Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/tDlUeW9tdUFmykWR8kbwu29lhZk.roa
File: tDlUeW9tdUFmykWR8kbwu29lhZk.roa (raw, json)
Hash identifier: rNQdQMzq3oiE0D4oC0vOmpZwNXLL9mJz8rj/TVZSLv0=
Subject key identifier: B4:39:54:79:6F:6D:75:41:66:CA:45:91:F2:46:F0:BB:6F:65:85:99
Certificate issuer: /CN=7a8746a76cda8369009d28941ef156239c6a63a1
Certificate serial: 066A6BB2
Authority key identifier: 7A:87:46:A7:6C:DA:83:69:00:9D:28:94:1E:F1:56:23:9C:6A:63:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eodGp2zag2kAnSiUHvFWI5xqY6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/tDlUeW9tdUFmykWR8kbwu29lhZk.roa
Signing time: Thu 19 May 2022 14:22:11 +0000
ROA not before: Thu 19 May 2022 14:22:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8426
IP address blocks: 217.161.12.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107637682 (0x66a6bb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a8746a76cda8369009d28941ef156239c6a63a1
Validity
Not Before: May 19 14:22:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b43954796f6d754166ca4591f246f0bb6f658599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:10:de:86:03:e5:88:f1:33:6a:6f:6f:16:98:
c1:10:f6:30:ef:be:8c:ed:5f:64:81:9c:ca:9b:3b:
78:58:0f:0e:ac:d4:1a:a7:17:2d:21:b5:a7:be:53:
9d:fc:28:8e:d2:8b:9f:e5:0d:48:8a:ec:65:82:0b:
35:72:7c:ce:0b:c5:6b:a6:14:19:07:61:56:96:42:
40:e3:6b:65:4b:cc:aa:e9:be:9e:80:c9:f8:18:34:
80:32:9c:9f:eb:e1:cc:73:46:38:c2:43:8f:1c:e0:
59:c5:22:c5:f3:ca:58:b6:63:d0:6d:f6:a6:39:64:
d6:e4:2a:9e:0d:d4:11:7d:6c:1e:e6:a5:a2:6e:6b:
b6:5a:3c:0c:5d:a3:5a:fb:41:c7:b0:30:95:db:46:
22:48:1a:2e:e9:c0:4a:6d:d8:9d:e9:04:fc:ef:aa:
cb:d3:80:bf:59:01:7f:7a:ae:e4:0f:14:a4:e6:ba:
2f:47:48:97:c3:b7:0e:23:58:14:d6:6d:17:50:6a:
c2:7a:92:e1:ca:b8:75:0f:43:b0:b2:12:d1:66:4c:
a3:c0:eb:04:68:d1:8c:1c:63:78:87:90:59:35:f7:
64:59:62:23:7c:73:49:d8:d1:73:42:b3:28:70:ac:
0b:93:98:e9:cc:5b:aa:38:4d:f2:c9:78:2a:91:cb:
bc:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:39:54:79:6F:6D:75:41:66:CA:45:91:F2:46:F0:BB:6F:65:85:99
X509v3 Authority Key Identifier:
keyid:7A:87:46:A7:6C:DA:83:69:00:9D:28:94:1E:F1:56:23:9C:6A:63:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eodGp2zag2kAnSiUHvFWI5xqY6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/tDlUeW9tdUFmykWR8kbwu29lhZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/eodGp2zag2kAnSiUHvFWI5xqY6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.161.12.0/23
Signature Algorithm: sha256WithRSAEncryption
12:29:39:dc:63:9d:c0:09:a7:ab:b5:05:d9:8a:46:07:25:48:
6b:c0:cb:56:47:b6:bb:3c:b8:45:c3:8f:e8:13:c3:0d:f3:2b:
22:a8:53:31:d0:93:42:0f:1a:06:66:fb:e9:1f:ff:3b:a9:2a:
66:cc:88:42:17:23:49:8b:97:53:21:6d:05:1d:b3:b6:25:ec:
ba:16:87:40:72:46:35:d8:a1:0a:7f:83:85:a7:6f:83:9d:f9:
94:cf:3f:96:10:c4:c7:c8:94:9e:74:98:56:85:71:41:c5:47:
f9:d9:5a:94:3f:41:9b:36:48:f5:48:70:9e:08:cb:e6:0e:4b:
5c:0e:19:bb:54:08:6a:15:04:c0:ed:5e:dc:4a:3b:71:fc:c4:
8b:ee:e0:e0:21:2f:f6:29:e5:03:71:da:ba:d6:22:0a:76:9e:
0e:f2:6a:08:8d:ec:90:cd:5e:b8:34:9d:1f:2f:7c:c0:a6:4c:
95:ff:6e:39:d9:76:85:c8:78:dd:4c:e6:e2:44:8c:27:e0:b1:
07:4c:a8:31:f1:2c:d1:60:05:b2:aa:f3:9c:c4:58:03:54:a2:
f5:bc:23:8e:3a:fe:e8:ad:35:d8:9b:83:29:fa:99:d4:be:6f:
82:19:6c:39:c5:3e:8f:94:55:f7:34:38:a3:62:31:7a:9e:02:
3e:a6:70:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:53 2024 by rpki-client on console-fra.rpki-client.org