Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/d74cb2-f0fc-4f2c-be01-536e1f0c4ff9/1/wJ7aO-7wdA_87BLlSmPVL_CYjfs.roa
File: wJ7aO-7wdA_87BLlSmPVL_CYjfs.roa (raw, json)
Hash identifier: zMygUlXWJJ7KZmXp73u+OIXGyvsRga5lbnwbwLyDIQ0=
Subject key identifier: C0:9E:DA:3B:EE:F0:74:0F:FC:EC:12:E5:4A:63:D5:2F:F0:98:8D:FB
Certificate issuer: /CN=6cdc694f0c3255d5d5573f1328e53654cfb22c4d
Certificate serial: 5C45C7
Authority key identifier: 6C:DC:69:4F:0C:32:55:D5:D5:57:3F:13:28:E5:36:54:CF:B2:2C:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNxpTwwyVdXVVz8TKOU2VM-yLE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/d74cb2-f0fc-4f2c-be01-536e1f0c4ff9/1/wJ7aO-7wdA_87BLlSmPVL_CYjfs.roa
Signing time: Sat 16 Apr 2022 13:54:34 +0000
ROA not before: Sat 16 Apr 2022 13:54:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210045
IP address blocks: 217.28.133.0/24 maxlen: 24
2a12:2140::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6047175 (0x5c45c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cdc694f0c3255d5d5573f1328e53654cfb22c4d
Validity
Not Before: Apr 16 13:54:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c09eda3beef0740ffcec12e54a63d52ff0988dfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:16:b4:2b:6d:3c:54:4a:db:ff:aa:7b:99:00:
09:7e:fc:e2:19:6b:23:16:ae:86:e6:f5:96:b3:1b:
a4:d9:49:6e:cc:12:cf:8c:6a:f1:d6:6d:fd:74:b7:
27:22:40:42:bc:20:e0:16:88:be:46:94:68:25:00:
eb:a2:09:57:6d:5d:34:8b:d5:e0:b0:8c:11:49:6f:
ad:d1:53:12:79:0a:a8:19:64:85:46:67:0c:13:f3:
8a:75:c7:fd:b8:6c:b3:9f:f3:70:99:b8:9e:9a:d6:
57:3c:93:7d:18:30:aa:1f:76:ed:0a:36:56:f6:ef:
6a:66:c2:1c:98:02:6b:60:08:1a:20:ab:ff:4d:eb:
ee:62:ce:50:ba:b8:3d:51:83:a7:89:60:d8:35:c9:
8a:80:a2:6d:d4:ed:a6:ce:e8:2b:3c:30:be:4d:98:
ee:39:2b:61:b6:9a:7a:ce:79:e3:55:bd:c8:35:16:
7f:71:e7:f5:45:be:2d:ab:eb:f3:be:4c:6d:5a:67:
40:4f:8f:08:ed:b5:8f:96:49:7c:e1:de:45:1f:af:
b1:4e:0d:f3:61:19:99:f4:be:54:0d:9d:d2:35:13:
46:c7:48:ce:06:a1:ea:e3:08:96:14:a7:fa:94:fa:
f4:b0:db:08:22:9c:59:9b:b2:77:d8:ae:c9:65:e5:
ec:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:9E:DA:3B:EE:F0:74:0F:FC:EC:12:E5:4A:63:D5:2F:F0:98:8D:FB
X509v3 Authority Key Identifier:
keyid:6C:DC:69:4F:0C:32:55:D5:D5:57:3F:13:28:E5:36:54:CF:B2:2C:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNxpTwwyVdXVVz8TKOU2VM-yLE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d74cb2-f0fc-4f2c-be01-536e1f0c4ff9/1/wJ7aO-7wdA_87BLlSmPVL_CYjfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d74cb2-f0fc-4f2c-be01-536e1f0c4ff9/1/bNxpTwwyVdXVVz8TKOU2VM-yLE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.133.0/24
IPv6:
2a12:2140::/29
Signature Algorithm: sha256WithRSAEncryption
9d:2c:9b:ea:57:cc:1d:77:5c:97:45:dc:c4:13:62:cf:27:f8:
28:37:02:eb:15:cd:c8:95:31:6c:ce:e3:b1:93:6e:30:93:e0:
0f:44:59:aa:eb:ea:90:63:d0:0a:62:63:fa:04:3a:8d:2e:92:
f4:d2:7e:d1:24:cf:85:97:fc:07:82:4f:72:cb:52:bb:64:93:
e3:10:a9:85:24:a5:36:96:11:1e:27:31:00:cc:72:45:0e:46:
41:a7:f1:0b:87:ab:ca:53:7b:e0:50:79:00:9e:80:a1:9d:b8:
90:1b:91:b9:9f:5d:d1:a4:17:01:74:68:f4:fe:d0:b3:11:0f:
9c:90:45:f1:ad:1b:d5:6c:46:fe:bc:12:bd:a7:2f:5b:f8:74:
13:75:04:45:05:9e:8b:41:84:59:2c:59:7a:34:89:5b:1b:8f:
7c:81:45:02:95:af:4d:ff:42:18:ff:b0:17:e4:d2:07:33:78:
b8:9b:fd:c9:8c:1d:5f:39:42:33:b3:e2:56:a5:9c:e2:43:e3:
47:59:5f:3f:b1:48:7c:f5:87:f8:e7:ba:01:2b:47:53:18:c1:
e9:f2:a9:c0:3b:ef:8b:d2:ed:e6:1b:f4:7e:d8:7f:58:73:10:
97:74:78:f2:a7:4a:4a:1f:64:5d:dd:eb:4c:f1:98:d7:63:18:
57:f2:3b:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:17 2024 by rpki-client on console-ams.rpki-client.org