Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/1-sVYYBO8-XN93aEgoEDaQS5zrGY.roa
File: 1-sVYYBO8-XN93aEgoEDaQS5zrGY.roa (raw, json)
Hash identifier: Xor6I4ZMx5XcPZuUURTJnQGUDMFVInwwk2V2hgetVos=
Subject key identifier: FA:C5:58:60:13:BC:F9:73:7D:DD:A1:20:A0:40:DA:41:2E:73:AC:66
Certificate issuer: /CN=79101035d53377c5a72bedca522fc1456e0b8419
Certificate serial: 163F00C4
Authority key identifier: 79:10:10:35:D5:33:77:C5:A7:2B:ED:CA:52:2F:C1:45:6E:0B:84:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eRAQNdUzd8WnK-3KUi_BRW4LhBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/1-sVYYBO8-XN93aEgoEDaQS5zrGY.roa
Signing time: Sat 01 Jan 2022 08:52:53 +0000
ROA not before: Sat 01 Jan 2022 08:52:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28849
IP address blocks: 217.23.112.0/24 maxlen: 24
217.23.117.0/24 maxlen: 24
217.23.113.0/24 maxlen: 24
217.23.112.0/20 maxlen: 20
217.23.114.0/24 maxlen: 24
217.23.115.0/24 maxlen: 24
217.23.116.0/24 maxlen: 24
217.23.124.0/24 maxlen: 24
217.23.125.0/24 maxlen: 24
217.23.119.0/24 maxlen: 24
217.23.121.0/24 maxlen: 24
217.23.122.0/24 maxlen: 24
217.23.123.0/24 maxlen: 24
217.23.126.0/24 maxlen: 24
217.23.127.0/24 maxlen: 24
185.15.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 373227716 (0x163f00c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79101035d53377c5a72bedca522fc1456e0b8419
Validity
Not Before: Jan 1 08:52:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fac5586013bcf9737ddda120a040da412e73ac66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:62:3c:73:02:30:ca:77:c1:cf:a1:48:b4:a8:
5f:5c:04:ec:5b:e1:3c:3f:bc:58:13:eb:ba:77:c3:
22:14:27:93:b9:01:9a:a5:b6:e4:d5:0f:c7:8e:bf:
4a:9a:59:39:77:e2:ba:3d:23:ee:3d:04:71:ba:18:
cc:03:0f:57:3c:b1:55:79:0d:50:d9:80:7c:60:b7:
df:29:45:40:4d:ad:15:16:9a:c1:a4:1d:44:a3:0b:
4d:40:44:90:f7:db:1b:6f:d4:2f:65:2c:68:66:b4:
ca:f3:c9:fa:ee:a7:32:a8:07:b7:3b:95:dc:e4:75:
ec:ae:ec:82:c9:97:fe:cd:87:41:fd:01:b2:07:ee:
e5:94:06:ed:a8:71:23:07:e7:d9:8b:1e:2c:46:ab:
71:9f:bf:01:a0:14:e7:48:5d:34:14:a4:1b:6d:c1:
51:ef:03:6b:59:b7:73:65:9e:a6:6c:98:7d:59:1c:
c5:51:10:f6:8e:b3:a5:3d:75:66:7c:a2:20:f9:2b:
36:1c:8f:23:f7:bc:0b:bd:a0:96:42:b7:27:9d:26:
63:1a:72:b2:48:35:ac:78:ab:06:70:e9:fa:f8:7e:
8f:57:17:61:8a:b9:d5:65:4b:73:ee:80:46:92:7a:
6a:dc:ea:9b:c5:19:d3:dc:62:a0:3c:19:90:ff:22:
26:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:C5:58:60:13:BC:F9:73:7D:DD:A1:20:A0:40:DA:41:2E:73:AC:66
X509v3 Authority Key Identifier:
keyid:79:10:10:35:D5:33:77:C5:A7:2B:ED:CA:52:2F:C1:45:6E:0B:84:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eRAQNdUzd8WnK-3KUi_BRW4LhBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/1-sVYYBO8-XN93aEgoEDaQS5zrGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/eRAQNdUzd8WnK-3KUi_BRW4LhBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.15.156.0/22
217.23.112.0/20
Signature Algorithm: sha256WithRSAEncryption
0f:69:03:31:43:2e:f8:c8:8c:46:12:15:23:9d:04:1c:32:70:
b7:c9:32:65:9f:e6:88:76:1b:ee:e5:61:97:98:28:e1:10:bf:
17:da:79:49:cc:47:3d:85:bc:73:90:b1:b2:54:06:82:b3:49:
b1:84:95:d5:dd:e9:42:89:d1:fd:00:c7:b9:24:a1:6b:a0:e4:
c5:02:a2:0b:f8:ba:08:25:d5:38:a4:05:cf:d4:28:c2:b8:d8:
d2:e3:67:34:58:c8:aa:a8:60:41:70:c4:41:2c:a9:2d:bb:4f:
b5:d7:e3:ae:ee:22:be:32:ee:6c:f2:6b:af:94:37:66:6e:27:
e7:18:e5:dc:73:89:74:05:c1:a1:18:78:4f:b2:48:ed:fe:bb:
1d:d3:4c:db:17:72:99:74:5c:04:7b:65:a0:31:53:b1:7d:cf:
35:32:3b:ee:ac:35:aa:b3:9a:74:32:5a:9c:db:ae:f0:90:f6:
49:e0:63:85:35:e6:cb:f4:48:60:90:32:72:61:9d:c3:df:75:
b4:4a:74:7a:74:a0:e6:5e:46:8d:fa:69:63:42:af:01:ab:75:
05:d4:e5:04:9b:ff:8b:67:1b:92:b5:dd:f4:a4:fc:bd:be:cc:
08:f4:6e:bb:2b:fb:9d:82:50:52:f8:32:75:35:b9:0e:74:2c:
af:c2:65:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:48 2024 by rpki-client on console-ams.rpki-client.org