Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/2915f1-87ba-4c18-aaf9-590a9813dddf/1/oyi1J_kiVxdZZXDZMuhKNFH7b3o.roa
File: oyi1J_kiVxdZZXDZMuhKNFH7b3o.roa (raw, json)
Hash identifier: HTi6c6hEWv/W0H7Z6L7Ww/jvUuLoOFBIKhEOe1kR2hw=
Subject key identifier: A3:28:B5:27:F9:22:57:17:59:65:70:D9:32:E8:4A:34:51:FB:6F:7A
Certificate issuer: /CN=2ace21090ee4d78677413423dcb2fe01a6e1c622
Certificate serial: B19E7D
Authority key identifier: 2A:CE:21:09:0E:E4:D7:86:77:41:34:23:DC:B2:FE:01:A6:E1:C6:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ks4hCQ7k14Z3QTQj3LL-AabhxiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/2915f1-87ba-4c18-aaf9-590a9813dddf/1/oyi1J_kiVxdZZXDZMuhKNFH7b3o.roa
Signing time: Wed 27 Apr 2022 11:01:03 +0000
ROA not before: Wed 27 Apr 2022 11:01:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 217.117.65.0/24 maxlen: 24
217.117.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11640445 (0xb19e7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ace21090ee4d78677413423dcb2fe01a6e1c622
Validity
Not Before: Apr 27 11:01:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a328b527f9225717596570d932e84a3451fb6f7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d4:fc:b8:9a:87:ff:46:95:72:b0:e2:a5:d1:
76:9b:f7:d3:26:21:5e:2c:29:0c:53:16:9c:5b:35:
b8:ed:82:cb:82:93:0d:71:a5:99:a4:10:f8:75:1b:
b8:75:0d:34:36:bf:1e:2f:3d:98:3a:96:14:08:56:
e6:ad:5a:d1:4e:f4:1b:2d:92:ca:67:2b:05:02:33:
fc:6b:f1:8c:f5:d2:15:ab:4a:0f:c3:b2:f9:21:2c:
5a:60:89:90:c0:a8:37:10:f5:b4:bd:6f:c2:96:3a:
39:2a:b6:aa:ae:7f:6c:ae:e2:bc:1f:f3:fd:7c:1e:
09:e1:49:90:7f:08:7b:df:33:47:eb:b2:69:12:0c:
a9:bf:dd:eb:ec:5d:ea:76:b3:be:0e:cd:99:9c:4e:
38:32:36:db:d1:a0:e9:fa:c3:f3:52:1a:eb:0b:fa:
e9:44:f0:2a:ac:2e:3e:cf:52:24:27:f8:99:5d:60:
aa:0d:5f:b8:ef:b6:a0:2b:23:83:79:66:9f:a8:c9:
52:a1:b0:e2:91:52:b6:4b:4d:88:4e:c3:99:30:5c:
66:c6:1b:44:9f:d8:7d:d7:60:8a:ca:7c:99:20:1a:
8c:32:b9:bf:28:a5:10:7d:c2:98:12:15:56:f3:d2:
2d:22:41:5a:f1:04:80:af:8c:4f:f8:ef:2c:08:d1:
5e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:28:B5:27:F9:22:57:17:59:65:70:D9:32:E8:4A:34:51:FB:6F:7A
X509v3 Authority Key Identifier:
keyid:2A:CE:21:09:0E:E4:D7:86:77:41:34:23:DC:B2:FE:01:A6:E1:C6:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ks4hCQ7k14Z3QTQj3LL-AabhxiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2915f1-87ba-4c18-aaf9-590a9813dddf/1/oyi1J_kiVxdZZXDZMuhKNFH7b3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2915f1-87ba-4c18-aaf9-590a9813dddf/1/Ks4hCQ7k14Z3QTQj3LL-AabhxiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.117.65.0/24
