Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/VtTsZ7DWablB6CWDTFZ69FQwLDU.roa
File: VtTsZ7DWablB6CWDTFZ69FQwLDU.roa (raw, json)
Hash identifier: KqpUS/MJ8Y4T6i021Ye8xdvWaHOvBAKxuDINGNxSDWQ=
Subject key identifier: 56:D4:EC:67:B0:D6:69:B9:41:E8:25:83:4C:56:7A:F4:54:30:2C:35
Certificate issuer: /CN=79101035d53377c5a72bedca522fc1456e0b8419
Certificate serial: 163FE9F1
Authority key identifier: 79:10:10:35:D5:33:77:C5:A7:2B:ED:CA:52:2F:C1:45:6E:0B:84:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eRAQNdUzd8WnK-3KUi_BRW4LhBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/VtTsZ7DWablB6CWDTFZ69FQwLDU.roa
Signing time: Sat 01 Jan 2022 08:52:54 +0000
ROA not before: Sat 01 Jan 2022 08:52:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38980
IP address blocks: 217.23.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 373287409 (0x163fe9f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79101035d53377c5a72bedca522fc1456e0b8419
Validity
Not Before: Jan 1 08:52:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56d4ec67b0d669b941e825834c567af454302c35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d3:32:a9:e5:6c:02:4a:a2:14:a8:44:fc:18:
11:fb:c8:4f:19:1f:a6:57:a9:e1:54:66:5b:83:4f:
ce:aa:00:b2:79:9c:b2:e0:d5:93:44:05:28:69:77:
df:66:3e:c6:66:c5:1e:73:53:68:b0:80:c7:4f:c4:
37:5a:c9:71:15:7f:d9:99:92:f1:04:73:2b:d4:6f:
5d:80:a0:72:82:1b:3e:f7:c6:31:bc:10:27:b8:cf:
09:64:bc:cc:a7:59:37:60:92:22:36:54:e3:75:08:
d0:2e:d5:d8:3d:71:71:f1:38:0f:ff:dc:0c:3f:bc:
c1:82:bf:da:7f:50:c1:6b:dd:91:08:de:6f:77:eb:
5c:7d:ea:8d:8f:1b:bd:b9:b1:76:31:b8:7b:e8:2d:
53:de:e3:1a:b3:21:f1:cb:6d:98:9b:4b:58:53:5e:
08:d1:95:f1:cf:a0:dd:25:14:d3:a2:b9:9a:13:34:
18:77:9a:60:c2:ef:a1:f1:e2:7e:45:3c:9c:5c:79:
73:3e:f0:c6:33:15:b5:47:b5:fa:5b:b2:cd:4d:41:
f3:35:a9:48:41:45:66:66:3e:e8:a7:4b:9f:f4:8a:
90:5f:65:f1:fb:86:aa:48:bc:83:3f:1e:5b:5d:f5:
04:7f:6f:68:58:68:6f:60:4c:bc:f5:56:6f:10:46:
31:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D4:EC:67:B0:D6:69:B9:41:E8:25:83:4C:56:7A:F4:54:30:2C:35
X509v3 Authority Key Identifier:
keyid:79:10:10:35:D5:33:77:C5:A7:2B:ED:CA:52:2F:C1:45:6E:0B:84:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eRAQNdUzd8WnK-3KUi_BRW4LhBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/VtTsZ7DWablB6CWDTFZ69FQwLDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/eRAQNdUzd8WnK-3KUi_BRW4LhBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.23.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:f8:a0:a6:8d:49:40:40:3a:cb:1a:ee:19:74:14:54:68:24:
3e:61:98:c4:5d:7a:77:1c:cb:cd:46:46:da:17:57:e6:35:6d:
80:90:49:74:fe:e4:a0:92:8b:3b:44:33:ba:fe:f3:05:a6:9c:
0a:31:e2:f4:e1:0c:29:99:81:11:5b:bb:6c:90:37:29:3e:5a:
bb:a3:8c:91:5c:e4:ee:7c:60:2b:04:ac:80:30:72:8f:da:65:
61:9e:b0:61:44:a6:ae:22:9c:19:84:a7:39:c2:8f:8a:5b:49:
52:32:c7:2e:91:12:1e:88:3f:d7:d0:38:7e:63:80:5a:c2:e1:
81:54:1d:46:43:4f:0a:10:07:f8:b1:74:12:1f:ab:67:41:21:
f5:a4:62:b9:bb:55:e6:a4:00:3d:9f:ad:ee:69:31:80:6a:58:
aa:ec:9f:3d:48:ef:2d:cc:97:5c:53:c8:9f:53:41:a5:73:60:
d0:b7:b5:15:f6:36:bb:1a:1b:36:13:d9:ee:a8:bd:24:b1:e0:
ae:76:f3:1c:fb:1f:e1:1b:2a:26:83:27:f1:b3:aa:19:76:05:
50:f4:f0:96:0b:cd:92:46:c4:3b:97:73:0e:57:7d:e8:25:44:
c4:cc:a4:9b:ca:14:32:bb:0e:f0:63:bb:66:ac:95:d3:bf:13:
30:d3:a3:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:48 2024 by rpki-client on console-ams.rpki-client.org