Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/bd0d7d-f425-408a-b07d-07711ed02b75/1/DgORoVFC_-n1YZHALFhsWpYkwQM.roa
File: DgORoVFC_-n1YZHALFhsWpYkwQM.roa (raw, json)
Hash identifier: tnMorzqswTkdMVRyeiyQBDUs/k/shbDurO8Ei4Wxv0k=
Subject key identifier: 0E:03:91:A1:51:42:FF:E9:F5:61:91:C0:2C:58:6C:5A:96:24:C1:03
Certificate issuer: /CN=d6e535ef216ebe6f7fc55cfbdc31532b912d8e63
Certificate serial: 01837EAE7FE4586183646435C75441107595
Authority key identifier: D6:E5:35:EF:21:6E:BE:6F:7F:C5:5C:FB:DC:31:53:2B:91:2D:8E:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1uU17yFuvm9_xVz73DFTK5EtjmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/bd0d7d-f425-408a-b07d-07711ed02b75/1/DgORoVFC_-n1YZHALFhsWpYkwQM.roa
Signing time: Tue 27 Sep 2022 11:21:48 +0000
ROA not before: Tue 27 Sep 2022 11:21:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31736
IP address blocks: 192.162.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7e:ae:7f:e4:58:61:83:64:64:35:c7:54:41:10:75:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6e535ef216ebe6f7fc55cfbdc31532b912d8e63
Validity
Not Before: Sep 27 11:21:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e0391a15142ffe9f56191c02c586c5a9624c103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:8e:4d:c6:c7:a1:70:f6:af:c6:15:a4:df:12:
1d:ee:03:43:8f:6e:eb:57:e4:45:ee:55:e3:b0:21:
d7:2d:e4:82:e0:98:9e:82:fc:b2:5b:f3:84:30:8a:
18:cd:f1:f7:83:2c:29:ec:a1:00:a4:03:25:3b:fe:
1c:91:5a:25:c8:23:fc:58:2a:26:af:b7:2c:57:cd:
f3:94:67:21:ce:9a:3f:eb:eb:17:14:57:b8:22:40:
c3:c5:a3:c9:6b:d4:6f:a5:22:81:f6:87:9b:95:72:
87:bb:4b:76:5c:3e:df:35:b1:cc:df:b6:59:00:3a:
2c:04:12:dc:5b:c6:39:31:35:f6:4a:43:5b:80:5f:
31:be:24:82:b1:17:d5:1c:b8:5d:92:7e:83:94:0e:
df:f8:bf:f0:01:b4:b0:69:9e:75:4c:ac:e1:b8:8b:
47:49:75:83:15:ba:51:78:eb:d5:96:71:86:85:06:
6f:be:48:ad:ed:5e:7e:81:02:b1:75:6e:84:64:1d:
e4:43:2f:31:f7:8d:ab:6d:f1:40:8f:f8:00:bc:af:
9c:65:56:e9:0f:01:da:41:ec:d8:17:31:ec:44:16:
92:57:15:1d:de:80:39:b5:e4:5d:94:39:a2:c0:b4:
ce:7c:db:33:91:f0:b1:80:22:cf:e4:eb:ab:bb:73:
ad:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:03:91:A1:51:42:FF:E9:F5:61:91:C0:2C:58:6C:5A:96:24:C1:03
X509v3 Authority Key Identifier:
keyid:D6:E5:35:EF:21:6E:BE:6F:7F:C5:5C:FB:DC:31:53:2B:91:2D:8E:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1uU17yFuvm9_xVz73DFTK5EtjmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bd0d7d-f425-408a-b07d-07711ed02b75/1/DgORoVFC_-n1YZHALFhsWpYkwQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bd0d7d-f425-408a-b07d-07711ed02b75/1/1uU17yFuvm9_xVz73DFTK5EtjmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.162.28.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:9e:0e:cb:27:97:16:9d:09:87:e7:0e:ed:ab:c6:58:3d:e3:
9c:0f:b1:06:9e:20:04:29:d6:54:16:59:f9:b0:cf:8c:bf:53:
c5:14:fc:24:50:2c:09:96:a7:1c:eb:c7:9b:08:e1:43:26:7d:
b4:1e:7a:09:71:40:7a:9d:b1:5f:15:f2:60:ae:4f:21:51:59:
a0:ac:d7:dd:1c:06:b4:c3:2b:28:68:2a:a5:fe:89:b2:49:74:
92:64:5b:76:94:a6:52:90:23:13:2f:a5:21:c3:13:5e:89:77:
2f:98:a0:34:6a:74:bf:2d:cb:68:47:f6:78:bd:62:1c:e5:9c:
6d:6f:a2:f7:27:39:c3:de:ec:13:ab:eb:33:d5:27:c1:ab:eb:
e9:a9:85:bf:76:19:1b:cf:cb:16:61:bf:ac:cd:52:8c:65:dd:
66:d5:6b:0a:da:9a:89:95:17:65:dc:c4:1f:5a:0b:49:23:c7:
13:8e:83:34:76:a7:1d:8d:29:22:68:38:4b:58:04:b2:a4:81:
3d:4f:a5:96:ab:ed:b7:90:75:ae:61:c6:dc:21:7e:d1:b2:91:
2e:c8:11:b9:d2:7c:17:ba:8c:b4:63:77:b6:f2:c4:82:d8:41:
a9:7b:13:88:86:63:84:7a:1e:b9:3e:c5:00:e6:66:52:85:40:
91:ec:94:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:20 2025 by rpki-client