Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/x5SeWyk_1UM1obEVQ_Fr8RAShhc.roa
File: x5SeWyk_1UM1obEVQ_Fr8RAShhc.roa (raw, json)
Hash identifier: ASBbbwKh7sFnUUr6iy2ac1m8drFjKju0FkOZNaHRodg=
Subject key identifier: C7:94:9E:5B:29:3F:D5:43:35:A1:B1:15:43:F1:6B:F1:10:12:86:17
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 19BFF382
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/x5SeWyk_1UM1obEVQ_Fr8RAShhc.roa
Signing time: Tue 08 Feb 2022 11:52:33 +0000
ROA not before: Tue 08 Feb 2022 11:52:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 217.156.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 432010114 (0x19bff382)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Feb 8 11:52:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c7949e5b293fd54335a1b11543f16bf110128617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:09:13:96:8c:41:dd:26:07:ac:42:96:5b:0a:
9b:3c:b8:28:ff:e0:63:ae:f4:7f:b2:7e:37:1a:e8:
ab:b3:2b:c2:be:a0:d6:c7:d4:8f:eb:c7:0c:f0:85:
0b:96:74:63:4f:2f:a0:4c:73:ef:6e:cc:e8:cf:59:
e5:fa:c2:0e:37:fe:a9:ba:6f:a7:91:12:6e:64:81:
e4:8f:4c:5e:9f:d2:43:f7:a5:5a:ba:54:56:8e:49:
bd:e5:9e:3c:fb:c1:c6:f3:c1:95:52:63:d0:c4:ee:
dc:9a:17:85:ed:d1:f0:36:4e:d2:69:11:7d:d2:b9:
10:36:62:a4:70:99:f2:4a:17:23:d7:b0:ae:e5:e1:
8f:92:ad:db:1a:93:6a:8d:40:1f:fb:6d:1a:84:3a:
71:8e:8b:45:77:65:07:06:ea:8d:41:ff:fb:08:9d:
69:bd:56:2a:d5:18:b7:ea:26:ee:25:8e:e3:71:a5:
89:74:f3:2d:39:3d:cd:e1:b2:5b:c2:22:5f:37:11:
05:2e:d0:1e:95:e1:9c:90:3e:60:ce:fe:c1:f0:78:
fc:94:9d:90:86:34:52:5f:b4:c1:13:49:14:76:8c:
a0:35:17:71:e6:88:82:6d:ef:26:38:22:08:0b:56:
48:2f:12:14:f9:0f:4e:94:91:c1:13:c9:e0:81:6a:
16:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:94:9E:5B:29:3F:D5:43:35:A1:B1:15:43:F1:6B:F1:10:12:86:17
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/x5SeWyk_1UM1obEVQ_Fr8RAShhc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.156.96.0/24
Signature Algorithm: sha256WithRSAEncryption
08:47:0f:a0:33:92:fd:f7:71:fc:f8:03:f9:a5:86:16:e3:0e:
a5:3a:54:5f:31:60:bb:e7:da:e1:bc:b0:cd:bb:bc:b1:36:d0:
ec:12:fc:27:27:6c:52:ab:ae:57:23:4a:7b:8a:32:cf:71:a7:
d5:b4:63:ee:ce:51:45:fe:ef:9b:87:66:f6:bd:c2:0c:cb:bb:
9c:9b:c6:7d:77:ba:f9:a8:5c:e8:75:a9:47:75:a9:f9:71:d2:
b1:70:49:06:17:73:28:64:72:e0:26:b9:50:75:44:0b:41:52:
79:c3:43:b2:72:19:ff:c6:0e:dc:38:58:07:fb:58:ae:cf:d1:
5c:39:0c:b8:b1:ab:06:48:f9:f5:03:19:11:02:a5:b8:ec:f6:
14:dc:73:c8:73:64:ae:93:f8:9d:63:0b:f5:fb:81:5e:b3:85:
d8:d4:4d:2f:b9:05:c0:35:b9:76:f8:29:5d:e4:5e:6d:7a:c4:
09:7a:fd:b9:a2:e5:78:19:31:57:cc:85:81:b4:ce:ab:0d:cd:
0a:af:85:c3:d2:fb:24:9d:84:28:85:e8:5c:80:af:ce:2c:a4:
94:62:8f:6b:8d:7a:ca:f7:66:70:44:9c:b9:9f:3e:51:fb:f4:
a7:e4:ff:03:0b:09:6a:9e:34:4d:cb:66:2f:dd:16:76:47:ee:
b1:d7:2c:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org