Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/25aa70-b806-4f91-91de-5146ef01c21b/1/ioKt_jS9bUgxaTUyQ7QYJ42Va18.roa
File: ioKt_jS9bUgxaTUyQ7QYJ42Va18.roa (raw, json)
Hash identifier: pDUVK+0ttvP5ZSfHTrmFKgqEl5UT8aTzc9GztL4f7yk=
Subject key identifier: 8A:82:AD:FE:34:BD:6D:48:31:69:35:32:43:B4:18:27:8D:95:6B:5F
Certificate issuer: /CN=b7ba52ca7838433f9f045446c1f3e568a78b56d2
Certificate serial: 9E797F
Authority key identifier: B7:BA:52:CA:78:38:43:3F:9F:04:54:46:C1:F3:E5:68:A7:8B:56:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t7pSyng4Qz-fBFRGwfPlaKeLVtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/25aa70-b806-4f91-91de-5146ef01c21b/1/ioKt_jS9bUgxaTUyQ7QYJ42Va18.roa
Signing time: Sat 01 Jan 2022 01:52:03 +0000
ROA not before: Sat 01 Jan 2022 01:52:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210545
IP address blocks: 217.119.138.0/24 maxlen: 24
2a11:7b40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10385791 (0x9e797f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7ba52ca7838433f9f045446c1f3e568a78b56d2
Validity
Not Before: Jan 1 01:52:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a82adfe34bd6d483169353243b418278d956b5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b8:c2:4f:0c:81:df:b2:73:72:26:04:d6:50:
c5:91:d2:4c:30:44:a1:8a:f3:96:27:4b:48:5c:14:
bc:42:23:89:83:c9:02:3e:c1:1a:3e:0d:3f:23:54:
2f:9d:66:8c:d3:ff:ff:98:db:53:d0:c6:46:ec:65:
c9:f3:bb:54:41:e1:ac:43:dc:56:66:7b:4e:82:3c:
82:4e:d3:47:83:f4:e1:53:54:87:6c:30:f8:a4:12:
63:99:c1:04:d5:97:34:db:da:9c:e9:3b:51:5c:c2:
77:d2:fd:27:00:44:b5:a3:ab:28:6c:e0:28:b6:a0:
58:20:83:85:58:f5:f7:eb:42:f1:8c:0e:df:ec:8d:
73:f7:75:bf:b6:8e:1f:20:7f:b0:17:db:bd:cc:f1:
c3:08:b8:0e:8b:de:ef:0c:ca:89:0f:3d:ed:86:33:
c7:f4:0a:46:76:79:1f:e3:e8:8f:ef:bb:78:d0:6b:
b4:7f:15:29:19:29:33:66:50:8f:77:a7:d9:5c:88:
43:77:2f:9d:89:6c:cc:a1:ea:96:db:58:7a:2e:dd:
64:6b:6d:12:8f:f6:25:ba:56:ec:e4:31:7a:f3:e7:
41:37:20:27:99:fa:bf:60:2e:a0:2f:16:f5:b5:ff:
56:a8:66:c4:bd:54:4c:fa:3e:f5:34:5f:e2:10:53:
99:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:82:AD:FE:34:BD:6D:48:31:69:35:32:43:B4:18:27:8D:95:6B:5F
X509v3 Authority Key Identifier:
keyid:B7:BA:52:CA:78:38:43:3F:9F:04:54:46:C1:F3:E5:68:A7:8B:56:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t7pSyng4Qz-fBFRGwfPlaKeLVtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25aa70-b806-4f91-91de-5146ef01c21b/1/ioKt_jS9bUgxaTUyQ7QYJ42Va18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25aa70-b806-4f91-91de-5146ef01c21b/1/t7pSyng4Qz-fBFRGwfPlaKeLVtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.119.138.0/24
IPv6:
2a11:7b40::/29
Signature Algorithm: sha256WithRSAEncryption
7f:4f:0a:9a:d0:b5:e6:68:9f:a4:dd:f8:7a:71:6d:57:37:df:
f5:a7:ad:43:f6:4a:9d:18:0c:c4:0f:ea:7a:ea:2c:33:eb:0f:
ff:0d:41:cb:a3:a1:5d:cb:9e:3e:0a:32:44:7c:87:a2:bc:11:
cb:18:7d:0a:2a:41:94:67:28:e0:83:41:de:0a:f2:e6:a7:f9:
1b:47:78:54:a1:24:26:e3:02:dd:e8:1d:ee:83:82:2b:b5:2a:
0d:73:97:35:51:91:2b:3e:dc:2e:93:a3:77:b3:a5:5c:94:2f:
5d:5f:16:40:9c:fa:16:88:9f:46:b5:12:c8:36:8c:80:a5:df:
5e:d3:cf:8b:0c:bf:28:74:54:49:31:57:d8:c7:af:da:eb:dc:
29:2d:7a:66:87:34:8a:8d:ba:16:06:dc:5b:b9:f3:3c:db:d0:
f6:9b:ed:03:23:ff:78:5b:a8:9c:48:5e:64:bb:0a:b6:da:9b:
45:e5:28:a5:68:8f:39:cf:b8:dd:37:24:8a:dd:bc:b6:6a:fb:
e4:f4:93:2c:e6:25:f2:c0:4b:54:84:c2:a6:ea:3b:94:f2:ca:
19:14:a9:af:55:bf:15:cc:72:1a:42:20:9f:f0:39:b1:ec:7b:
66:2a:ba:03:6c:a0:22:ab:e0:2a:ec:10:72:81:99:49:7b:60:
59:62:b3:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:17 2024 by rpki-client on console-ams.rpki-client.org