Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/SsNXVP5348fKBNWz7Hwfof067C4.roa
File: SsNXVP5348fKBNWz7Hwfof067C4.roa (raw, json)
Hash identifier: f/wqm7R5ah37pXbv/w7ICSxRks7EN2YQLcCx3mEZBZg=
Subject key identifier: 4A:C3:57:54:FE:77:E3:C7:CA:04:D5:B3:EC:7C:1F:A1:FD:3A:EC:2E
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1B2B90C1
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/SsNXVP5348fKBNWz7Hwfof067C4.roa
Signing time: Thu 19 May 2022 16:56:30 +0000
ROA not before: Thu 19 May 2022 16:56:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34358
IP address blocks: 217.156.44.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 455839937 (0x1b2b90c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 19 16:56:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ac35754fe77e3c7ca04d5b3ec7c1fa1fd3aec2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:6a:66:5c:9b:6c:3b:09:03:7c:52:ec:ba:6d:
b1:87:84:05:26:03:4e:aa:8f:c6:f5:10:23:5c:d3:
78:9d:4b:9a:46:28:59:64:5d:d6:ac:07:06:3e:aa:
7a:bc:d9:5e:7a:b1:51:20:89:ca:13:4c:9e:09:f0:
83:ed:61:f0:a5:fa:be:2d:ac:43:76:ae:42:45:fd:
e2:57:1d:ea:9b:4b:25:75:d0:87:8b:c8:e5:e9:d3:
14:f9:93:45:c0:d1:48:76:57:a4:98:df:cd:95:d5:
f4:ee:27:77:f1:95:0c:97:6f:a5:92:7e:64:e7:b8:
18:a0:9d:95:f3:88:6b:f2:d1:c5:21:90:01:72:ed:
7f:fe:23:12:2f:67:3b:65:72:ea:fa:98:fd:5c:4b:
20:89:9e:99:6f:a7:5a:39:d8:21:bc:97:d8:2c:75:
66:70:2a:e6:b9:ea:07:5e:f3:ec:ad:8a:05:b9:c2:
84:9e:f1:aa:a5:fb:52:82:66:f5:c6:d6:3c:24:66:
10:4c:cf:bc:1f:24:e7:77:35:ed:88:b4:fd:2c:f7:
6c:66:af:d7:c5:67:73:69:50:2a:db:cc:b2:3e:99:
65:67:4d:e6:6e:bc:a1:9a:01:05:ec:f2:a0:92:5a:
2b:d8:ac:14:45:7c:bd:fd:52:02:10:d6:18:85:69:
62:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:C3:57:54:FE:77:E3:C7:CA:04:D5:B3:EC:7C:1F:A1:FD:3A:EC:2E
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/SsNXVP5348fKBNWz7Hwfof067C4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.156.44.0/23
Signature Algorithm: sha256WithRSAEncryption
b9:c5:3b:4e:63:c7:b4:c8:6c:af:46:28:04:1b:e6:92:92:2b:
19:00:9b:10:97:99:67:e3:cc:0b:ef:f6:39:1c:13:86:76:5c:
35:74:81:11:d6:98:af:76:c1:7c:9e:75:c9:47:3a:76:f1:4b:
31:6c:5a:47:05:b1:bd:04:70:d3:b9:1e:36:d3:d4:c6:b3:b3:
25:21:e8:32:b7:61:85:77:e9:17:93:11:c2:e3:f7:5b:8b:dc:
a5:af:ce:7f:6e:5a:b5:2e:2e:16:5c:6f:0b:46:ee:07:9d:04:
cd:0c:a0:3d:f6:c9:d9:a8:48:df:56:33:d6:42:14:ea:2b:5b:
3b:5c:c0:16:7b:31:6e:b9:64:74:48:bf:7f:5d:83:be:71:93:
85:16:53:68:96:77:e6:f3:7e:95:af:1b:d3:b4:2d:1f:bd:8f:
ee:a9:63:bf:68:ae:04:8c:a7:d6:bb:4b:9b:7f:e6:75:b8:d9:
e9:52:7c:03:3f:c0:96:45:53:f0:ad:b5:51:57:e0:82:06:39:
70:de:f9:99:0d:b6:c4:55:59:4f:61:50:71:7f:7f:24:fc:12:
1d:bd:88:76:c8:e0:10:97:29:08:bf:ea:ec:3a:32:5e:69:25:
3c:fb:9b:96:6f:ed:9c:17:13:c9:e0:9b:71:2b:2f:e2:35:e1:
7c:92:49:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:28 2023 by rpki-client on console-fra.rpki-client.org