217.117.71.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:1e:7a:43:78:a1:79:c8:85:89:77:25:75:64:74:09:7a:52:
42:f6:2d:a5:bd:d9:e1:72:d0:b1:43:b7:99:c6:c4:0c:ac:31:
e0:60:1f:a7:1f:c0:98:56:8d:cf:b2:f2:5d:90:62:83:6f:a7:
30:44:ed:00:3e:68:e7:50:15:ea:37:9f:69:0b:7b:f1:8e:c1:
95:bd:c5:69:ac:e4:f8:8c:69:e2:8a:ca:02:71:e6:55:7b:1e:
70:99:40:44:9f:60:70:6e:31:ee:da:17:50:93:d6:5b:20:10:
4b:94:c6:c5:d3:53:a0:b1:27:f5:84:cc:f1:3e:6f:a1:7c:57:
eb:c2:0f:09:a8:d7:9c:68:81:1d:d7:52:62:77:e2:66:09:97:
76:c8:91:8f:80:25:a1:4c:62:1a:96:b5:f2:6a:fa:d5:49:e9:
24:2b:86:8e:8d:ea:14:cd:0d:38:1c:70:8d:7e:2a:73:3c:18:
c0:a6:ee:51:25:39:15:04:e9:13:88:08:13:b6:93:47:b6:8f:
7b:d8:f1:ed:d1:89:a7:f2:9e:1e:a1:a1:67:3d:29:97:29:65:
7a:98:25:9d:8b:cb:42:7e:0e:f6:0a:26:02:9a:f8:fc:19:30:
53:c9:71:37:af:23:07:f6:15:1a:12:de:e8:37:1f:0a:79:fc:
84:6c:7e:d6
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEALGefTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
YWNlMjEwOTBlZTRkNzg2Nzc0MTM0MjNkY2IyZmUwMWE2ZTFjNjIyMB4XDTIyMDQy
NzExMDEwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTMyOGI1MjdmOTIy
NTcxNzU5NjU3MGQ5MzJlODRhMzQ1MWZiNmY3YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALHU/Liah/9GlXKw4qXRdpv30yYhXiwpDFMWnFs1uO2Cy4KT
DXGlmaQQ+HUbuHUNNDa/Hi89mDqWFAhW5q1a0U70Gy2SymcrBQIz/GvxjPXSFatK
D8Oy+SEsWmCJkMCoNxD1tL1vwpY6OSq2qq5/bK7ivB/z/XweCeFJkH8Ie98zR+uy
aRIMqb/d6+xd6nazvg7NmZxOODI229Gg6frD81Ia6wv66UTwKqwuPs9SJCf4mV1g
qg1fuO+2oCsjg3lmn6jJUqGw4pFStktNiE7DmTBcZsYbRJ/Yfddgisp8mSAajDK5
vyilEH3CmBIVVvPSLSJBWvEEgK+MT/jvLAjRXqkCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSjKLUn+SJXF1llcNky6Eo0UftvejAfBgNVHSMEGDAWgBQqziEJDuTXhndB
NCPcsv4BpuHGIjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tzNGhDUTdrMTRaM1FUUWozTEwtQWFiaHhpSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjEvMjkxNWYxLTg3YmEtNGMxOC1hYWY5LTU5MGE5ODEzZGRkZi8x
L295aTFKX2tpVnhkWlpYRFpNdWhLTkZIN2Izby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjEv
MjkxNWYxLTg3YmEtNGMxOC1hYWY5LTU5MGE5ODEzZGRkZi8xL0tzNGhDUTdrMTRa
M1FUUWozTEwtQWFiaHhpSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEANl1QQMEANl1RzANBgkqhkiG9w0B
AQsFAAOCAQEAfh56Q3iheciFiXcldWR0CXpSQvYtpb3Z4XLQsUO3mcbEDKwx4GAf
px/AmFaNz7LyXZBig2+nMETtAD5o51AV6jefaQt78Y7Blb3Faazk+Ixp4orKAnHm
VXsecJlARJ9gcG4x7toXUJPWWyAQS5TGxdNToLEn9YTM8T5voXxX68IPCajXnGiB
HddSYnfiZgmXdsiRj4AloUxiGpa18mr61UnpJCuGjo3qFM0NOBxwjX4qczwYwKbu
USU5FQTpE4gIE7aTR7aPe9jx7dGJp/KeHqGhZz0plyllepglnYvLQn4O9gomApr4
/BkwU8lxN68jB/YVGhLe6DcfCnn8hGx+1g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:49 2024 by rpki-client on console-ams.rpki-client.org