Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/69f655-6879-426f-9bfb-3aed4cc7d5b8/1/9oLSD3Ee6K00-GwoLb6U1_VS314.roa
File: 9oLSD3Ee6K00-GwoLb6U1_VS314.roa (raw, json)
Hash identifier: 29kyflaEz4k7TTx7hG6maRKvNn7TjbVS/A3m0eLq4s0=
Subject key identifier: F6:82:D2:0F:71:1E:E8:AD:34:F8:6C:28:2D:BE:94:D7:F5:52:DF:5E
Certificate issuer: /CN=a93da86b4af60e7d29a587d01fcc98b5996c46da
Certificate serial: 018379CF8C6CD3B35A6EFFBE0AD84AD87EE0
Authority key identifier: A9:3D:A8:6B:4A:F6:0E:7D:29:A5:87:D0:1F:CC:98:B5:99:6C:46:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qT2oa0r2Dn0ppYfQH8yYtZlsRto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/69f655-6879-426f-9bfb-3aed4cc7d5b8/1/9oLSD3Ee6K00-GwoLb6U1_VS314.roa
Signing time: Mon 26 Sep 2022 12:39:48 +0000
ROA not before: Mon 26 Sep 2022 12:39:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31732
IP address blocks: 5.42.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:79:cf:8c:6c:d3:b3:5a:6e:ff:be:0a:d8:4a:d8:7e:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a93da86b4af60e7d29a587d01fcc98b5996c46da
Validity
Not Before: Sep 26 12:39:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f682d20f711ee8ad34f86c282dbe94d7f552df5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c7:6f:d2:ba:24:c9:29:31:bf:fd:a0:a0:ae:
97:b5:8f:b9:34:1c:4b:21:97:f0:5d:f5:23:16:a8:
16:71:bb:fd:f9:16:cf:ae:6e:96:46:a1:b5:50:0c:
13:50:cb:d0:b4:89:26:c9:02:9a:a7:4e:29:ce:72:
c5:e7:79:11:95:a4:81:0a:32:d0:11:fe:c7:7b:d0:
60:2f:a9:1a:81:af:af:98:70:f5:c4:93:22:c7:a4:
e4:30:d5:01:f4:04:0d:c9:9e:e4:80:2b:69:86:c7:
ea:e4:e4:f2:ac:3b:89:98:ef:ff:5a:c9:4f:41:05:
e3:16:ca:cb:4c:f4:02:4f:05:0d:cc:d9:d8:16:d1:
1d:28:d0:03:e3:13:ee:da:39:c2:5a:94:18:38:73:
5c:e2:71:67:3a:ab:eb:a0:3d:eb:12:ac:30:f3:9b:
d2:ab:51:a4:d7:70:e5:7c:9e:27:f1:76:1a:52:03:
1e:e3:e0:b9:79:df:7b:2d:6e:c7:1b:75:61:8f:c7:
fc:0f:80:16:fc:9b:05:32:de:35:2b:45:2b:b9:fa:
36:e9:2e:f3:da:2d:fa:8a:41:44:2c:3d:c5:b0:3c:
6c:0e:9f:af:d6:e3:aa:0d:80:57:7c:fd:bc:8c:e0:
4a:99:4d:a0:6e:ff:02:1c:32:b6:06:3f:d5:6a:c4:
c6:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:82:D2:0F:71:1E:E8:AD:34:F8:6C:28:2D:BE:94:D7:F5:52:DF:5E
X509v3 Authority Key Identifier:
keyid:A9:3D:A8:6B:4A:F6:0E:7D:29:A5:87:D0:1F:CC:98:B5:99:6C:46:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qT2oa0r2Dn0ppYfQH8yYtZlsRto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/69f655-6879-426f-9bfb-3aed4cc7d5b8/1/9oLSD3Ee6K00-GwoLb6U1_VS314.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/69f655-6879-426f-9bfb-3aed4cc7d5b8/1/qT2oa0r2Dn0ppYfQH8yYtZlsRto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.217.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:f2:1c:10:f8:2d:f1:54:93:f3:d0:45:86:b2:51:44:03:b7:
5e:c8:07:08:be:3f:df:f0:cf:6a:a3:18:bb:ce:46:15:1a:9b:
41:f5:f2:0d:04:d1:4d:7a:61:11:78:e0:5c:9d:29:d7:20:88:
0a:fa:26:76:51:b7:47:e1:65:f9:2e:93:3f:ad:18:51:65:02:
d4:98:3e:44:89:d9:07:11:bc:97:03:3d:8d:c2:6f:42:41:91:
e2:d3:bd:7d:6d:19:9f:00:f5:88:eb:88:21:30:52:ad:21:4e:
5d:a3:88:4c:e7:41:77:de:d2:e7:1a:3b:21:91:06:ee:fe:5c:
8a:f5:cf:fb:b8:c5:09:16:1f:12:8a:74:e4:79:8d:b8:df:72:
0a:3f:88:7b:03:0a:42:9f:9c:57:05:71:7d:15:8a:22:3c:41:
22:94:6f:ae:37:70:01:55:0d:5d:9d:a5:f0:b1:d4:e8:81:d4:
b9:ed:59:ff:68:79:58:6b:ab:05:47:f3:38:26:f8:1e:1e:85:
68:0a:a3:de:a3:a0:a6:0a:c1:cf:d1:3d:b2:e3:0e:ec:5e:e0:
96:d8:ff:19:34:63:fe:df:04:76:d4:28:9e:dd:a3:6e:8f:60:
d0:d5:d5:91:08:81:8b:ff:db:49:23:ee:20:51:82:d8:8b:b4:
49:1c:7d:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:52 2024 by rpki-client on console-fra.rpki-client.org