Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/eXF3iTKES6F03aeJXdt22DjWOiw.roa
File: eXF3iTKES6F03aeJXdt22DjWOiw.roa (raw, json)
Hash identifier: lGZpJNjOaOpjM3oS0lJeuyQ+IPBzvgJH1wmtgSGQ+xc=
Subject key identifier: 79:71:77:89:32:84:4B:A1:74:DD:A7:89:5D:DB:76:D8:38:D6:3A:2C
Certificate issuer: /CN=28035893a257a654f3f85495c4169ebe86de18d1
Certificate serial: 01835309FD5B89F8111CAF33D3C23DE80228
Authority key identifier: 28:03:58:93:A2:57:A6:54:F3:F8:54:95:C4:16:9E:BE:86:DE:18:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KANYk6JXplTz-FSVxBaevobeGNE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/eXF3iTKES6F03aeJXdt22DjWOiw.roa
Signing time: Sun 18 Sep 2022 23:58:27 +0000
ROA not before: Sun 18 Sep 2022 23:58:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15815
IP address blocks: 217.14.96.0/20 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:53:09:fd:5b:89:f8:11:1c:af:33:d3:c2:3d:e8:02:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28035893a257a654f3f85495c4169ebe86de18d1
Validity
Not Before: Sep 18 23:58:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7971778932844ba174dda7895ddb76d838d63a2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:13:1c:1f:5d:26:33:f6:dd:12:b7:11:06:94:
76:10:b3:51:8a:a9:b9:82:d6:0c:3a:5c:a9:8b:df:
82:df:5a:42:b8:f0:13:41:ff:8b:20:37:1a:ab:07:
52:84:ef:37:c7:53:7f:5f:82:33:43:76:05:b5:a4:
6f:1e:1c:6f:72:b6:ce:36:ec:c2:60:f4:21:14:de:
3d:df:25:69:d6:18:7b:12:76:eb:7f:f1:c5:05:93:
f4:99:33:fb:9f:fe:ad:82:23:d1:af:45:6c:65:28:
66:f0:83:d5:4a:d7:e5:50:bc:22:57:f3:f4:e7:18:
e2:ef:2d:86:34:da:c4:58:13:6b:a6:f1:e7:3c:8c:
23:a0:30:d9:78:c1:20:45:51:90:a3:85:c6:a4:54:
34:5e:99:25:5e:21:55:84:3f:91:04:ef:cc:f7:35:
a1:5a:f2:0b:60:f5:a3:1c:a0:e9:37:80:98:fb:13:
8b:82:9e:20:bb:f9:15:72:9e:18:9b:37:ef:21:0b:
c8:5d:55:3c:30:a7:55:08:ef:41:d0:b4:17:fe:bc:
08:62:23:db:dd:a6:60:5a:51:27:6a:e8:b9:d0:88:
78:ea:25:ed:d4:91:0c:c6:a3:17:bc:d0:64:b2:a1:
ad:3a:65:ae:83:b8:26:1d:d9:08:57:cc:96:8f:56:
62:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:71:77:89:32:84:4B:A1:74:DD:A7:89:5D:DB:76:D8:38:D6:3A:2C
X509v3 Authority Key Identifier:
keyid:28:03:58:93:A2:57:A6:54:F3:F8:54:95:C4:16:9E:BE:86:DE:18:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KANYk6JXplTz-FSVxBaevobeGNE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/eXF3iTKES6F03aeJXdt22DjWOiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.14.96.0/20
Signature Algorithm: sha256WithRSAEncryption
77:53:a8:41:09:31:79:40:42:79:21:ac:82:a5:7a:e0:2f:d2:
