Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/dnO6XIHXDeHZaASMzwzAMGAW9aU.roa
File: dnO6XIHXDeHZaASMzwzAMGAW9aU.roa (raw, json)
Hash identifier: cgOGzpCEyM6aHCdaaoPdgtLP5N+JMX11MDFaKKwoIWs=
Subject key identifier: 76:73:BA:5C:81:D7:0D:E1:D9:68:04:8C:CF:0C:C0:30:60:16:F5:A5
Certificate issuer: /CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Certificate serial: 01848439148F15BF3D7768E90CBDB222C3DA
Authority key identifier: 57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/dnO6XIHXDeHZaASMzwzAMGAW9aU.roa
Signing time: Thu 17 Nov 2022 06:14:04 +0000
ROA not before: Thu 17 Nov 2022 06:14:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 185.2.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:84:39:14:8f:15:bf:3d:77:68:e9:0c:bd:b2:22:c3:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Validity
Not Before: Nov 17 06:14:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7673ba5c81d70de1d968048ccf0cc0306016f5a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:83:82:da:7b:37:e7:f1:fb:27:ae:19:8b:c7:
68:da:ec:8d:ba:04:ed:bd:4a:fb:86:c4:ec:b4:e5:
02:92:bf:29:85:98:19:5b:29:85:5a:39:2e:ad:bb:
f2:76:ec:0f:db:cc:5c:9e:47:a5:a6:58:6a:b0:d6:
07:86:00:14:ae:2b:91:fb:1f:ca:cd:f6:1c:ec:03:
d4:95:11:63:ba:54:af:93:97:46:d6:b1:e1:49:dc:
94:26:95:5f:df:aa:b0:c6:7f:18:33:af:70:39:07:
39:ca:1b:ea:b9:2f:2f:c7:b0:27:af:4e:b4:18:02:
09:55:b6:d4:8c:aa:e6:d0:23:f7:ca:e9:b4:43:2c:
8a:ca:0b:7d:c1:98:f9:ef:f2:6a:e4:f7:4c:d0:f8:
c7:0e:78:9a:da:54:f3:88:b7:bb:3b:c5:22:03:3d:
2d:ee:73:25:f6:a3:f4:a5:c5:20:98:37:d2:cd:d8:
02:47:5e:f6:1a:2e:d3:7a:1d:74:72:71:57:f8:6b:
a8:6e:8f:e1:96:86:07:ac:b2:a6:a2:f4:89:8c:fe:
c4:e3:03:b4:23:b3:8c:34:c9:80:f9:78:03:61:0e:
e4:78:5e:bf:fb:02:b7:f9:e6:b4:e9:b2:ee:0a:17:
6b:43:b4:4a:84:e2:3d:b7:55:9e:d3:e3:be:2d:39:
85:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:73:BA:5C:81:D7:0D:E1:D9:68:04:8C:CF:0C:C0:30:60:16:F5:A5
X509v3 Authority Key Identifier:
keyid:57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/dnO6XIHXDeHZaASMzwzAMGAW9aU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/V5Sv215qGIV4CSClT_qCQI6oW6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.2.48.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:80:f1:42:73:35:ca:63:11:91:55:a3:18:08:60:5b:52:e3:
47:5f:c6:a8:04:b9:ee:5d:2c:83:b9:69:e1:ee:c7:dc:01:68:
6c:5b:b1:ca:7c:35:89:a7:64:cc:2c:35:94:bf:dd:86:f6:a8:
05:61:a5:1f:45:eb:a8:b9:70:20:f9:4d:2a:ae:e1:3c:19:71:
df:ef:12:12:ac:fa:35:f5:bb:9a:2f:e1:04:60:96:27:6f:f0:
ae:e7:27:fb:5a:f8:64:eb:e1:a6:a0:a4:47:19:f6:35:97:b8:
46:16:08:ee:d4:d1:f4:56:f0:a3:f0:6b:d5:83:8d:43:08:d4:
17:ef:e7:7f:42:14:73:68:e7:f4:9c:0b:de:1f:7b:89:18:17:
1f:10:5a:69:b1:59:2e:7c:cd:52:6b:bf:da:97:19:f1:57:0a:
89:f0:9b:b4:c8:12:ab:ac:f9:b6:a3:b4:f3:3f:d4:ac:03:11:
81:c8:af:09:29:f7:ce:d7:47:c0:6b:d2:bb:8a:ef:f6:89:a3:
62:fe:96:8a:0d:da:9d:86:c8:f0:6e:78:64:b1:2c:06:ba:7e:
b7:84:22:03:a1:a6:87:df:c9:5f:5a:72:3c:1e:ed:f0:b8:aa:
c6:b6:c7:fe:95:21:37:e2:da:b1:6c:6e:32:2d:b1:0f:c0:33:
31:aa:ea:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:13 2024 by rpki-client on console-ams.rpki-client.org