Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/ohBUAuv6CZwe_tACchVe1Xli6e0.roa
File: ohBUAuv6CZwe_tACchVe1Xli6e0.roa (raw, json)
Hash identifier: T1lYgIFbMYwsBh3Su5WdU210ouKdxztrzrKbyDa6CJw=
Subject key identifier: A2:10:54:02:EB:FA:09:9C:1E:FE:D0:02:72:15:5E:D5:79:62:E9:ED
Certificate issuer: /CN=79101035d53377c5a72bedca522fc1456e0b8419
Certificate serial: 1643ADB7
Authority key identifier: 79:10:10:35:D5:33:77:C5:A7:2B:ED:CA:52:2F:C1:45:6E:0B:84:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eRAQNdUzd8WnK-3KUi_BRW4LhBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/ohBUAuv6CZwe_tACchVe1Xli6e0.roa
Signing time: Sat 01 Jan 2022 08:52:56 +0000
ROA not before: Sat 01 Jan 2022 08:52:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212172
IP address blocks: 217.23.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 373534135 (0x1643adb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79101035d53377c5a72bedca522fc1456e0b8419
Validity
Not Before: Jan 1 08:52:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2105402ebfa099c1efed00272155ed57962e9ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:7b:ac:f5:15:15:18:0d:3d:99:67:bf:6e:ce:
97:96:f7:42:f3:f0:1e:f6:56:fe:db:7c:12:11:51:
6e:fe:6e:9b:a8:c1:0b:a2:db:64:be:35:fb:ae:7a:
27:e5:0d:74:2a:b0:ef:84:18:de:42:f7:53:70:b7:
a9:72:b5:e8:b9:77:6a:66:31:06:a7:db:ae:71:11:
2b:29:86:b2:a1:75:f6:3f:43:b8:d9:1e:75:7a:5a:
f5:8f:2d:88:20:40:01:e6:c1:10:86:c9:77:0d:87:
fb:4c:aa:9d:3d:49:25:2a:16:f8:aa:5d:e7:8e:61:
43:dd:34:9c:a9:9b:59:2c:4f:31:90:fe:68:eb:11:
6d:07:4f:cd:be:6d:68:1b:26:5e:34:33:0f:3f:96:
0d:5d:62:fa:c2:a6:9c:a2:56:00:69:b8:91:d3:ac:
d2:81:2f:e1:7c:fb:54:4b:d5:06:95:41:ac:32:f6:
26:8a:9a:4f:b8:fa:63:93:96:4e:3d:30:2e:95:1d:
84:1f:da:40:05:cd:ac:f4:b1:6d:e6:1f:34:8a:a2:
9d:e5:ef:57:ed:1e:bc:c7:2b:9f:62:76:f3:f2:1d:
19:f7:a1:90:2c:c1:7f:03:5a:5a:8a:12:8a:a0:40:
d0:bd:88:5c:40:94:ea:a0:6b:ef:49:c9:1a:b3:26:
92:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:10:54:02:EB:FA:09:9C:1E:FE:D0:02:72:15:5E:D5:79:62:E9:ED
X509v3 Authority Key Identifier:
keyid:79:10:10:35:D5:33:77:C5:A7:2B:ED:CA:52:2F:C1:45:6E:0B:84:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eRAQNdUzd8WnK-3KUi_BRW4LhBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/ohBUAuv6CZwe_tACchVe1Xli6e0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/eRAQNdUzd8WnK-3KUi_BRW4LhBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.23.118.0/24
Signature Algorithm: sha256WithRSAEncryption
53:4b:21:89:7a:a0:1d:57:05:36:70:98:62:b5:f8:43:78:4a:
72:29:26:89:6e:d4:7e:5a:04:d5:97:61:20:13:6d:e9:92:e0:
2b:97:fa:61:05:de:a4:02:34:b2:c9:6d:66:88:35:d8:ca:8e:
fd:67:2b:47:ed:42:4d:cf:69:1e:71:a2:b7:ef:c7:86:b2:fd:
a6:25:dc:71:fe:b1:2d:44:46:01:9d:2f:b9:ad:20:69:a2:18:
e7:8c:0d:fb:fa:fa:b8:3f:85:1f:50:4d:da:97:e4:1a:5f:a5:
37:7c:44:1c:85:14:57:a2:9f:7f:5f:29:2b:9c:e3:12:46:b5:
c0:c0:0c:36:ca:5d:44:3b:40:8d:79:98:b0:27:50:d8:05:a8:
7d:72:a3:f2:95:45:6c:f8:7c:08:a3:38:8b:7d:4d:52:57:5b:
ea:71:1e:d4:d4:cd:82:3e:80:e4:d5:c8:35:54:d1:f3:92:63:
cd:67:04:9e:a3:d1:34:c7:e6:93:c5:08:56:8d:36:2b:dc:d0:
ed:02:30:3c:40:d3:b4:e1:53:28:b0:8e:35:53:d5:e1:4a:a0:
3b:12:44:32:86:17:98:30:1c:76:03:28:49:fd:eb:45:e0:93:
6c:27:ce:45:3f:fd:5b:72:72:cd:55:bb:8c:bf:36:76:b7:a7:
d4:ae:dc:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:30 2024 by rpki-client on console-fra.rpki-client.org