Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/2915f1-87ba-4c18-aaf9-590a9813dddf/1/dDTcK_PH2Z_kTrxs8jEpvNJievg.roa
File: dDTcK_PH2Z_kTrxs8jEpvNJievg.roa (raw, json)
Hash identifier: BnnjmSUOCsdkOGNwMViaDg5mabNVLEpRzx2LKx28RrQ=
Subject key identifier: 74:34:DC:2B:F3:C7:D9:9F:E4:4E:BC:6C:F2:31:29:BC:D2:62:7A:F8
Certificate issuer: /CN=2ace21090ee4d78677413423dcb2fe01a6e1c622
Certificate serial: 5E84DF
Authority key identifier: 2A:CE:21:09:0E:E4:D7:86:77:41:34:23:DC:B2:FE:01:A6:E1:C6:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ks4hCQ7k14Z3QTQj3LL-AabhxiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/2915f1-87ba-4c18-aaf9-590a9813dddf/1/dDTcK_PH2Z_kTrxs8jEpvNJievg.roa
Signing time: Thu 24 Mar 2022 12:43:13 +0000
ROA not before: Thu 24 Mar 2022 12:43:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 217.117.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6194399 (0x5e84df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ace21090ee4d78677413423dcb2fe01a6e1c622
Validity
Not Before: Mar 24 12:43:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7434dc2bf3c7d99fe44ebc6cf23129bcd2627af8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fe:48:34:bc:b7:7a:9c:58:ea:d9:18:a2:b1:
38:c3:6a:4f:08:42:6f:e4:b9:db:a8:5d:c7:6c:3f:
3c:8c:ca:5a:1f:ae:f8:2d:31:f8:68:67:ca:09:86:
dc:b3:50:99:c7:d8:62:75:9b:92:5e:14:f0:d6:7d:
9f:a5:73:8a:92:59:16:35:5f:7b:26:72:4b:60:79:
f5:9a:d8:93:14:2c:d6:c1:f5:b1:68:28:44:8f:b1:
3d:e8:bb:34:65:71:64:90:04:84:69:df:e9:df:bc:
e7:85:16:c9:34:66:4b:2e:dd:a1:3a:6f:39:ad:76:
a2:60:10:da:5d:47:19:9c:2c:ee:d1:4e:34:27:44:
8f:eb:f2:24:dd:8a:80:a6:78:1f:94:e8:2b:3b:4a:
37:50:b2:b3:ec:25:a2:f1:26:7e:51:f6:db:09:b5:
c9:e5:f5:b0:f8:ee:b1:59:72:fd:2e:b3:b3:1b:a7:
8c:d9:76:b1:f2:3a:94:1b:bb:ca:5c:58:47:ae:6c:
19:80:83:d0:8f:bc:1f:7c:5e:24:2e:72:3a:ac:9b:
e1:57:4b:d1:72:68:5f:44:d9:c1:0b:8f:91:1f:0b:
a5:e7:71:a0:f6:e4:b5:0f:7e:cf:86:70:e0:86:25:
3c:19:f0:16:65:d5:7a:a9:64:88:6f:c3:ec:eb:a3:
86:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:34:DC:2B:F3:C7:D9:9F:E4:4E:BC:6C:F2:31:29:BC:D2:62:7A:F8
X509v3 Authority Key Identifier:
keyid:2A:CE:21:09:0E:E4:D7:86:77:41:34:23:DC:B2:FE:01:A6:E1:C6:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ks4hCQ7k14Z3QTQj3LL-AabhxiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2915f1-87ba-4c18-aaf9-590a9813dddf/1/dDTcK_PH2Z_kTrxs8jEpvNJievg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2915f1-87ba-4c18-aaf9-590a9813dddf/1/Ks4hCQ7k14Z3QTQj3LL-AabhxiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.117.71.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:c6:3e:e5:90:b9:9a:7c:32:65:3c:0a:23:bd:41:a8:42:be:
e3:4a:e2:0e:ef:8a:fe:cf:c0:97:8d:86:e7:e9:99:69:cc:d7:
0a:63:6d:71:4a:1b:78:5a:50:b8:4b:ad:f2:f5:0a:ed:7b:d9:
90:f9:23:2e:d4:ad:71:98:36:fb:77:25:ab:75:5f:61:f3:21:
a5:01:a1:c3:65:b0:b7:19:62:ec:d8:cc:2f:10:b0:35:a8:94:
0a:0d:08:67:09:25:00:7a:e4:78:c7:4b:eb:71:e3:dd:4f:96:
53:07:36:7e:72:51:cd:a1:e2:ec:11:2a:8a:61:b9:44:67:53:
e5:4b:e5:0b:15:1a:c9:c8:6e:ca:77:d7:28:dc:bb:bd:d8:9b:
40:ca:2c:bc:12:92:78:01:cd:11:ce:6a:e4:1a:16:77:24:75:
75:bb:05:a6:b3:2d:dc:ad:e0:14:02:fe:03:4d:e8:09:16:ae:
74:9c:29:6b:e5:bb:1c:9d:3d:04:c0:d7:d1:4a:b2:f2:16:a0:
68:08:6e:37:a0:a0:dd:5f:51:4b:62:be:af:a5:e6:f0:93:a9:
16:73:d9:6a:c0:12:ca:1c:8e:5e:c1:63:8d:0a:df:ce:b8:e2:
54:db:72:cd:1c:14:86:c0:4d:34:79:21:9f:ba:d3:e1:b2:43:
4b:b8:83:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:49 2024 by rpki-client on console-ams.rpki-client.org