Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/dc879e-b17e-49a3-8f03-5a09e9de9071/1/w0MQicL6oDo_P4LmiGCzyUCdLCM.roa
File: w0MQicL6oDo_P4LmiGCzyUCdLCM.roa (raw, json)
Hash identifier: A5A1fQEuqrmO2eUvS+VW7GjF1/cORnsymqH9lZeZc5k=
Subject key identifier: C3:43:10:89:C2:FA:A0:3A:3F:3F:82:E6:88:60:B3:C9:40:9D:2C:23
Certificate issuer: /CN=f288c5c7e8a267dec91664428fd14784bc861ebc
Certificate serial: 01798D
Authority key identifier: F2:88:C5:C7:E8:A2:67:DE:C9:16:64:42:8F:D1:47:84:BC:86:1E:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8ojFx-iiZ97JFmRCj9FHhLyGHrw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/dc879e-b17e-49a3-8f03-5a09e9de9071/1/w0MQicL6oDo_P4LmiGCzyUCdLCM.roa
Signing time: Tue 08 Feb 2022 18:38:22 +0000
ROA not before: Tue 08 Feb 2022 18:38:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48031
IP address blocks: 217.198.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96653 (0x1798d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f288c5c7e8a267dec91664428fd14784bc861ebc
Validity
Not Before: Feb 8 18:38:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c3431089c2faa03a3f3f82e68860b3c9409d2c23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:cf:bf:13:90:b9:15:18:64:01:10:4e:07:5b:
b1:6a:77:11:83:f5:a6:c8:bf:a6:78:20:20:3e:3a:
55:46:d1:a4:1b:1d:d5:02:6a:ee:4e:33:62:f3:cd:
2b:5e:ed:77:d5:38:25:66:0d:36:45:04:6c:89:5a:
59:58:81:15:25:9f:05:51:2f:05:d3:7a:25:f0:8a:
65:7e:71:17:ea:20:1a:49:9e:ed:b7:cf:00:0e:97:
fe:53:9b:1b:29:af:cb:dc:bb:5b:1f:de:3c:cc:cc:
ff:0b:26:f1:9e:e1:f6:61:6b:8e:7b:47:3d:1f:c9:
2b:ea:4a:9b:ec:86:d5:11:43:4d:f6:54:77:4c:33:
92:0f:54:a3:de:4a:60:19:97:4c:15:62:dd:22:7f:
ed:86:f3:96:0f:d1:32:5b:0c:d6:44:c4:9a:cf:d9:
2e:66:d9:03:76:98:76:9a:f4:82:4a:5f:b4:09:90:
0e:b7:f3:8f:ed:f7:96:80:e9:ac:7b:38:09:7e:e7:
65:60:6e:36:85:ca:1e:38:13:be:61:f8:f9:c9:e7:
dc:de:38:6c:3c:c5:b9:59:6b:71:c3:aa:69:1b:61:
77:47:bf:aa:f7:dc:aa:c5:9c:b2:6f:cb:18:0d:40:
01:87:7e:e5:5b:c6:77:46:db:82:af:72:88:38:66:
8d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:43:10:89:C2:FA:A0:3A:3F:3F:82:E6:88:60:B3:C9:40:9D:2C:23
X509v3 Authority Key Identifier:
keyid:F2:88:C5:C7:E8:A2:67:DE:C9:16:64:42:8F:D1:47:84:BC:86:1E:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8ojFx-iiZ97JFmRCj9FHhLyGHrw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/dc879e-b17e-49a3-8f03-5a09e9de9071/1/w0MQicL6oDo_P4LmiGCzyUCdLCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/dc879e-b17e-49a3-8f03-5a09e9de9071/1/8ojFx-iiZ97JFmRCj9FHhLyGHrw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.198.176.0/24
Signature Algorithm: sha256WithRSAEncryption
42:3c:a4:28:b0:bb:6f:a1:3f:8f:2f:a8:a1:45:86:a1:86:97:
89:ab:48:24:bd:49:33:ac:db:c3:e4:12:cc:b3:af:2b:d4:66:
c8:a1:15:42:52:7b:6c:25:53:ab:1d:7a:76:95:0c:b0:55:e5:
dd:25:20:95:2f:2e:89:1e:be:ff:20:25:58:f7:41:3e:ef:7d:
fb:2b:06:89:9c:60:9f:f6:fd:74:d7:5a:34:0d:ab:c8:ba:b8:
c3:ee:6b:b7:3f:88:f8:8b:43:34:a7:9d:37:28:18:94:25:29:
9f:76:a1:34:06:14:09:5e:c3:ec:6e:10:44:c9:42:3a:ae:85:
d1:6b:1a:82:e3:43:8b:30:c1:a7:24:46:76:ea:90:95:14:7d:
d8:b0:13:3d:46:45:3f:57:cf:af:49:0c:33:16:17:8f:08:f4:
32:32:8d:8c:98:21:d6:d5:16:fe:2f:de:1e:da:54:3a:bd:f5:
32:a6:aa:6c:db:a9:ae:d4:6d:cd:ea:e9:4c:c3:3a:c8:a3:be:
86:3d:68:71:a6:fd:a1:18:af:5d:9a:5a:dc:9b:94:9e:26:f4:
c8:ed:af:0e:e1:36:61:8a:1b:75:e3:66:bc:83:75:78:3d:b6:
4e:c0:7e:e9:4d:0c:78:2e:1f:48:2e:6d:76:8f:e4:24:a8:ef:
13:34:e7:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:04 2023 by rpki-client on console-fra.rpki-client.org