59:b8:fe:1b:14:8f:99:52:aa:1c:26:18:32:86:99:a1:8e:64:
c8:4b:67:34:96:7a:6a:5a:7b:05:fa:58:4f:e2:80:38:81:33:
a1:8c:8d:fe:56:c6:5c:a6:01:bb:22:61:54:f6:bc:1a:ba:70:
6e:a7:64:34:46:34:ef:8b:09:24:0d:a6:6b:e7:8e:62:96:17:
4d:05:78:53:03:d6:7e:da:96:73:45:c8:20:63:a0:08:1f:63:
fa:5e:41:0e:42:fa:76:7f:20:47:31:59:4b:ff:c2:4b:7e:ff:
f0:fc:86:1e:c6:6f:bd:6e:a9:22:aa:97:e7:61:86:46:5a:9d:
40:4d:10:e7:c1:ba:c2:f8:1c:ea:25:8a:54:63:81:5b:f8:cf:
95:ff:41:22:33:1c:45:70:4b:e1:23:e0:4e:2e:12:27:c0:6e:
78:97:4e:09:85:6f:d7:56:3d:6c:c4:7d:aa:f7:54:28:0c:85:
45:06:6d:db:bc:6a:47:9b:f7:27:fb:c1:cc:a1:32:2a:32:de:
16:f6:f0:2d:4c:1b:2d:c4:6b:6e:95:60:40:2e:e1:8e:80:cf:
eb:86:bf:82:32:f2:9c:c6:81:cd:89:f4:c4:13:e6:67:27:36:
ef:fa:07:39
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYNTCf1bifgRHK8z08I96AIoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4MDM1ODkzYTI1N2E2NTRmM2Y4NTQ5NWM0MTY5ZWJlODZk
ZTE4ZDEwHhcNMjIwOTE4MjM1ODI3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OTcxNzc4OTMyODQ0YmExNzRkZGE3ODk1ZGRiNzZkODM4ZDYzYTJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgBMcH10mM/bdErcRBpR2ELNRiqm5
gtYMOlypi9+C31pCuPATQf+LIDcaqwdShO83x1N/X4IzQ3YFtaRvHhxvcrbONuzC
YPQhFN493yVp1hh7Enbrf/HFBZP0mTP7n/6tgiPRr0VsZShm8IPVStflULwiV/P0
5xji7y2GNNrEWBNrpvHnPIwjoDDZeMEgRVGQo4XGpFQ0XpklXiFVhD+RBO/M9zWh
WvILYPWjHKDpN4CY+xOLgp4gu/kVcp4YmzfvIQvIXVU8MKdVCO9B0LQX/rwIYiPb
3aZgWlEnaui50Ih46iXt1JEMxqMXvNBksqGtOmWug7gmHdkIV8yWj1ZiOwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHlxd4kyhEuhdN2niV3bdtg41josMB8GA1UdIwQY
MBaAFCgDWJOiV6ZU8/hUlcQWnr6G3hjRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0FOWWs2SlhwbFR6LUZTVnhCYWV2b2JlR05FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS85Yjc2ZTMtZTRmMS00MWEyLTlmMGUt
OTM3ZTAwZDA3MzJmLzEvZVhGM2lUS0VTNkYwM2FlSlhkdDIyRGpXT2l3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS85Yjc2ZTMtZTRmMS00MWEyLTlmMGUtOTM3ZTAwZDA3MzJm
LzEvS0FOWWs2SlhwbFR6LUZTVnhCYWV2b2JlR05FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE2Q5gMA0G
CSqGSIb3DQEBCwUAA4IBAQB3U6hBCTF5QEJ5IayCpXrgL9JZuP4bFI+ZUqocJhgy
hpmhjmTIS2c0lnpqWnsF+lhP4oA4gTOhjI3+VsZcpgG7ImFU9rwaunBup2Q0RjTv
iwkkDaZr545ilhdNBXhTA9Z+2pZzRcggY6AIH2P6XkEOQvp2fyBHMVlL/8JLfv/w
/IYexm+9bqkiqpfnYYZGWp1ATRDnwbrC+BzqJYpUY4Fb+M+V/0EiMxxFcEvhI+BO
LhInwG54l04JhW/XVj1sxH2q91QoDIVFBm3bvGpHm/cn+8HMoTIqMt4W9vAtTBst
xGtulWBALuGOgM/rhr+CMvKcxoHNifTEE+ZnJzbv+gc5
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:37 2024 by rpki-client on console-ams.rpki-client.org