Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/d3d7d4-2aa9-4e91-827f-77657756595c/1/kMZ0DSItW69AHBkRq770fiRCMo4.roa
File: kMZ0DSItW69AHBkRq770fiRCMo4.roa (raw, json)
Hash identifier: hTNxlczjqbwMvy03cFy8UY+90kUJtNz2GmcTTsPirHM=
Subject key identifier: 90:C6:74:0D:22:2D:5B:AF:40:1C:19:11:AB:BE:F4:7E:24:42:32:8E
Certificate issuer: /CN=103cecccb1c2706a1ff3507627a9080f24a2feeb
Certificate serial: 020A2F79
Authority key identifier: 10:3C:EC:CC:B1:C2:70:6A:1F:F3:50:76:27:A9:08:0F:24:A2:FE:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EDzszLHCcGof81B2J6kIDySi_us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/d3d7d4-2aa9-4e91-827f-77657756595c/1/kMZ0DSItW69AHBkRq770fiRCMo4.roa
Signing time: Sat 28 May 2022 14:01:14 +0000
ROA not before: Sat 28 May 2022 14:01:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203020
IP address blocks: 5.44.248.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34221945 (0x20a2f79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=103cecccb1c2706a1ff3507627a9080f24a2feeb
Validity
Not Before: May 28 14:01:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90c6740d222d5baf401c1911abbef47e2442328e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:8c:ab:c5:f0:63:f0:52:ce:7e:e9:49:cd:f8:
5a:01:bf:c2:be:28:86:28:26:79:34:60:03:d3:7b:
64:59:bf:86:be:a2:08:14:a2:f8:d2:48:10:5d:fc:
9d:0c:74:c7:08:51:94:95:91:9a:95:34:10:07:a8:
03:a7:95:d7:c5:12:6e:a9:a6:f9:ab:0e:6e:51:ea:
5f:9f:d6:03:d9:4a:eb:c2:af:96:12:5c:ab:ca:91:
de:a4:80:67:08:df:02:2d:29:89:5d:77:ba:60:c4:
f1:88:84:bc:d8:d5:eb:47:cf:0a:fd:91:07:42:dd:
68:47:bc:f8:73:c1:57:4e:e3:00:10:0f:c7:6b:e1:
4b:4e:c3:40:80:51:b5:25:bb:b2:4d:e7:72:cf:a8:
4d:46:a5:85:c6:bc:7f:22:e3:37:98:df:a2:96:e8:
5b:10:62:0f:dd:90:47:21:b2:5c:27:d9:d7:2d:1a:
1c:e1:a3:36:5b:d1:75:83:d6:a5:11:5a:0f:84:6b:
a5:ba:bf:8d:42:71:40:ac:e9:d1:27:0b:86:94:37:
6d:7f:ed:b6:23:fe:c4:30:46:85:78:1a:8b:26:95:
47:88:7a:ff:8b:f5:6c:7b:ae:93:75:08:af:dc:f8:
11:83:48:4f:f7:47:6a:c7:94:0a:8d:db:14:ee:f1:
16:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:C6:74:0D:22:2D:5B:AF:40:1C:19:11:AB:BE:F4:7E:24:42:32:8E
X509v3 Authority Key Identifier:
keyid:10:3C:EC:CC:B1:C2:70:6A:1F:F3:50:76:27:A9:08:0F:24:A2:FE:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EDzszLHCcGof81B2J6kIDySi_us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/d3d7d4-2aa9-4e91-827f-77657756595c/1/kMZ0DSItW69AHBkRq770fiRCMo4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/d3d7d4-2aa9-4e91-827f-77657756595c/1/EDzszLHCcGof81B2J6kIDySi_us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.248.0/24
Signature Algorithm: sha256WithRSAEncryption
25:05:ca:e0:d6:a2:46:03:3c:bd:b4:0f:6d:3c:f0:42:b0:91:
5c:7e:0f:51:76:dd:54:71:05:fb:11:c7:2c:c9:46:12:17:e3:
a2:0f:bb:2e:b2:89:59:ce:62:b9:49:b0:50:c9:42:41:d6:99:
7d:5d:b5:c8:e0:be:83:17:34:8a:a9:a3:96:d6:ae:07:3c:84:
ef:ac:a2:6e:c6:ad:09:82:f3:8b:e9:50:c8:31:a1:e1:12:20:
b8:ea:b6:ea:11:2a:95:c8:75:a7:ee:b9:ce:16:20:53:c3:7a:
ac:6d:13:24:e0:df:44:96:8f:37:fc:e1:93:2a:c3:a7:d2:8a:
2f:b4:a9:ae:69:bf:72:46:68:dd:b2:d1:00:c1:01:ea:32:a7:
d2:cc:03:51:ec:31:38:da:fc:c6:2c:57:f3:c8:24:41:b3:8f:
c4:95:98:26:63:2a:9d:b4:ce:31:03:c8:84:3c:ab:95:a3:ea:
e4:c7:6d:a4:08:df:12:8f:14:d2:b0:d1:9a:9e:bd:87:dd:e3:
f2:76:46:c5:3f:73:31:09:c2:16:bd:57:6b:b4:e2:bd:78:81:
02:01:3a:61:88:9e:7a:9e:38:41:c6:ca:c1:e4:07:b9:68:3c:
93:60:2f:39:77:a1:9a:a6:12:d3:8e:34:db:b5:f6:c1:61:87:
ae:0c:7c:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:41 2023 by rpki-client on console-fra.rpki-client.org