Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/17sZzssNUBtjdGrWI1pKU97ejiM.roa
File: 17sZzssNUBtjdGrWI1pKU97ejiM.roa (raw, json)
Hash identifier: 31SDtDaHqEu4l89C3wgYPEW+WH0NFtHmi57pxB+9L0I=
Subject key identifier: D7:BB:19:CE:CB:0D:50:1B:63:74:6A:D6:23:5A:4A:53:DE:DE:8E:23
Certificate issuer: /CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Certificate serial: 0A02C1F7
Authority key identifier: E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/17sZzssNUBtjdGrWI1pKU97ejiM.roa
Signing time: Sat 01 Jan 2022 05:03:23 +0000
ROA not before: Sat 01 Jan 2022 05:03:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8220
IP address blocks: 141.98.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167952887 (0xa02c1f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Validity
Not Before: Jan 1 05:03:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7bb19cecb0d501b63746ad6235a4a53dede8e23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6f:6e:db:39:23:cb:82:48:ce:56:66:71:b4:
54:88:b0:5e:22:d1:89:75:90:5f:06:75:9d:30:e4:
a7:26:17:76:53:82:7a:d0:87:4e:82:da:76:31:e6:
d7:1b:bd:9c:fb:9b:da:75:8b:b0:62:35:cd:99:b5:
fb:db:ca:21:3a:a8:86:45:16:10:a3:ec:e7:c9:80:
d9:62:c6:eb:49:b0:fb:7e:43:31:13:34:f0:73:f4:
63:db:a9:d4:ed:0e:33:b7:a2:d7:08:23:3a:e3:9b:
7f:b0:2c:a8:d0:dd:3a:b4:40:ce:8f:4c:ac:e5:e8:
5a:75:ad:77:5c:9c:c4:8e:d9:f1:8c:2b:4b:f1:74:
0a:8a:83:8f:57:88:25:f0:f0:17:38:f8:64:e2:3a:
c4:52:e2:5b:d2:a8:d5:a3:77:16:0e:9a:f9:5b:1d:
df:55:c8:c1:1c:a3:10:fa:2c:bd:2a:a8:1e:64:07:
47:9b:05:f9:a6:ff:b2:46:7f:89:8e:52:1c:ec:da:
3f:4c:7b:03:c4:ee:b3:57:12:71:92:fc:16:c4:dd:
a1:f5:cd:59:39:e8:3c:ef:52:cb:9c:36:45:da:8a:
a4:62:2c:55:95:c8:09:c0:37:93:7a:14:32:9c:a7:
48:44:ea:55:54:6b:8e:b2:66:ef:50:19:0e:11:ac:
d5:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:BB:19:CE:CB:0D:50:1B:63:74:6A:D6:23:5A:4A:53:DE:DE:8E:23
X509v3 Authority Key Identifier:
keyid:E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/17sZzssNUBtjdGrWI1pKU97ejiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.45.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:5e:d0:87:ac:b2:10:33:8a:0c:70:69:15:c1:17:06:d5:43:
51:56:1e:a9:d6:48:eb:51:3e:44:df:7f:91:44:9e:6f:cf:12:
5a:17:36:18:16:4e:f5:07:e6:3b:d0:1a:68:85:d0:cc:73:08:
e2:78:b0:7e:44:31:13:1a:3c:56:0f:b6:4f:b9:26:0e:27:54:
ae:9a:3c:1d:00:6f:c3:d7:8d:0e:1f:bf:f8:14:c3:94:04:aa:
1f:09:6c:53:5e:54:b6:67:d7:e8:2e:bf:92:56:87:26:d9:b9:
9c:6a:4a:d1:5d:2f:8f:46:e8:1d:1f:f7:a3:32:42:cc:f2:b9:
c0:6d:10:d3:e3:12:b1:ac:46:68:a8:59:73:32:2c:63:53:30:
e6:bd:9c:64:fb:15:02:6d:88:d0:1c:29:71:41:bc:d5:f4:1e:
4f:a3:5a:91:7a:b3:3e:e2:ee:4e:60:81:91:8e:1d:d5:66:23:
98:fa:e4:20:14:1e:51:b5:65:7c:c8:eb:f2:6f:b1:97:93:26:
30:fb:99:a1:ce:21:c6:44:31:94:de:da:17:6d:b2:0f:d5:7c:
e6:79:ba:3b:1b:83:c7:bc:f9:c0:53:fe:3d:e3:ee:36:7e:2b:
1d:56:33:92:d7:07:50:eb:c5:e4:3a:86:e7:fd:d4:ba:b7:cd:
9a:ea:6e:a0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECgLB9zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MTRhYzYxMTYxNGRkMTY1ZDk0NTU3Mjk2ZWQ3ZWQ0NmM4ZmMwMjVmMB4XDTIyMDEw
MTA1MDMyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDdiYjE5Y2VjYjBk
NTAxYjYzNzQ2YWQ2MjM1YTRhNTNkZWRlOGUyMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALRvbts5I8uCSM5WZnG0VIiwXiLRiXWQXwZ1nTDkpyYXdlOC
etCHToLadjHm1xu9nPub2nWLsGI1zZm1+9vKITqohkUWEKPs58mA2WLG60mw+35D
MRM08HP0Y9up1O0OM7ei1wgjOuObf7AsqNDdOrRAzo9MrOXoWnWtd1ycxI7Z8Ywr
S/F0CoqDj1eIJfDwFzj4ZOI6xFLiW9Ko1aN3Fg6a+Vsd31XIwRyjEPosvSqoHmQH
R5sF+ab/skZ/iY5SHOzaP0x7A8Tus1cScZL8FsTdofXNWTnoPO9Sy5w2RdqKpGIs
VZXICcA3k3oUMpynSETqVVRrjrJm71AZDhGs1XMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTXuxnOyw1QG2N0atYjWkpT3t6OIzAfBgNVHSMEGDAWgBThSsYRYU3RZdlF
Vylu1+1GyPwCXzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzRVckdFV0ZOMFdYWlJWY3BidGZ0UnNqOEFsOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWEvNmU3OWI4LTJiOGYtNGVjYy05YTZlLTcwZTg5OGJiMzhkZC8x
LzE3c1p6c3NOVUJ0amRHcldJMXBLVTk3ZWppTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWEv
NmU3OWI4LTJiOGYtNGVjYy05YTZlLTcwZTg5OGJiMzhkZC8xLzRVckdFV0ZOMFdY
WlJWY3BidGZ0UnNqOEFsOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAI1iLTANBgkqhkiG9w0BAQsFAAOC
AQEAHV7Qh6yyEDOKDHBpFcEXBtVDUVYeqdZI61E+RN9/kUSeb88SWhc2GBZO9Qfm
O9AaaIXQzHMI4niwfkQxExo8Vg+2T7kmDidUrpo8HQBvw9eNDh+/+BTDlASqHwls
U15UtmfX6C6/klaHJtm5nGpK0V0vj0boHR/3ozJCzPK5wG0Q0+MSsaxGaKhZczIs
Y1Mw5r2cZPsVAm2I0BwpcUG81fQeT6NakXqzPuLuTmCBkY4d1WYjmPrkIBQeUbVl
fMjr8m+xl5MmMPuZoc4hxkQxlN7aF22yD9V85nm6OxuDx7z5wFP+PePuNn4rHVYz
ktcHUOvF5DqG5/3UurfNmupuoA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:59 2024 by rpki-client on console-fra.rpki-client.org