Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/DpkPEYhKIajrN17WS_PaNRGWyII.roa
File: DpkPEYhKIajrN17WS_PaNRGWyII.roa (raw, json)
Hash identifier: Xj3PeskO9WB0RkrhcwdJzowQUDCz4PvGgNmEK65Pk8Y=
Subject key identifier: 0E:99:0F:11:88:4A:21:A8:EB:37:5E:D6:4B:F3:DA:35:11:96:C8:82
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 07F78BEE
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/DpkPEYhKIajrN17WS_PaNRGWyII.roa
Signing time: Wed 16 Mar 2022 20:06:34 +0000
ROA not before: Wed 16 Mar 2022 20:06:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207643
IP address blocks: 45.147.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133663726 (0x7f78bee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Mar 16 20:06:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e990f11884a21a8eb375ed64bf3da351196c882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:bf:b7:4a:1a:e7:f0:d8:33:32:4c:04:7c:17:
64:49:34:91:03:df:20:fc:e5:8d:43:d0:1e:d9:01:
d9:01:6b:66:ad:4c:98:3a:94:2f:ea:e4:13:0c:24:
99:c0:a3:40:36:4d:5e:04:bb:b1:46:13:8d:fb:94:
a8:91:e7:8e:30:d4:28:ea:4b:1a:8f:ff:e4:12:e7:
61:8a:04:84:1b:8b:26:78:2c:ee:38:51:8b:8d:31:
42:9e:cc:df:f7:15:d4:c1:ef:99:27:b2:c5:88:c8:
c6:86:1d:fe:16:66:bd:33:f7:73:51:fd:d5:b0:ea:
23:44:bc:d6:08:c1:6d:9a:5d:7d:e6:be:a3:87:99:
07:d4:ff:8c:ea:98:7e:4c:97:49:f1:bf:50:17:ee:
a0:ae:af:51:a2:25:82:42:b6:ed:5c:e3:18:a2:32:
aa:d3:51:c8:fc:b5:5c:a3:1f:51:a3:06:94:67:8f:
0f:01:4a:d6:32:34:be:ab:fc:a1:75:a5:e3:08:43:
00:c6:c7:33:d2:c0:00:0c:c0:76:35:e3:64:af:fb:
d4:7d:63:89:b1:79:a5:b8:68:28:44:73:51:09:f3:
62:a5:47:4c:2e:ae:c0:fb:af:04:78:6e:f7:37:c6:
16:a4:5f:10:d4:38:f3:e3:1d:27:21:41:5b:ca:c8:
bc:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:99:0F:11:88:4A:21:A8:EB:37:5E:D6:4B:F3:DA:35:11:96:C8:82
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/DpkPEYhKIajrN17WS_PaNRGWyII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.44.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:3a:d6:6e:5f:65:f0:08:3e:96:04:ae:cf:dd:ba:32:65:68:
ca:a6:e6:cf:89:2c:d7:98:d1:1a:93:34:3b:a7:72:c4:25:e7:
e1:ef:f0:23:9e:e8:62:86:8e:fd:98:13:27:5d:e6:95:1d:a3:
50:a0:d2:d2:19:b7:ff:aa:ee:a9:e0:8f:3b:41:86:f8:66:f4:
73:ee:23:db:57:c6:66:c2:46:54:aa:7e:b1:d2:83:2a:b9:1f:
17:74:04:d2:a1:c2:ca:8e:9c:1b:dc:a0:3b:ac:73:5b:99:06:
6e:35:dc:e2:a6:e8:21:e3:d3:86:28:ed:48:53:79:96:65:0b:
a9:21:40:6a:81:91:4b:15:d5:25:b9:49:fc:44:2a:c5:ae:c3:
c8:74:ea:e5:01:0b:40:6f:09:46:00:9b:c8:d9:d8:c0:77:c1:
b2:11:13:11:2e:08:46:cf:0e:20:2d:8f:2d:9c:74:d5:05:a4:
a1:51:48:09:73:d3:ae:28:fb:ee:dd:d1:fd:b1:ac:d5:91:93:
9d:7d:ba:63:17:86:f4:66:44:dd:f5:34:03:14:6c:83:4b:ac:
7f:08:b8:fe:f2:1a:da:89:9b:d1:c3:c8:94:74:db:f4:c5:b5:
59:84:e9:94:41:11:48:b1:13:5f:3a:b0:23:6a:ad:32:ff:6b:
6c:81:52:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:26 2023 by rpki-client on console.sobornost.net