Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/17TeqUUgYcluSn7uQ597GRzCB1E.roa
File: 17TeqUUgYcluSn7uQ597GRzCB1E.roa (raw, json)
Hash identifier: MzbqQZMF1BXXptvVdwBpGKFvdmGC7mLQttsjzwAGl0w=
Subject key identifier: D7:B4:DE:A9:45:20:61:C9:6E:4A:7E:EE:43:9F:7B:19:1C:C2:07:51
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1A2CC3A5
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/17TeqUUgYcluSn7uQ597GRzCB1E.roa
Signing time: Wed 09 Mar 2022 09:28:30 +0000
ROA not before: Wed 09 Mar 2022 09:28:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207783
IP address blocks: 217.156.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 439141285 (0x1a2cc3a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Mar 9 09:28:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7b4dea9452061c96e4a7eee439f7b191cc20751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:26:1e:ac:4f:fa:bc:d4:cc:02:e2:b6:33:cd:
dd:30:fa:77:0a:29:2c:19:00:b0:6c:15:f9:0f:1c:
66:97:08:be:6a:12:7b:09:2c:7d:2e:bb:16:c3:3c:
cc:50:f9:00:60:16:96:22:6f:3b:99:ce:a1:6f:67:
a2:ac:ea:39:00:34:a4:7a:24:a7:dc:bb:09:70:4c:
ff:3f:8f:b7:3e:ac:f5:80:d7:2d:42:4b:a1:d4:f9:
90:89:49:05:5d:26:22:c8:18:1f:8c:72:42:c2:9b:
37:b6:b5:91:6f:c8:10:35:90:4e:a7:79:10:d8:58:
d7:d6:44:bb:9d:ca:64:0b:88:f9:30:f7:25:2a:c4:
5c:97:6b:7e:d2:61:1a:f5:db:f0:82:f5:29:e2:61:
84:60:c3:9c:d0:0e:7f:f8:7b:85:8b:df:15:43:2e:
52:3d:a3:42:4a:39:dd:5e:4c:6f:fe:1f:8d:7b:77:
aa:e5:af:b7:7c:ec:1a:e8:36:64:10:95:6b:f4:83:
bd:ee:45:3f:8f:a6:7d:01:d6:34:4c:ce:56:79:75:
35:9c:82:e1:9f:0b:94:66:40:0b:65:62:eb:d3:3a:
29:4d:e8:2f:43:90:c5:60:58:51:0f:e3:6f:5e:3a:
94:6e:38:7c:a4:47:13:79:b7:b2:d8:cf:1a:3d:78:
be:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:B4:DE:A9:45:20:61:C9:6E:4A:7E:EE:43:9F:7B:19:1C:C2:07:51
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/17TeqUUgYcluSn7uQ597GRzCB1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.156.96.0/24
Signature Algorithm: sha256WithRSAEncryption
39:4a:cd:77:dd:1d:54:f8:58:cb:af:59:57:55:ed:ae:f4:76:
4e:d1:f3:16:b9:75:b5:c4:6b:6a:d5:43:18:ed:35:ef:75:f9:
78:a1:48:35:93:6f:78:5d:d3:dd:04:b2:cb:85:e1:6c:12:6c:
3a:1b:29:4e:55:24:f5:a5:81:57:a6:ae:43:fe:13:52:aa:f2:
e4:4d:14:69:b2:be:3f:95:4e:d1:e2:b1:10:56:e6:e0:4e:43:
01:9f:63:ab:3f:93:8d:fa:dc:34:af:d0:3a:e2:8e:29:36:75:
e1:fd:d8:94:b1:25:76:c6:98:53:2f:22:c2:0a:f3:32:2a:46:
5c:07:86:f7:53:2e:fc:ab:6f:44:31:63:6a:69:15:df:07:44:
ac:1e:c3:b7:ec:4b:55:d1:de:29:15:5c:ef:a2:4a:ca:3f:4b:
7d:4d:9a:63:e1:64:df:6d:e9:67:f3:5b:74:15:ff:56:22:61:
f5:8b:e2:e9:21:54:0c:b8:24:5c:55:78:92:7e:0e:1c:54:80:
d1:fd:fd:74:2a:c4:bd:83:ed:38:38:35:8e:dd:6d:5c:13:68:
94:bb:d7:63:ae:be:7f:ff:31:af:6d:da:fb:64:30:1b:9d:a7:
e2:7e:49:ef:72:f3:3e:6b:ea:e4:f7:a2:ac:1f:b2:39:ec:e3:
39:14:0e:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:04 2024 by rpki-client on console-ams.rpki-client.org