Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/139044-9ebc-4559-ba10-a38e1eca4fd4/1/2lFzjnURfzTI1A2qn3w1JpudEuw.roa
File: 2lFzjnURfzTI1A2qn3w1JpudEuw.roa (raw, json)
Hash identifier: mUghqogUsd9kT8SVFhVxXm03Ju2kz2atU62nmWyIv/Q=
Subject key identifier: DA:51:73:8E:75:11:7F:34:C8:D4:0D:AA:9F:7C:35:26:9B:9D:12:EC
Certificate issuer: /CN=97da420008cfb9193499278ef558bd42d61c7f75
Certificate serial: 018534C7D9B3A3B65ACD6E2E31B2BA8DD489
Authority key identifier: 97:DA:42:00:08:CF:B9:19:34:99:27:8E:F5:58:BD:42:D6:1C:7F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l9pCAAjPuRk0mSeO9Vi9QtYcf3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/139044-9ebc-4559-ba10-a38e1eca4fd4/1/2lFzjnURfzTI1A2qn3w1JpudEuw.roa
Signing time: Wed 21 Dec 2022 13:03:10 +0000
ROA not before: Wed 21 Dec 2022 13:03:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199256
IP address blocks: 217.115.121.0/24 maxlen: 24
217.115.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:34:c7:d9:b3:a3:b6:5a:cd:6e:2e:31:b2:ba:8d:d4:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97da420008cfb9193499278ef558bd42d61c7f75
Validity
Not Before: Dec 21 13:03:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da51738e75117f34c8d40daa9f7c35269b9d12ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:1b:63:b5:bd:d0:b3:41:24:d6:bd:8a:e5:32:
52:07:f3:ab:c9:f0:03:15:e6:51:88:f4:1e:0f:e3:
47:05:73:49:7c:85:80:3b:78:c9:c0:02:e9:fd:90:
ef:48:c3:1c:ee:e7:cf:93:90:31:53:0e:c1:cb:ba:
92:4c:72:06:fd:f8:b8:63:2d:2e:24:42:08:8c:23:
88:22:f3:ca:0e:2f:fd:81:03:db:31:29:78:71:d2:
98:18:af:f9:6d:cb:bc:1f:ce:73:5a:a5:9f:1a:81:
0a:5c:2b:af:68:00:45:dc:ed:1f:41:ce:b5:b8:28:
79:fa:1d:a1:f1:89:00:01:46:bc:6c:91:d7:92:d0:
a5:39:ea:02:f6:2d:76:f0:93:46:3a:8b:54:2d:90:
84:81:6b:66:99:a9:b9:a0:9f:95:69:b7:35:fc:c3:
f7:c4:b5:22:b3:50:9e:c4:32:c2:19:a3:72:f0:b8:
45:91:73:1d:ec:81:dc:79:30:a1:19:b6:aa:d9:ee:
63:61:aa:33:e3:f1:26:09:43:88:29:0c:7e:d3:96:
55:93:50:76:39:85:a9:4d:f8:94:b7:b6:f8:16:d2:
c4:ac:f2:9e:e1:41:02:ef:55:89:22:e4:93:e3:8a:
9c:64:59:f3:6f:1b:0e:9b:55:22:3a:78:60:8a:68:
b3:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:51:73:8E:75:11:7F:34:C8:D4:0D:AA:9F:7C:35:26:9B:9D:12:EC
X509v3 Authority Key Identifier:
keyid:97:DA:42:00:08:CF:B9:19:34:99:27:8E:F5:58:BD:42:D6:1C:7F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l9pCAAjPuRk0mSeO9Vi9QtYcf3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/139044-9ebc-4559-ba10-a38e1eca4fd4/1/2lFzjnURfzTI1A2qn3w1JpudEuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/139044-9ebc-4559-ba10-a38e1eca4fd4/1/l9pCAAjPuRk0mSeO9Vi9QtYcf3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.115.121.0/24
217.115.124.0/24
Signature Algorithm: sha256WithRSAEncryption
67:00:e1:b2:79:c2:5c:40:11:09:63:6f:a3:9b:3f:e6:62:0d:
44:48:f1:b6:80:dc:72:ca:f6:ef:6d:d7:2a:c8:1a:dc:b7:41:
ca:f7:74:e6:24:75:08:eb:c4:29:da:5f:63:f7:c6:ce:4e:01:
28:13:c7:a8:4c:70:22:90:56:ed:fd:61:cf:c6:f9:f5:ab:8f:
a3:7c:3f:c7:21:74:01:df:70:60:eb:83:09:43:9a:37:4a:be:
5b:aa:26:9d:65:f0:ef:09:18:f7:9b:fc:34:ba:f6:8e:0b:4f:
04:3e:7f:9e:fa:37:be:f8:69:20:63:36:75:f5:9f:77:7e:56:
49:66:75:e9:22:51:d2:40:a9:b6:de:ba:bf:1d:cb:1b:19:11:
35:40:a8:ab:14:be:f3:94:82:45:1a:3d:55:6d:fd:a2:67:7a:
57:e3:9b:c3:67:c1:f8:11:64:27:1d:41:14:8b:bb:95:04:f1:
31:b6:6a:e6:d7:e7:51:89:1a:db:71:d9:a7:32:bd:75:34:88:
5f:a1:7c:64:30:59:b2:b6:e9:5a:6a:19:7c:86:95:b5:d4:75:
fa:f8:b3:95:90:83:c8:a7:38:b4:0b:74:89:20:2c:02:5d:09:
c5:9f:1f:8e:c8:6c:a6:6b:c4:9e:3c:a2:b4:95:ff:78:0f:ea:
01:4e:ba:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:00 2024 by rpki-client on console-fra.rpki-client.org