Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/dVB3423uWvEtJKplM4UOrSTpLos.roa
File: dVB3423uWvEtJKplM4UOrSTpLos.roa (raw, json)
Hash identifier: KFzNSeJ5IAMKzfDQ5vnZNV+CbBGrUFDjjrljuOV7H/o=
Subject key identifier: 75:50:77:E3:6D:EE:5A:F1:2D:24:AA:65:33:85:0E:AD:24:E9:2E:8B
Certificate issuer: /CN=996721831afb8b38307b49f5b9ee6292ad1e5850
Certificate serial: 075E2B41
Authority key identifier: 99:67:21:83:1A:FB:8B:38:30:7B:49:F5:B9:EE:62:92:AD:1E:58:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mWchgxr7izgwe0n1ue5ikq0eWFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/dVB3423uWvEtJKplM4UOrSTpLos.roa
Signing time: Wed 02 Mar 2022 10:42:15 +0000
ROA not before: Wed 02 Mar 2022 10:42:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 79.132.145.0/24 maxlen: 24
85.112.211.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123611969 (0x75e2b41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=996721831afb8b38307b49f5b9ee6292ad1e5850
Validity
Not Before: Mar 2 10:42:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=755077e36dee5af12d24aa6533850ead24e92e8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:aa:98:b5:2e:9c:ba:02:d2:32:00:2e:42:ba:
51:07:0f:73:bd:80:dd:01:19:53:db:4e:3c:84:9d:
e9:dc:33:7b:7b:0a:e7:25:bd:28:ef:7f:91:ed:3e:
6a:89:b2:ef:f6:b0:a8:3f:0b:68:8b:5c:93:1d:9c:
f8:5d:86:a8:81:18:74:71:ca:67:0a:e1:ad:bf:8a:
b0:1e:c2:6a:ed:b5:dc:be:f2:50:d2:07:81:f4:c7:
55:2c:87:e5:6a:a5:ae:32:43:57:ec:65:26:20:b6:
42:0a:bd:b1:d3:ec:9d:1b:1f:ee:33:b7:02:a1:5f:
15:0b:b5:32:e1:ff:52:18:6d:ee:e2:0d:fc:43:d8:
0f:08:39:da:ac:1c:6f:16:d7:c6:1f:d3:72:1b:c2:
7b:6f:f8:87:be:9b:14:59:e7:47:37:e7:26:99:1f:
7b:91:10:35:d8:1c:00:1e:81:39:43:ca:ba:05:02:
aa:13:b0:2a:6f:93:5a:0f:ed:c8:58:49:b6:bd:78:
55:d4:af:47:56:df:1f:1e:e5:e2:c0:e5:79:c7:de:
3f:e7:72:3e:36:2d:29:53:b0:93:88:07:26:2c:fb:
e0:88:ad:86:5e:9c:b0:52:71:2d:27:1a:fd:33:eb:
b7:f0:21:52:34:60:e4:a6:94:fd:55:be:49:a4:5d:
69:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:50:77:E3:6D:EE:5A:F1:2D:24:AA:65:33:85:0E:AD:24:E9:2E:8B
X509v3 Authority Key Identifier:
keyid:99:67:21:83:1A:FB:8B:38:30:7B:49:F5:B9:EE:62:92:AD:1E:58:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mWchgxr7izgwe0n1ue5ikq0eWFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/dVB3423uWvEtJKplM4UOrSTpLos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/mWchgxr7izgwe0n1ue5ikq0eWFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.132.145.0/24
85.112.211.0/24
Signature Algorithm: sha256WithRSAEncryption
90:bc:d2:2c:f1:90:1e:af:c7:30:de:53:43:a3:fe:32:22:8d:
10:42:76:52:a7:6c:b1:7b:b9:af:df:a8:75:14:54:a6:15:d8:
a5:97:af:cb:77:7a:b5:86:23:07:95:4e:73:4b:31:89:93:e7:
96:d8:6c:53:2a:43:77:df:27:54:bc:e4:c5:b5:18:b6:e8:21:
eb:92:71:d4:c0:fc:77:52:86:2e:50:74:2c:2f:36:ff:86:09:
db:98:46:af:b7:1c:5d:55:20:5f:5b:d0:d6:1e:46:72:89:8f:
13:2b:69:f5:19:a9:88:b7:94:39:01:89:c0:b4:c3:18:f0:01:
e8:ff:05:42:e7:6b:5d:a9:e2:7a:70:ce:e2:54:85:62:ae:35:
a4:49:d6:8b:73:c6:fc:1a:f5:c7:15:ee:82:4d:a1:53:ea:ae:
77:10:db:89:8b:56:36:85:cd:4a:84:9d:21:6d:13:b4:ba:e3:
90:9f:fe:1f:7a:32:b0:1e:52:33:76:48:fe:fb:22:d1:2e:d6:
8f:7d:b0:36:5b:bc:0c:ee:40:83:62:3b:51:95:27:b4:b5:7e:
49:b4:fd:59:cc:82:b0:7c:37:c1:8f:b8:e1:40:d9:2e:38:bf:
e8:6e:b5:f3:71:36:fe:19:f3:ae:49:15:b7:16:40:57:58:3c:
9d:45:bf:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:46 2024 by rpki-client on console-ams.rpki-client.org