Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/6f36c2-d05c-4425-a9e4-5e37e7f3f15d/1/dkUI-crTiDp5WwjUyyvERx9rMP8.roa
File: dkUI-crTiDp5WwjUyyvERx9rMP8.roa (raw, json)
Hash identifier: MHjmIcXA5uMahpOaX5x2kzGT1fulO+HSraR7UnR8pN8=
Subject key identifier: 76:45:08:F9:CA:D3:88:3A:79:5B:08:D4:CB:2B:C4:47:1F:6B:30:FF
Certificate issuer: /CN=3c568c59d7a83199c3a79ea0e8375b946ed884e2
Certificate serial: 199129D4
Authority key identifier: 3C:56:8C:59:D7:A8:31:99:C3:A7:9E:A0:E8:37:5B:94:6E:D8:84:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PFaMWdeoMZnDp56g6DdblG7YhOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/6f36c2-d05c-4425-a9e4-5e37e7f3f15d/1/dkUI-crTiDp5WwjUyyvERx9rMP8.roa
Signing time: Sat 01 Jan 2022 10:54:54 +0000
ROA not before: Sat 01 Jan 2022 10:54:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58324
IP address blocks: 5.100.144.0/21 maxlen: 21
185.150.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 428943828 (0x199129d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c568c59d7a83199c3a79ea0e8375b946ed884e2
Validity
Not Before: Jan 1 10:54:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=764508f9cad3883a795b08d4cb2bc4471f6b30ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d3:f3:cd:02:59:20:c4:41:3f:45:eb:82:66:
06:d2:70:d0:40:2e:e5:d3:1f:d8:c9:bf:1d:f8:ca:
c2:96:30:fc:73:7e:7d:fd:36:4e:51:1a:17:42:32:
07:ff:d1:d9:c6:1c:aa:ea:58:8b:c8:f3:60:c9:df:
5d:c6:16:23:59:a8:d6:e1:2a:1a:15:af:f9:6f:c1:
58:4b:46:2a:b6:32:68:fa:0c:22:8b:c0:02:8d:e2:
8b:ed:8e:76:10:c3:9a:de:4b:ac:4c:b6:b2:50:2d:
5c:cb:22:d4:77:70:d2:cb:38:82:d2:5d:9d:13:55:
11:8a:9f:a4:f8:53:10:0d:9d:76:d1:21:2a:5f:34:
e2:e9:2b:8d:22:fb:e1:39:b6:9d:67:02:7c:9e:99:
d0:11:8c:22:56:84:e9:6e:a3:26:51:7f:20:d7:5c:
3c:e0:41:c3:50:d9:ec:46:0f:d9:3f:c1:0d:e6:63:
bd:08:74:e0:99:b5:1b:ff:da:c6:66:61:b7:8d:48:
63:b0:d7:1e:c7:45:18:e0:8e:79:6c:b0:e2:27:78:
16:ad:cd:6f:85:2f:91:9d:66:f3:fc:f0:f4:92:c5:
6e:e9:06:8d:db:ed:94:c3:9a:8f:b0:11:e7:e8:40:
76:92:a5:41:d8:b9:56:6e:e0:5c:a5:ec:fb:97:e0:
7d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:45:08:F9:CA:D3:88:3A:79:5B:08:D4:CB:2B:C4:47:1F:6B:30:FF
X509v3 Authority Key Identifier:
keyid:3C:56:8C:59:D7:A8:31:99:C3:A7:9E:A0:E8:37:5B:94:6E:D8:84:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PFaMWdeoMZnDp56g6DdblG7YhOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/6f36c2-d05c-4425-a9e4-5e37e7f3f15d/1/dkUI-crTiDp5WwjUyyvERx9rMP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/6f36c2-d05c-4425-a9e4-5e37e7f3f15d/1/PFaMWdeoMZnDp56g6DdblG7YhOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.144.0/21
185.150.172.0/22
Signature Algorithm: sha256WithRSAEncryption
b6:5c:32:df:14:e6:8a:74:88:d5:34:7b:32:35:b6:ac:13:2d:
18:6f:e4:8d:19:ac:64:38:b4:05:04:e7:de:bd:6d:a0:35:9a:
3b:85:bd:a6:26:e1:f5:ec:79:df:7c:a0:d3:0b:b8:20:29:04:
54:dc:de:33:9b:cb:17:5b:1f:d6:e2:cd:5c:36:a8:df:3c:54:
46:77:cf:3c:df:1d:ef:24:a1:8a:e5:a6:56:6a:b1:ab:c7:07:
a9:8b:d4:be:14:e7:b3:29:3e:0e:bb:63:7e:3a:b5:1e:b4:c7:
eb:d5:87:bd:ba:6e:e2:7f:5c:76:0e:4d:f7:76:8b:fb:a0:50:
7a:50:39:8b:fa:16:c5:2e:41:b5:e4:09:6f:a6:6c:f6:71:67:
7a:15:a6:9b:36:3d:05:0a:57:39:30:5d:b7:7f:f8:24:a5:74:
78:50:a0:f7:07:99:c4:1e:cf:0e:9c:fe:79:78:51:c2:e3:eb:
4e:93:f8:e1:9b:af:f1:bb:46:82:27:d6:27:a1:19:af:4e:9c:
ef:11:4b:30:42:c9:83:54:84:f4:96:87:8b:0c:22:d7:fd:6d:
a8:f4:fa:db:03:9e:18:47:f9:bd:e1:6b:f8:dd:67:6f:48:a4:
fc:9b:6a:51:d3:e6:14:41:f3:16:fb:40:47:d6:09:6e:54:e6:
3e:b4:cd:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:14 2023 by rpki-client on console-ams.rpki-client.org