Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/69f3f3-0faa-465f-aa7a-d71ca19f989e/1/5Dl6GCXhEWQ_YQa8n3nzV_8c-bw.roa
File: 5Dl6GCXhEWQ_YQa8n3nzV_8c-bw.roa (raw, json)
Hash identifier: Q+O/EQmtlx0ePIzGOgNLjIylqqDksFaPUuvErI0ymO0=
Subject key identifier: E4:39:7A:18:25:E1:11:64:3F:61:06:BC:9F:79:F3:57:FF:1C:F9:BC
Certificate issuer: /CN=75b982eaba4408cd941899f5ceec1da6a67c5c49
Certificate serial: 0951238E
Authority key identifier: 75:B9:82:EA:BA:44:08:CD:94:18:99:F5:CE:EC:1D:A6:A6:7C:5C:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dbmC6rpECM2UGJn1zuwdpqZ8XEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/69f3f3-0faa-465f-aa7a-d71ca19f989e/1/5Dl6GCXhEWQ_YQa8n3nzV_8c-bw.roa
Signing time: Sat 01 Jan 2022 10:58:31 +0000
ROA not before: Sat 01 Jan 2022 10:58:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203111
IP address blocks: 185.144.104.0/22 maxlen: 22
2a07:3e80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156312462 (0x951238e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75b982eaba4408cd941899f5ceec1da6a67c5c49
Validity
Not Before: Jan 1 10:58:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4397a1825e111643f6106bc9f79f357ff1cf9bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:7c:32:af:97:a6:a6:90:20:19:1c:a8:34:f1:
1c:dc:be:35:3e:bb:43:9f:0e:5e:fa:f7:71:bb:75:
a8:ba:42:87:06:60:93:72:62:16:20:23:cf:dd:5b:
22:3b:d2:3e:7d:1f:2b:f5:37:68:a0:a6:b8:0a:88:
83:48:3b:01:0b:d0:f0:b5:97:82:f4:80:72:f8:e7:
cf:ea:99:91:1e:2b:3b:ff:0c:41:b0:b0:a9:20:f4:
53:75:33:9f:e0:6d:6c:2d:70:50:74:6c:3b:a9:7f:
18:da:64:d5:5c:7d:84:74:b4:c4:1d:a8:b6:4f:c1:
7c:14:f3:b0:18:3f:a6:5f:9f:2e:4a:c7:e7:be:d7:
ff:d6:76:7d:07:1d:d7:ec:f9:ce:be:c3:ad:67:de:
11:db:36:32:1b:6e:a9:3b:0b:b0:4d:dd:33:ee:44:
95:3b:66:2a:5e:8b:c8:14:33:ba:0d:c7:f8:00:6a:
80:84:f8:4c:9d:79:49:96:3d:94:a2:2e:29:d8:f7:
11:6e:5d:b0:63:7f:5b:d6:f2:e7:72:83:38:62:2f:
97:12:55:dd:3d:9c:8c:af:15:9b:2c:b5:52:31:9b:
65:61:07:56:33:03:bc:fc:7a:c7:26:8f:0b:13:ed:
68:10:78:73:59:33:ac:3b:df:a1:70:e1:e0:d1:ef:
8e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:39:7A:18:25:E1:11:64:3F:61:06:BC:9F:79:F3:57:FF:1C:F9:BC
X509v3 Authority Key Identifier:
keyid:75:B9:82:EA:BA:44:08:CD:94:18:99:F5:CE:EC:1D:A6:A6:7C:5C:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dbmC6rpECM2UGJn1zuwdpqZ8XEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/69f3f3-0faa-465f-aa7a-d71ca19f989e/1/5Dl6GCXhEWQ_YQa8n3nzV_8c-bw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/69f3f3-0faa-465f-aa7a-d71ca19f989e/1/dbmC6rpECM2UGJn1zuwdpqZ8XEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.104.0/22
IPv6:
2a07:3e80::/29
Signature Algorithm: sha256WithRSAEncryption
59:45:43:8f:42:ce:5a:d7:a8:5d:e3:65:55:5b:94:7f:58:1a:
88:a9:ff:e1:5a:26:55:60:f4:4d:19:dc:87:66:25:cc:57:36:
7e:28:c0:b3:81:db:de:c9:d9:c2:4b:1c:68:29:bc:33:fa:1a:
fa:b0:45:cf:f3:c4:ea:0b:0a:a0:06:68:53:51:0c:32:66:d2:
37:b9:b1:24:44:75:a8:c6:48:81:65:23:92:67:ac:a4:e4:16:
c0:db:bf:f3:cd:51:ed:14:40:8b:b0:3e:da:a0:c7:31:e6:82:
c9:15:02:4f:fc:fa:8e:a0:65:50:23:92:0c:52:45:80:f2:51:
40:03:1d:0d:11:83:69:3b:f0:d4:50:79:c7:66:d1:3f:2e:d5:
3b:01:26:fa:83:77:a6:2f:f5:67:e4:4d:95:57:7d:3c:39:3d:
ca:e6:fd:0d:d0:3c:ee:52:03:4e:ed:4c:e1:f8:ab:df:a4:37:
ae:50:90:ba:c5:b9:d1:89:85:59:62:48:5a:af:85:1f:ea:56:
00:b6:22:7f:76:a3:07:a5:7d:c3:ff:24:26:1e:ca:d7:f1:51:
ea:97:06:75:22:1e:33:85:b6:a8:d2:30:9a:40:94:aa:80:25:
24:b8:b6:31:47:e8:69:aa:de:c7:bf:01:72:c5:0a:7d:e5:c5:
01:ea:51:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:58 2024 by rpki-client on console-ams.rpki-client.org