Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/6fhGNGGSd9jTY3qLp304k-BIJ7A.roa
File: 6fhGNGGSd9jTY3qLp304k-BIJ7A.roa (raw, json)
Hash identifier: AXlpJSnxSeM60Cb+P0vMitHXCjNuxWQu8ZBRXYkjCyw=
Subject key identifier: E9:F8:46:34:61:92:77:D8:D3:63:7A:8B:A7:7D:38:93:E0:48:27:B0
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 045DEB16
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/6fhGNGGSd9jTY3qLp304k-BIJ7A.roa
Signing time: Mon 28 Feb 2022 10:31:54 +0000
ROA not before: Mon 28 Feb 2022 10:31:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8308
IP address blocks: 217.9.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73263894 (0x45deb16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Feb 28 10:31:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9f84634619277d8d3637a8ba77d3893e04827b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:86:03:54:9a:06:e4:58:a0:62:70:53:1b:3e:
ff:5d:30:90:9e:81:69:24:33:e7:9f:09:8c:35:1b:
88:55:06:fd:ed:18:bf:c7:8d:69:3b:eb:d0:66:f3:
75:ad:e2:b1:7b:b5:06:05:87:8a:22:c9:0d:5b:e7:
cf:8f:6b:8d:94:9b:35:3a:77:a5:6a:2c:cc:c5:35:
37:ba:20:48:95:3a:3f:ce:cb:a0:b3:31:27:3e:5a:
33:6d:b6:8b:15:04:b1:5a:5f:d2:45:54:1c:5c:06:
df:64:7f:d9:70:f8:c0:f2:a1:47:58:18:b5:e3:16:
6f:8f:1e:da:a9:84:e2:ea:0c:93:65:95:c4:da:1a:
0f:5e:fd:f6:0e:ba:37:ad:c5:b0:2b:be:c9:f1:ae:
58:05:03:1f:d1:9b:19:ac:0f:2a:3f:14:b0:e7:db:
ec:3c:3b:e4:d0:07:e2:e0:63:fb:fb:ba:80:b1:36:
b2:3d:5c:82:58:b8:2a:51:04:19:5d:16:7b:48:5c:
d1:8c:da:c7:29:d5:02:ab:5a:90:64:23:e4:b4:5c:
a9:48:fe:25:2c:06:33:9c:6e:13:d2:92:f1:70:ad:
79:0f:1a:48:4f:2a:ca:86:53:8a:a0:bb:75:af:6b:
4d:f4:ee:4e:3a:89:5a:00:4a:bd:60:b5:8a:4e:ef:
53:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F8:46:34:61:92:77:D8:D3:63:7A:8B:A7:7D:38:93:E0:48:27:B0
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/6fhGNGGSd9jTY3qLp304k-BIJ7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.9.160.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:70:04:2c:5d:df:78:ad:df:0c:d6:52:3e:59:3f:3c:78:42:
71:a0:00:ba:df:78:c4:af:03:38:ff:18:79:6f:2c:72:a7:7e:
74:f2:25:2d:81:ee:b0:ce:44:4f:88:d2:c4:86:98:05:c2:61:
c2:1b:68:32:ec:62:35:a3:08:6f:9d:b0:26:fc:dd:b0:69:30:
47:bb:1a:f6:df:0a:62:ab:1a:03:dc:d9:c4:d8:7a:3e:9d:8a:
54:12:c0:17:87:90:b8:c4:93:c4:74:b4:4d:38:e0:89:a5:6d:
ee:c3:1c:52:24:47:43:9a:93:ee:10:c2:bc:ab:e9:20:66:96:
bf:48:43:6b:69:43:28:a4:74:50:8b:a4:cb:a0:b8:b4:2e:e6:
3f:0f:a0:e6:a8:6f:7c:8a:b6:79:07:b5:47:ad:b9:7b:d5:20:
6d:ba:c6:74:fb:63:6f:cf:2f:9a:dc:1c:56:8b:9c:b0:3c:2a:
64:24:36:ff:4b:1e:2c:7e:72:db:06:24:cc:ea:44:29:5c:40:
5a:c8:a6:46:cc:46:85:ca:15:ce:a4:22:91:fd:f7:0a:bd:52:
99:e1:fb:ce:26:b4:b5:84:90:bd:d0:a7:87:f5:57:b2:d4:d7:
96:47:5d:4c:46:80:b1:8b:12:c1:91:d2:2f:93:ac:46:bb:1a:
15:c7:c8:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:01 2023 by rpki-client on console-ams.rpki-client.org