Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/p_TZIK2bfdXEJA4Mmxe0YKLz6eo.roa
File: p_TZIK2bfdXEJA4Mmxe0YKLz6eo.roa (raw, json)
Hash identifier: 1PhIprQrdsiiXOJDBPYTOYsq3duBeZU6aKQQaMhIMmg=
Subject key identifier: A7:F4:D9:20:AD:9B:7D:D5:C4:24:0E:0C:9B:17:B4:60:A2:F3:E9:EA
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 19A9050E
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/p_TZIK2bfdXEJA4Mmxe0YKLz6eo.roa
Signing time: Mon 31 Jan 2022 13:14:28 +0000
ROA not before: Mon 31 Jan 2022 13:14:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 217.156.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 430507278 (0x19a9050e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 31 13:14:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7f4d920ad9b7dd5c4240e0c9b17b460a2f3e9ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ca:00:9c:b7:bc:1f:bf:69:1a:c9:5f:a2:a4:
e0:d9:8d:2b:a1:17:07:01:1a:ed:fd:64:da:fb:c0:
62:30:a2:db:13:90:93:b5:24:ac:9c:c7:4b:5b:06:
ff:91:a9:03:fc:0c:09:01:ce:de:0e:01:ef:a5:0e:
bc:43:27:22:35:f8:e9:27:7f:dd:23:2b:be:0b:a8:
d4:9b:9d:f2:f2:50:9b:ef:fe:95:24:d1:6f:fb:98:
31:4f:08:ce:4d:36:4a:cd:25:49:a5:6c:23:a0:bd:
bc:a6:7e:e0:92:a7:e6:34:f0:03:b5:e1:41:30:0f:
1a:09:ef:a5:44:51:36:65:94:74:77:34:b5:6d:40:
1c:f9:62:8b:b6:b2:67:d5:8f:51:6a:b6:04:42:82:
33:69:3f:ee:76:1a:58:46:5e:da:ec:ee:31:ec:79:
d3:7b:68:7a:1d:6c:71:3d:2c:3c:bc:c2:2a:43:91:
e4:36:bc:5f:67:12:ca:fe:8d:21:8e:36:f1:6a:eb:
33:4c:1b:f8:74:a5:c1:69:01:b9:24:6c:40:bb:35:
84:67:73:dc:39:6e:6b:f3:d8:d5:6f:54:35:78:f8:
6a:b7:b4:64:9b:17:9b:5d:89:a2:93:85:5c:d5:a9:
0d:f1:fb:d0:d5:6b:47:05:33:2f:12:ef:14:05:34:
d8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:F4:D9:20:AD:9B:7D:D5:C4:24:0E:0C:9B:17:B4:60:A2:F3:E9:EA
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/p_TZIK2bfdXEJA4Mmxe0YKLz6eo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.156.96.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:41:ba:88:b8:6a:63:72:c3:d3:49:ac:62:4d:aa:d7:d7:b3:
57:b8:f7:a6:38:92:76:27:6b:e1:2a:67:65:c1:72:52:b5:80:
1c:16:de:68:71:2c:4d:cb:7f:56:ee:26:1c:ac:ce:a1:da:af:
4d:79:95:25:ff:9f:93:e9:a3:53:db:e8:97:29:ec:0e:7f:c4:
ff:d1:40:e5:39:ed:75:8b:0c:62:25:eb:64:9f:34:f7:a6:56:
f3:09:0f:64:f3:28:00:41:0d:8f:08:ff:c4:c8:bc:0d:d5:57:
64:68:cf:62:a8:0f:1d:c9:1b:df:61:e2:56:26:4d:50:3e:bf:
91:d3:76:67:95:b3:c6:ce:0e:86:77:f3:f9:53:77:fe:6a:57:
fc:08:75:0f:97:11:17:55:f8:fa:32:68:61:b9:ab:50:9e:d5:
ab:27:a1:dc:81:9a:5b:72:ed:44:7f:36:73:bb:a0:90:9b:b2:
eb:21:3d:20:cf:d6:d4:42:f8:d4:58:0b:59:f5:c1:5c:cb:ff:
79:bb:09:b8:db:4e:c8:42:2f:45:a7:80:e3:b5:60:54:fd:f5:
40:aa:fa:f2:be:5f:04:9b:ea:55:f5:51:e4:6a:a5:c4:e3:7e:
e8:b9:00:54:e5:2c:27:d2:3c:43:26:27:ee:53:21:77:c2:02:
2a:41:95:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:28 2023 by rpki-client on console-fra.rpki-client.org