Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/C_xVq5W8Dvy9Ny_cUU0STnJUXuo.roa
File: C_xVq5W8Dvy9Ny_cUU0STnJUXuo.roa (raw, json)
Hash identifier: 85PR4PWB2rwwmgi6O+0ojF8ZyyRIXc9Y1NTc8dqDKII=
Subject key identifier: 0B:FC:55:AB:95:BC:0E:FC:BD:37:2F:DC:51:4D:12:4E:72:54:5E:EA
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 3892C96C
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/C_xVq5W8Dvy9Ny_cUU0STnJUXuo.roa
Signing time: Sat 01 Jan 2022 05:54:25 +0000
ROA not before: Sat 01 Jan 2022 05:54:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201611
IP address blocks: 217.69.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 949143916 (0x3892c96c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 05:54:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0bfc55ab95bc0efcbd372fdc514d124e72545eea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bb:fb:56:33:5d:23:9d:f1:eb:5b:4d:1b:0d:
52:03:30:d3:a0:24:f2:06:84:db:ed:d5:96:1f:38:
ee:f7:2c:c2:62:57:9e:94:6b:e8:3a:3a:5f:24:b7:
ae:c0:59:f5:8f:66:55:54:ca:65:c0:d4:d7:c4:d1:
df:77:ad:26:c4:01:a5:65:ed:c0:00:6f:f4:8b:a2:
e5:3d:85:a6:43:f2:88:15:3c:1d:b9:6e:c1:2a:31:
00:a2:67:8a:28:d6:f1:4e:45:c7:7d:71:ac:30:25:
7f:c9:6e:be:b1:8c:71:0d:13:d6:49:3c:be:b8:a6:
7a:41:66:e0:52:96:9b:83:63:94:f1:0a:9e:5e:99:
7d:62:27:7e:c4:ba:04:62:4c:4e:8d:9c:54:13:bc:
46:f7:d6:09:11:fc:d5:8a:c5:9c:78:3c:0a:de:12:
e8:69:35:89:97:41:14:fa:ca:a0:6e:de:7f:ae:c1:
48:0a:f4:1f:e3:ca:ad:be:4c:2e:dc:7c:18:55:49:
55:60:a9:b4:8e:1f:ae:b1:16:e2:b8:e5:c9:fb:9f:
68:d3:0c:b5:42:9f:3c:79:86:7f:db:6f:9c:3f:5c:
ce:f6:d5:32:ab:66:f4:2f:4a:1d:a9:3e:64:3d:4e:
15:42:1f:af:29:83:0d:1e:16:a8:ba:59:de:56:f0:
1e:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:FC:55:AB:95:BC:0E:FC:BD:37:2F:DC:51:4D:12:4E:72:54:5E:EA
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/C_xVq5W8Dvy9Ny_cUU0STnJUXuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.69.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:78:d6:25:4e:62:f4:2d:bf:73:6d:4a:f9:4e:9d:88:82:77:
4b:b7:b8:f2:ce:82:e1:23:41:a1:d4:9c:cf:cc:22:a7:2b:1b:
68:0d:10:b0:86:32:9b:bf:89:a7:a5:42:58:95:67:b5:f5:11:
f6:32:cd:ec:66:a9:98:d1:4c:b4:df:17:e9:8e:df:8e:ee:29:
c2:fc:f6:0c:90:b5:8a:ba:40:d5:79:1e:48:4b:bd:e7:ad:66:
fd:d9:b7:43:7c:85:bb:8c:71:17:74:f1:c6:14:12:5f:58:ca:
47:d3:a0:b4:ee:fb:2b:7f:3d:97:94:c7:4d:55:71:5b:e8:c6:
02:d1:80:c8:f3:3d:39:93:f2:5a:e7:09:5f:d9:d0:d1:c9:6f:
af:36:e2:37:54:5b:72:a6:d5:82:29:61:55:30:95:ec:16:0a:
c9:52:41:6b:5c:61:a0:8e:ec:0f:79:bf:e8:85:7d:73:8c:ba:
89:f1:3e:da:b9:e3:c0:64:4b:0f:b5:66:21:05:b0:a4:69:93:
51:fb:60:92:a6:54:58:1f:a5:ac:1a:8e:ad:d1:a8:3d:bf:d6:
7f:a0:5a:78:8d:2b:56:62:cb:2b:7d:0a:d3:4a:37:18:4a:53:
b2:41:db:72:ba:00:0a:eb:80:11:73:a9:67:eb:26:b2:e4:58:
cc:db:b1:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:37 2023 by rpki-client on console-ams.rpki-client.org