Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/XrWRB1PMVA28ZHrcK5onBsBNdg0.roa
File: XrWRB1PMVA28ZHrcK5onBsBNdg0.roa (raw, json)
Hash identifier: nA7SF1OEtgZJOYaLLGcmrgHoz5sHvKjbMLRJsfw9vMU=
Subject key identifier: 5E:B5:91:07:53:CC:54:0D:BC:64:7A:DC:2B:9A:27:06:C0:4D:76:0D
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2CAFD878
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/XrWRB1PMVA28ZHrcK5onBsBNdg0.roa
Signing time: Sat 01 Jan 2022 04:59:42 +0000
ROA not before: Sat 01 Jan 2022 04:59:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200088
IP address blocks: 217.149.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 749721720 (0x2cafd878)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 1 04:59:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5eb5910753cc540dbc647adc2b9a2706c04d760d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:cc:ff:aa:c0:15:e0:56:d9:6b:1d:42:1b:19:
c1:05:f5:a4:fa:ae:74:2c:f4:99:1b:40:c1:75:4b:
4b:0a:6b:bb:47:09:e2:e4:d0:44:39:1b:a1:be:da:
40:42:bf:a1:ca:66:1c:3b:45:7a:54:1d:fe:73:62:
2a:3f:90:16:e4:b8:0b:e9:bf:fc:bc:9d:c6:b6:12:
a7:ef:ca:4b:2e:05:f8:d1:13:47:01:65:df:f8:7a:
5f:79:c9:06:45:1a:24:51:dd:2f:23:35:4e:b3:22:
ac:d5:83:7a:fb:4e:b7:d1:ba:74:fd:aa:65:d7:af:
6b:a6:2c:a4:d1:ee:ec:f5:6e:87:e4:7b:d8:dd:d7:
1d:de:0e:bc:bb:c9:32:65:1e:0a:6b:31:ad:07:6f:
1c:47:43:42:60:80:84:fc:21:d3:dc:e7:b4:19:c6:
a4:20:2b:c9:fa:e8:fe:f1:2e:86:14:20:df:81:7e:
46:40:f6:2c:48:53:0f:2b:02:72:33:1d:c5:00:30:
59:2a:ef:eb:3b:7b:7b:6e:ba:4d:ea:7e:66:53:00:
9f:c4:3b:8b:ab:f3:6d:25:78:74:c5:86:a9:fe:95:
37:3e:4c:f4:a9:30:fe:51:82:7c:fd:ae:51:cc:60:
13:4d:ca:63:00:84:f8:92:c9:3e:ae:d5:e9:82:cf:
f2:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:B5:91:07:53:CC:54:0D:BC:64:7A:DC:2B:9A:27:06:C0:4D:76:0D
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/XrWRB1PMVA28ZHrcK5onBsBNdg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.149.240.0/24
Signature Algorithm: sha256WithRSAEncryption
95:fc:76:18:e3:9b:f5:a4:f8:c8:4a:1b:15:c2:1b:09:97:7c:
6d:f3:d0:55:e5:55:86:e6:9b:5f:a1:3f:ed:06:63:7b:da:a9:
e5:46:c7:27:23:46:ba:c3:11:16:80:cb:5e:b9:d2:87:1f:da:
9d:81:d5:9b:e7:1f:6c:3d:40:9e:17:1b:fc:8e:17:26:19:1e:
06:e6:6e:ca:5a:25:17:4f:3b:d3:b9:36:a0:9b:eb:4d:66:e0:
2d:42:39:5f:b9:20:bb:86:ce:35:04:44:be:84:ff:f6:45:10:
4b:76:68:33:55:28:1c:cd:02:ca:9f:56:c9:82:95:ac:4c:83:
3b:a2:47:07:b8:78:ad:e0:69:44:19:41:a6:0a:a6:a6:e5:39:
a1:4f:00:e4:d3:40:a5:34:50:9a:26:69:5d:db:e0:d6:c1:51:
3a:65:c5:5b:d6:67:2f:a9:84:7a:ff:7d:3c:0e:03:92:d4:9d:
4f:68:f5:ed:2f:54:ad:9f:57:5e:30:39:11:85:32:88:d0:cc:
fa:43:8f:9b:44:8b:b0:fd:6b:49:f0:fc:cf:6f:6a:1d:9b:51:
fc:16:ac:3b:3b:fd:36:14:2a:a6:66:30:52:b6:c2:d1:6d:97:
ee:bb:af:ed:5d:cb:d0:b5:09:5b:d4:85:07:b4:1f:16:26:8e:
c0:da:b3:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:43 2023 by rpki-client on console-fra.rpki-client.org