Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/x6X2VQbMNOGkBfuQPfhv3zo5oME.roa
File: x6X2VQbMNOGkBfuQPfhv3zo5oME.roa (raw, json)
Hash identifier: mmIVVsjlgklbkeiS8ntw9PCWMjin+sWbz/QBF4Ee+lM=
Subject key identifier: C7:A5:F6:55:06:CC:34:E1:A4:05:FB:90:3D:F8:6F:DF:3A:39:A0:C1
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1B3B29B1
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/x6X2VQbMNOGkBfuQPfhv3zo5oME.roa
Signing time: Tue 24 May 2022 08:48:14 +0000
ROA not before: Tue 24 May 2022 08:48:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212593
IP address blocks: 217.156.24.0/24 maxlen: 24
217.156.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 456862129 (0x1b3b29b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 24 08:48:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c7a5f65506cc34e1a405fb903df86fdf3a39a0c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:06:3b:1e:71:4c:f3:f2:0a:af:29:06:66:16:
78:f9:64:43:ff:f9:3f:cb:cb:ed:74:86:b6:71:83:
f7:1d:e7:e3:67:e7:08:a2:a7:5b:c5:7e:4e:c5:c9:
46:a3:5e:92:1c:a8:99:db:5a:58:50:f0:32:67:ae:
16:24:9f:fe:b2:72:1e:ec:58:7b:81:c9:c6:ba:64:
da:bc:2d:40:cf:af:8c:3c:75:9c:db:34:85:60:38:
90:79:16:86:a3:eb:f0:ba:67:bd:44:0a:9f:3a:31:
d8:8b:05:82:a4:08:b0:8b:b9:4e:15:86:be:6e:9c:
ba:31:2f:b6:08:40:33:0a:aa:52:c6:a5:d0:20:01:
fa:9f:a6:94:03:8c:aa:df:a3:db:75:e3:71:72:72:
2d:00:e1:3e:0c:6f:50:42:cf:f8:f3:05:bc:a4:56:
06:59:92:73:bc:88:9d:6d:b9:36:14:a0:11:2c:6e:
a9:15:35:28:ce:68:df:63:e4:28:9f:91:12:a9:6b:
14:22:dc:32:6c:df:ee:35:02:76:2b:ab:ad:68:ed:
f5:da:4d:fd:33:d0:67:7d:c2:32:52:39:8e:72:37:
9a:1a:c0:9b:1b:f2:63:e6:5c:3a:b1:3d:d7:fa:fe:
7b:b5:94:e9:b6:fc:b9:aa:95:05:b7:81:31:48:bb:
e6:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:A5:F6:55:06:CC:34:E1:A4:05:FB:90:3D:F8:6F:DF:3A:39:A0:C1
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/x6X2VQbMNOGkBfuQPfhv3zo5oME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.156.24.0/23
Signature Algorithm: sha256WithRSAEncryption
89:38:da:75:21:1f:06:94:92:9f:60:d8:4c:ef:55:4c:c5:41:
a7:15:49:01:12:f9:47:7c:b0:4d:c0:60:3a:5d:d5:ba:e0:c9:
3b:85:66:67:b6:14:02:b8:ae:7a:6d:00:d1:b8:68:26:c7:72:
81:4a:a5:46:0a:19:5e:1c:7f:d6:a8:79:4f:6e:21:cb:49:1c:
ec:d3:90:cb:bc:c0:dc:a9:25:f1:92:05:c2:98:36:b3:c7:08:
d7:c2:e6:78:ed:1e:8c:80:f3:1e:3d:cc:8b:ac:c6:e0:47:55:
b7:b0:ff:19:17:f4:03:58:d7:3d:c2:17:73:40:3e:42:a6:27:
a3:f7:3a:ca:71:9b:22:fd:e3:ca:10:f6:20:84:c7:9f:21:7f:
95:1e:a9:36:fe:bd:4f:8e:eb:4e:7f:29:bd:ab:a1:90:9a:f9:
e3:45:35:ec:df:51:ae:8e:72:57:9b:09:97:8c:31:94:bf:f8:
f9:a5:3e:42:29:d8:d7:96:83:0f:0f:4d:c1:09:f5:60:a8:e0:
9d:fc:d5:ed:95:84:c9:e0:29:b2:f5:62:35:fb:f8:4b:b9:46:
fe:0f:47:51:7b:4f:b0:67:cc:47:a0:d6:64:fd:4b:d7:1b:e1:
47:e5:a9:db:6a:41:ee:49:76:95:7b:5e:28:51:7d:eb:cc:56:
70:53:95:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-ams.rpki-client.org