Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/d34fa2-3a37-4308-b783-5857f1c17624/1/5DLKvcHqKGJ7M6BP3Rtl9nagD8c.roa
File: 5DLKvcHqKGJ7M6BP3Rtl9nagD8c.roa (raw, json)
Hash identifier: 21O7p4NIjpiGeG7JDyX5kfCxlppBsAQy1vJd52/4dcw=
Subject key identifier: E4:32:CA:BD:C1:EA:28:62:7B:33:A0:4F:DD:1B:65:F6:76:A0:0F:C7
Certificate issuer: /CN=d4cf0fbd5f6e1759903cc69de0dc4ea24c1f83df
Certificate serial: 0409090F
Authority key identifier: D4:CF:0F:BD:5F:6E:17:59:90:3C:C6:9D:E0:DC:4E:A2:4C:1F:83:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1M8PvV9uF1mQPMad4NxOokwfg98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/d34fa2-3a37-4308-b783-5857f1c17624/1/5DLKvcHqKGJ7M6BP3Rtl9nagD8c.roa
Signing time: Sat 01 Jan 2022 13:56:36 +0000
ROA not before: Sat 01 Jan 2022 13:56:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212084
IP address blocks: 86.106.183.0/24 maxlen: 24
2a0d:f301:42::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67701007 (0x409090f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4cf0fbd5f6e1759903cc69de0dc4ea24c1f83df
Validity
Not Before: Jan 1 13:56:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e432cabdc1ea28627b33a04fdd1b65f676a00fc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:73:49:a8:2c:ca:4d:d2:3e:c7:e1:31:90:2d:
32:44:a2:99:e4:cf:56:cc:78:3c:05:91:49:a9:96:
f4:3a:9d:4e:e0:bc:e5:a6:71:bb:c5:f3:6b:f7:b9:
a8:f0:7d:a3:8b:20:b9:fa:3b:e8:f5:59:80:35:d0:
3a:d6:a7:eb:b2:f2:be:4d:32:df:f1:90:89:ff:1a:
20:8b:30:bd:2a:60:e8:a6:ac:5c:8c:48:ff:08:47:
72:c9:c1:60:97:8a:07:9b:1e:4c:6d:4a:ce:cb:f6:
15:0b:8b:b4:72:e0:71:82:37:cc:bd:3f:0f:c4:0b:
41:c3:d2:78:50:d9:b5:6b:4f:4d:a0:ff:3c:02:3d:
f4:b5:45:07:81:5c:9c:a1:4d:52:38:b9:09:c5:10:
3a:e8:15:2f:1f:65:a8:07:ba:2b:ee:4e:2b:0d:94:
a7:7f:c8:dd:e3:06:f6:78:39:d1:13:3b:11:b6:cf:
ea:75:2c:fc:5e:34:3b:93:b7:6f:80:19:b3:96:57:
fe:f3:75:74:6f:49:8a:d0:5e:b6:64:f6:8a:95:b5:
00:98:6d:0f:3c:8a:43:50:7a:c7:13:be:3a:bd:a2:
bc:18:2c:3c:50:86:60:b0:ea:6b:c4:61:f4:c4:94:
df:2f:4e:68:97:49:70:4f:71:6a:9e:17:c9:06:12:
5b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:32:CA:BD:C1:EA:28:62:7B:33:A0:4F:DD:1B:65:F6:76:A0:0F:C7
X509v3 Authority Key Identifier:
keyid:D4:CF:0F:BD:5F:6E:17:59:90:3C:C6:9D:E0:DC:4E:A2:4C:1F:83:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1M8PvV9uF1mQPMad4NxOokwfg98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/d34fa2-3a37-4308-b783-5857f1c17624/1/5DLKvcHqKGJ7M6BP3Rtl9nagD8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/d34fa2-3a37-4308-b783-5857f1c17624/1/1M8PvV9uF1mQPMad4NxOokwfg98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.106.183.0/24
IPv6:
2a0d:f301:42::/48
Signature Algorithm: sha256WithRSAEncryption
26:e4:f1:fd:d0:1c:af:f4:00:53:60:2d:e6:a2:61:92:2d:2c:
15:e3:54:32:4f:3b:4f:ec:06:90:a4:65:df:b2:9d:73:28:0b:
26:b9:36:dd:1a:84:a4:c3:2a:5f:7f:37:4b:48:30:f9:c8:be:
0d:fd:4d:1a:d9:a6:38:b0:f7:9b:bb:6b:3e:16:11:a9:7d:7c:
4a:45:7e:c7:e1:af:b2:53:dd:d9:8a:f5:7e:9a:36:41:e2:95:
ad:45:04:e8:76:c7:90:4e:c8:55:4e:e4:29:58:a1:06:c3:a6:
7f:cd:55:45:75:05:3f:b7:df:cf:96:59:aa:ad:f3:b6:ed:9e:
51:2b:05:e0:1c:ba:ee:36:ba:66:15:78:f9:79:a2:b8:e1:c6:
0c:63:9b:96:21:ae:7d:1b:ee:56:c2:e5:34:60:1e:e7:29:71:
ac:a4:cc:72:ce:6c:1c:a2:68:46:cd:ac:34:12:f8:da:d5:92:
4d:3e:a3:f4:b0:7f:27:cf:d5:60:8b:fb:50:37:4b:5c:2a:9e:
ea:45:b0:b4:32:ac:83:b9:f5:86:8c:03:cc:e5:fe:6d:91:36:
4d:3a:f5:8d:43:42:40:5b:84:b6:5e:54:46:ca:1b:b3:3e:79:
1b:ea:6e:e2:5c:f8:f3:bb:82:ab:7c:1c:e2:c5:da:2f:39:95:
94:82:47:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:50 2023 by rpki-client on console-ams.rpki-client.org