: Sat 01 Jan 2022 13:54:54 +0000
ROA not before: Sat 01 Jan 2022 13:54:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206154
IP address blocks: 185.198.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 810992877 (0x3056c4ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d25f2cd1a9f0da435f2e3b3ee70e64fdaf4b6121
Validity
Not Before: Jan 1 13:54:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f00df362f0f123d47f78b320ded5de290cf4ed6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ee:79:95:b2:dd:17:cf:5d:45:27:dd:6d:08:
e5:2b:4a:0f:c9:a2:b0:85:c1:c3:5a:b1:d0:5c:3d:
88:9c:15:80:01:73:c5:61:eb:df:5f:54:71:09:c6:
ef:4a:2c:bb:fa:f0:fd:81:51:68:27:26:57:36:19:
d6:fc:7b:08:62:2e:79:64:73:c2:b3:21:52:2b:45:
87:28:a9:4f:e7:8b:c0:6c:81:0d:31:c7:4c:1d:2d:
18:d0:7f:55:3b:16:ad:51:74:2c:be:62:4f:dd:12:
82:3f:57:7c:3e:c7:01:0c:7d:13:bf:09:8e:e4:7a:
48:3c:e5:f5:99:04:a5:37:a6:98:27:a4:cb:0b:54:
5e:25:96:12:23:89:95:5c:9c:8d:cf:e9:be:6d:c9:
bf:44:2c:01:e3:d4:e4:ae:e8:05:bf:27:f0:d6:fb:
cf:3d:8f:03:71:0f:88:9b:17:a0:fb:cb:d1:92:50:
4b:25:87:fa:9e:af:17:53:cf:60:82:08:0f:da:8d:
ec:bc:46:f4:7b:6a:a3:f9:b4:0a:fe:0a:ee:93:73:
f3:e8:45:cd:d3:d2:6e:00:fb:ec:b6:65:5a:6f:2e:
82:90:f8:8f:ef:07:ef:b4:e7:ef:64:15:7b:3f:8b:
db:44:f0:26:c4:0b:31:dc:c8:39:23:aa:b5:29:01:
fb:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:00:DF:36:2F:0F:12:3D:47:F7:8B:32:0D:ED:5D:E2:90:CF:4E:D6
X509v3 Authority Key Identifier:
keyid:D2:5F:2C:D1:A9:F0:DA:43:5F:2E:3B:3E:E7:0E:64:FD:AF:4B:61:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0l8s0anw2kNfLjs-5w5k_a9LYSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/2d125f-1a60-468d-a93a-c5b6aecb6c9c/1/DwDfNi8PEj1H94syDe1d4pDPTtY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/2d125f-1a60-468d-a93a-c5b6aecb6c9c/1/0l8s0anw2kNfLjs-5w5k_a9LYSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.105.0/24
Signature Algorithm: sha256WithRSAEncryption
55:3a:97:b4:c0:c8:48:ad:e6:00:10:53:41:12:17:78:63:ee:
26:2a:96:1e:52:f3:43:fe:24:5b:52:7f:3d:d7:88:34:14:3d:
11:ee:e4:59:ed:a1:bd:f2:8a:ea:93:95:52:59:91:f9:75:83:
6c:0c:ef:1f:e3:f0:89:5f:95:3d:ac:55:69:b0:dc:45:b5:5e:
2b:4a:5d:9c:0e:be:e1:cd:91:30:9a:ac:f6:a3:7d:86:6b:43:
f9:0c:b4:db:10:7f:ea:c6:04:99:b1:d8:62:e3:c8:e0:2a:b3:
3d:a3:c6:75:a0:f0:eb:a3:ed:21:d1:c0:30:a5:0f:23:1f:e9:
25:2c:04:84:ed:c6:9e:6b:f4:77:dc:83:68:d7:6d:32:6f:95:
f2:be:5c:7e:fc:1b:55:b7:87:32:7a:c3:2e:f4:12:23:93:d0:
d8:de:a8:b3:f7:b6:b9:3f:5d:fb:b5:23:86:f6:f3:a2:c0:60:
d6:ca:91:22:af:a9:28:13:b0:dd:34:79:aa:dc:cc:cc:e3:c4:
23:68:f4:fb:a7:fb:2d:6d:2b:8f:61:76:86:cb:03:44:9a:00:
8d:ba:0c:bc:95:06:f3:da:75:36:73:b7:30:21:15:70:f5:89:
34:54:13:e8:5c:b8:ce:84:1a:19:cf:c2:48:ab:8c:5e:a4:ae:
f2:92:e2:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:49 2023 by rpki-client on console-ams.rpki-client.org