Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/JsZfXmunWPE7i0K9pjMAj6y821M.roa
File: JsZfXmunWPE7i0K9pjMAj6y821M.roa (raw, json)
Hash identifier: 2iBueuNQgz1KzjLh4Dla5jqd7Fd66csAMfU8vu5zPFM=
Subject key identifier: 26:C6:5F:5E:6B:A7:58:F1:3B:8B:42:BD:A6:33:00:8F:AC:BC:DB:53
Certificate issuer: /CN=220f413fb0af0bd8fe130820d3049d0e71ed4bb0
Certificate serial: 07982AF8
Authority key identifier: 22:0F:41:3F:B0:AF:0B:D8:FE:13:08:20:D3:04:9D:0E:71:ED:4B:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/JsZfXmunWPE7i0K9pjMAj6y821M.roa
Signing time: Sat 01 Jan 2022 07:01:45 +0000
ROA not before: Sat 01 Jan 2022 07:01:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 217.169.192.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127412984 (0x7982af8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=220f413fb0af0bd8fe130820d3049d0e71ed4bb0
Validity
Not Before: Jan 1 07:01:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26c65f5e6ba758f13b8b42bda633008facbcdb53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:98:6a:c6:5b:f7:fa:2a:52:af:f3:df:40:7e:
74:04:9b:48:84:7a:66:6e:0c:b2:c1:df:1d:42:c1:
fc:51:90:7a:f7:6c:ca:bb:72:37:e4:8b:fb:62:a2:
b2:f7:3d:d7:30:18:eb:db:02:48:85:b4:29:2c:27:
40:f4:d0:65:17:d0:17:8f:f9:65:fd:f9:62:06:a3:
7f:1c:f0:44:6d:1a:9c:62:cd:19:f0:d0:58:fa:82:
1d:bd:09:95:d2:00:01:0d:ca:6c:f1:62:95:37:08:
a3:a6:e5:f3:4b:ee:db:37:0f:8f:bc:43:5b:fc:12:
f3:67:2e:38:cf:25:97:42:bf:79:eb:c1:8d:af:3c:
d7:4b:68:d2:78:51:6b:57:08:42:99:ca:c0:e5:9a:
9d:36:55:20:5c:94:35:1c:ed:43:50:08:ae:9e:08:
0f:a3:d7:7b:ed:5d:b6:73:85:ed:56:ff:75:b5:d6:
01:4e:07:a1:e0:76:98:bd:f8:f8:ff:d1:93:ec:be:
c5:bb:0c:24:89:69:59:a6:94:76:2d:64:b8:93:aa:
b7:a0:3a:bf:b7:53:55:de:63:86:fc:78:2f:60:69:
f3:ae:89:75:6e:47:41:02:c9:83:8e:36:3a:b1:61:
97:c3:10:2d:56:d1:72:65:61:e2:25:91:90:18:6c:
bd:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:C6:5F:5E:6B:A7:58:F1:3B:8B:42:BD:A6:33:00:8F:AC:BC:DB:53
X509v3 Authority Key Identifier:
keyid:22:0F:41:3F:B0:AF:0B:D8:FE:13:08:20:D3:04:9D:0E:71:ED:4B:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/JsZfXmunWPE7i0K9pjMAj6y821M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.169.192.0/20
Signature Algorithm: sha256WithRSAEncryption
09:1c:6b:12:a5:f6:15:38:3d:3a:d6:83:ab:48:69:55:ce:64:
0f:da:4a:09:0c:d5:47:03:41:3f:75:d8:a0:26:28:15:66:32:
0b:44:d3:aa:d1:77:b6:38:2e:a2:34:7b:00:5c:48:3c:af:bf:
cc:55:e7:9f:67:e9:4b:dc:2b:0f:76:1b:98:e9:f5:ec:18:c2:
99:b0:f0:f0:15:04:2e:ba:40:d9:9d:36:ad:32:5a:d0:f3:68:
52:54:4f:7a:69:e2:cb:6e:bf:da:75:c2:7c:c6:61:c1:38:a5:
3d:47:f8:0c:a3:fe:19:b9:32:e4:1a:59:fb:39:c9:a5:74:aa:
67:23:8b:71:8b:8b:b8:42:ac:74:f9:e0:fc:d0:26:31:77:51:
e3:cf:46:65:80:fd:67:0f:ff:c7:15:a2:76:29:c6:b9:83:ef:
95:9b:b6:b0:eb:c8:a8:05:bc:e7:18:cc:3b:b7:b8:a7:78:4c:
c2:d9:4f:03:5a:dc:b3:99:da:31:61:c5:26:47:15:a5:8a:fa:
cf:3f:61:9a:fe:5e:92:8f:26:e8:d3:51:41:c0:28:8a:5a:ee:
fb:80:5f:82:7f:d8:2f:df:40:67:d0:47:76:7d:c2:7a:80:73:
aa:56:d6:35:f5:ab:45:6b:ff:c7:2b:b5:d2:b4:30:73:a1:52:
91:fe:ae:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:45 2024 by rpki-client on console-fra.rpki-client.org