Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/Darv993W2ODbDjp3VbwG4ZtTBRo.roa
File: Darv993W2ODbDjp3VbwG4ZtTBRo.roa (raw, json)
Hash identifier: iX8G38x9OybEpYIY0tVZrN8nCO8FvQmu1norDdUX0GM=
Subject key identifier: 0D:AA:EF:F7:DD:D6:D8:E0:DB:0E:3A:77:55:BC:06:E1:9B:53:05:1A
Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3
Certificate serial: 01855DB85DBC2E35BB65968DA6AE51CFBB7B
Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/Darv993W2ODbDjp3VbwG4ZtTBRo.roa
Signing time: Thu 29 Dec 2022 11:50:41 +0000
ROA not before: Thu 29 Dec 2022 11:50:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3169
IP address blocks: 45.88.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5d:b8:5d:bc:2e:35:bb:65:96:8d:a6:ae:51:cf:bb:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3
Validity
Not Before: Dec 29 11:50:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0daaeff7ddd6d8e0db0e3a7755bc06e19b53051a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e1:51:b9:fb:4a:39:82:60:a6:d7:9d:7b:b7:
e1:9d:2a:a7:70:de:18:d5:a2:22:6e:81:72:3e:75:
29:ba:2d:72:46:1e:9b:68:b4:22:71:ec:86:24:1b:
28:85:b1:fc:22:58:c5:3e:62:39:19:3a:9b:f9:80:
09:7e:0a:82:ed:56:46:c6:5d:bd:3c:0a:68:ed:11:
c5:67:8f:d1:fc:54:d6:24:32:a2:ce:e5:fd:c2:0d:
97:94:b6:65:0b:6c:dd:85:86:9c:ae:4a:64:a3:04:
c2:d2:68:b1:02:8a:c6:7d:56:63:55:5a:f3:2b:a7:
6b:80:69:f7:83:bd:9d:75:2e:09:0f:28:ef:fd:5e:
3b:b6:a1:af:8f:1a:61:06:e4:f8:d2:1f:6f:ca:34:
6d:2f:a0:c2:02:e4:a3:29:26:62:40:6e:8e:a4:10:
68:c2:0e:4d:66:96:3f:03:d7:4e:39:57:27:9d:d1:
92:70:7f:72:ea:1c:69:06:9e:29:15:94:9c:e0:c2:
b3:48:8a:47:a0:0e:1a:84:64:a3:55:95:f2:db:79:
4a:16:76:2c:ef:37:cf:23:a1:e2:6e:59:25:e0:d6:
cc:35:0e:30:81:d2:ab:00:68:8c:0e:00:bd:f7:01:
ea:fa:9f:d9:6b:e8:02:96:7b:ec:49:9e:33:a2:11:
ae:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:AA:EF:F7:DD:D6:D8:E0:DB:0E:3A:77:55:BC:06:E1:9B:53:05:1A
X509v3 Authority Key Identifier:
keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/Darv993W2ODbDjp3VbwG4ZtTBRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.4.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:10:bf:1c:5e:08:8f:95:ed:3c:f4:42:54:45:74:f8:cf:65:
7e:ec:22:14:99:bd:6e:ab:55:69:2a:c0:be:ec:b1:83:1d:a8:
76:c9:56:aa:5a:7b:91:50:75:28:54:5b:43:03:5b:6d:99:e0:
ee:c9:2a:5a:13:df:49:fe:13:5c:a4:e9:49:b5:77:59:3e:a7:
11:57:9c:02:d1:7b:bb:01:c4:35:63:66:d2:0d:7a:5a:f3:e7:
21:27:af:32:5f:f8:fd:50:48:8f:8d:d8:5c:a0:e6:59:b7:8d:
20:da:2d:82:55:41:fd:61:8a:ab:69:a6:51:19:be:1c:78:96:
c3:1a:37:ca:39:c5:56:62:b1:3f:29:ca:d7:ac:db:bb:d0:cd:
03:89:2b:5f:fd:ab:91:69:3d:77:8b:4d:32:47:79:a2:bb:ea:
52:30:b7:91:10:5e:2a:92:4a:b8:2f:81:b2:8e:e2:71:e1:f3:
b4:89:a3:d6:0d:70:91:98:1b:0a:45:24:9c:56:9d:ad:cf:fb:
88:9d:b2:d7:06:a2:7e:14:7b:da:c6:c1:94:bd:ad:7d:dd:98:
7d:09:df:83:2e:ed:ba:37:7a:e3:b1:d8:a4:f4:3a:e4:63:60:
61:98:d1:b1:62:8a:da:51:a1:55:14:fc:de:58:fe:17:fd:45:
23:2b:67:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:12 2023 by rpki-client on console-ams.rpki-client.org