Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/Dh71SOIEZeX672PWiT6ia_aQXww.roa
File: Dh71SOIEZeX672PWiT6ia_aQXww.roa (raw, json)
Hash identifier: 1SIcTIror5PgJu5PofyY3L5mwF8B1oGBGK/UJyugLWk=
Subject key identifier: 0E:1E:F5:48:E2:04:65:E5:FA:EF:63:D6:89:3E:A2:6B:F6:90:5F:0C
Certificate issuer: /CN=1224e5eff1abc0e6d8bf029e4f732e0ab71bc16a
Certificate serial: 0B44161A
Authority key identifier: 12:24:E5:EF:F1:AB:C0:E6:D8:BF:02:9E:4F:73:2E:0A:B7:1B:C1:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EiTl7_GrwObYvwKeT3MuCrcbwWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/Dh71SOIEZeX672PWiT6ia_aQXww.roa
Signing time: Sat 01 Jan 2022 12:04:12 +0000
ROA not before: Sat 01 Jan 2022 12:04:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49043
IP address blocks: 86.117.18.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 189011482 (0xb44161a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1224e5eff1abc0e6d8bf029e4f732e0ab71bc16a
Validity
Not Before: Jan 1 12:04:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e1ef548e20465e5faef63d6893ea26bf6905f0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a6:0a:41:96:b6:56:07:33:d4:f5:65:52:61:
9c:10:48:6a:8b:91:13:fa:23:55:cc:da:a3:bf:80:
f1:9c:97:a7:fa:92:74:b6:ee:3f:ef:b4:7b:7a:c2:
67:03:41:5d:41:c5:9a:10:b3:47:3d:3a:e1:9b:bc:
1f:13:34:bd:81:a4:aa:03:86:32:de:23:65:e0:64:
c5:16:c7:9a:2d:96:2b:bc:0b:6c:75:26:5f:61:dd:
2b:96:65:42:00:65:3d:8f:61:e0:9f:61:95:73:8a:
a8:ef:5f:1d:53:72:b9:dc:b7:4a:5d:83:ba:fc:f3:
f5:28:38:b7:a0:14:9c:40:9d:10:d1:87:25:d1:f0:
4a:88:24:53:62:b8:0d:a2:3a:e7:d6:50:46:a6:e3:
8f:8e:80:8b:e4:4d:03:7c:84:be:27:fa:ad:5d:cc:
24:8c:6c:5f:05:4b:26:3d:89:3d:a0:41:33:ae:03:
f2:12:a2:f2:7c:01:ff:98:2e:df:58:87:63:fa:9a:
68:36:cb:ef:e5:69:6e:ad:ef:98:f5:8f:c0:5a:34:
35:f2:1b:3f:78:d9:5d:0b:81:d6:5b:f3:d7:7c:9d:
cf:68:59:80:ef:26:ab:ef:db:82:7a:2d:b0:0d:ca:
67:ad:4a:1f:54:e8:25:2f:cd:4f:fd:7b:03:b8:8e:
e0:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:1E:F5:48:E2:04:65:E5:FA:EF:63:D6:89:3E:A2:6B:F6:90:5F:0C
X509v3 Authority Key Identifier:
keyid:12:24:E5:EF:F1:AB:C0:E6:D8:BF:02:9E:4F:73:2E:0A:B7:1B:C1:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EiTl7_GrwObYvwKeT3MuCrcbwWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/Dh71SOIEZeX672PWiT6ia_aQXww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/EiTl7_GrwObYvwKeT3MuCrcbwWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.117.18.0/23
Signature Algorithm: sha256WithRSAEncryption
73:53:5f:b2:4e:d8:19:04:9f:6e:77:65:b2:45:40:86:3f:61:
c7:45:9f:7e:ef:c0:ee:c2:5d:7c:88:1e:d9:f8:e2:c5:e1:36:
e8:38:34:01:2a:7f:80:4f:65:89:b6:30:cb:bd:7b:f8:71:23:
1a:ab:33:79:56:52:4d:14:ec:ae:dc:df:f3:55:9b:bd:6f:10:
e1:0c:cb:c4:89:9d:23:c6:f3:17:bb:4e:94:23:de:77:b5:04:
e6:cd:1e:ac:8a:e5:e5:44:f8:21:56:be:4f:45:ed:48:ca:23:
cd:8e:a3:01:e1:27:70:ad:88:ff:f5:88:63:a6:13:74:01:07:
65:ba:98:cc:09:10:f5:13:61:35:14:b5:b0:54:56:d6:c3:43:
c4:31:e0:bf:3a:09:3e:75:c9:df:c6:44:36:26:99:20:cf:5b:
73:7b:6d:81:4c:c2:f7:cb:00:45:fc:54:b6:b5:7e:47:7e:eb:
0c:9e:84:18:8d:64:58:7c:aa:c6:23:59:6f:6f:db:81:ac:96:
a5:14:bc:5f:74:58:62:35:7b:ce:10:5d:7f:ef:52:f1:4c:71:
2c:f8:12:77:cd:73:65:46:e1:f8:63:d5:da:9d:d4:d0:69:04:
a0:6d:80:02:5b:3d:76:c1:55:aa:5b:9d:3e:84:c9:7a:a1:c9:
52:1c:8a:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org