Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/X1EijylX7jSudySgi3sp1cN4bi4.roa
File: X1EijylX7jSudySgi3sp1cN4bi4.roa (raw, json)
Hash identifier: IlYlf/i+hQnL16OadgeW+K6G2B6sWPy65JuOM5xcLKQ=
Subject key identifier: 5F:51:22:8F:29:57:EE:34:AE:77:24:A0:8B:7B:29:D5:C3:78:6E:2E
Certificate issuer: /CN=a7ee182d9c43a5ce7068dfd9ba7aa8ed90e5e0ba
Certificate serial: 379C2158
Authority key identifier: A7:EE:18:2D:9C:43:A5:CE:70:68:DF:D9:BA:7A:A8:ED:90:E5:E0:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/X1EijylX7jSudySgi3sp1cN4bi4.roa
Signing time: Sat 01 Jan 2022 12:55:23 +0000
ROA not before: Sat 01 Jan 2022 12:55:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15577
IP address blocks: 217.9.0.0/24 maxlen: 24
217.9.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 932979032 (0x379c2158)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7ee182d9c43a5ce7068dfd9ba7aa8ed90e5e0ba
Validity
Not Before: Jan 1 12:55:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f51228f2957ee34ae7724a08b7b29d5c3786e2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:83:87:10:b9:6e:cb:41:6d:8d:a6:5a:d9:f2:
cd:4d:69:97:f7:af:17:3e:56:ca:d5:d9:4c:5b:6c:
65:68:36:d0:94:7e:ae:7d:9f:44:7b:38:c8:82:bc:
49:1c:c5:d7:5e:0c:56:5c:9d:ef:68:b2:a0:cd:d8:
e6:e3:77:62:5f:3a:61:fd:82:30:e1:7c:3c:0d:f8:
83:cc:fd:a5:5d:6e:cd:75:5b:76:fb:6e:d7:16:d7:
19:6b:8c:b3:95:e4:be:e3:a1:91:a5:90:b9:ad:3c:
1f:45:ae:cc:65:0a:20:72:b7:c1:fa:19:d7:f3:50:
2e:c3:9a:18:0b:cc:21:10:bf:a1:ef:21:0d:2c:a5:
72:0c:bf:78:f2:a4:1d:b1:31:57:f6:e6:d1:99:8e:
ec:4d:00:9e:fb:c7:89:db:59:b4:b6:0d:bc:b3:0a:
2c:9a:8e:ed:d7:11:93:b8:6d:fa:5c:ec:f0:60:83:
5b:db:62:e4:67:b5:25:e3:94:e3:df:92:08:04:6a:
5c:cb:57:55:b7:60:93:e6:d0:5b:c1:cd:22:2c:2d:
27:57:ad:b4:08:76:1b:f0:68:c6:23:4b:99:be:d9:
3e:f3:fb:09:74:19:57:7d:98:e9:14:bd:54:ae:af:
3b:1f:f7:7a:b9:0b:9e:f8:9b:dd:40:f3:b7:5f:b1:
88:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:51:22:8F:29:57:EE:34:AE:77:24:A0:8B:7B:29:D5:C3:78:6E:2E
X509v3 Authority Key Identifier:
keyid:A7:EE:18:2D:9C:43:A5:CE:70:68:DF:D9:BA:7A:A8:ED:90:E5:E0:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/X1EijylX7jSudySgi3sp1cN4bi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.9.0.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:cd:b5:74:44:16:18:d0:93:e9:f9:e3:07:6e:30:35:d0:81:
7b:3a:2a:0c:74:07:0f:b3:31:b4:1d:04:f8:3d:da:59:0d:66:
40:43:3d:7d:bc:e5:c4:ef:2b:b7:be:15:dd:ed:16:5c:36:f5:
a9:33:db:6e:87:27:ca:8a:f2:22:df:72:f1:13:19:b2:f0:e2:
8f:57:eb:3e:a9:b7:c8:e2:f3:10:58:aa:d0:bb:71:b2:3c:ee:
e7:ea:0b:61:04:b6:75:3a:d8:15:0c:c3:7a:09:d7:bc:3d:c0:
eb:bd:43:74:43:19:ba:11:1e:3e:cc:9f:b4:c5:9c:5b:47:d3:
d7:9f:d6:aa:02:93:f7:92:70:66:80:4c:6f:b6:17:4c:53:20:
5f:3f:f3:62:9b:e7:60:dd:89:d4:09:0c:4d:58:64:df:6f:8a:
45:e7:b8:08:9e:f0:54:9b:90:cd:69:16:98:38:da:86:d0:b4:
c8:a1:ac:4c:24:26:57:73:f8:fd:03:58:7f:e0:17:b2:12:4b:
94:64:e8:ba:9c:18:ee:de:cc:b0:49:4c:a0:23:27:dc:d7:4e:
20:04:9b:fa:93:d9:79:98:7d:d6:a4:42:6d:58:a1:89:19:8e:
15:9a:3b:96:90:72:2a:73:76:3d:86:69:4e:d8:72:09:72:06:
b5:56:9d:a2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEN5whWDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
N2VlMTgyZDljNDNhNWNlNzA2OGRmZDliYTdhYThlZDkwZTVlMGJhMB4XDTIyMDEw
MTEyNTUyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWY1MTIyOGYyOTU3
ZWUzNGFlNzcyNGEwOGI3YjI5ZDVjMzc4NmUyZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALODhxC5bstBbY2mWtnyzU1pl/evFz5WytXZTFtsZWg20JR+
rn2fRHs4yIK8SRzF114MVlyd72iyoM3Y5uN3Yl86Yf2CMOF8PA34g8z9pV1uzXVb
dvtu1xbXGWuMs5XkvuOhkaWQua08H0WuzGUKIHK3wfoZ1/NQLsOaGAvMIRC/oe8h
DSylcgy/ePKkHbExV/bm0ZmO7E0AnvvHidtZtLYNvLMKLJqO7dcRk7ht+lzs8GCD
W9ti5Ge1JeOU49+SCARqXMtXVbdgk+bQW8HNIiwtJ1ettAh2G/BoxiNLmb7ZPvP7
CXQZV32Y6RS9VK6vOx/3erkLnvib3UDzt1+xiEcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRfUSKPKVfuNK53JKCLeynVw3huLjAfBgNVHSMEGDAWgBSn7hgtnEOlznBo
39m6eqjtkOXgujAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3AtNFlMWnhEcGM1d2FOX1p1bnFvN1pEbDRMby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjIvZGFiNDIwLTBkZTMtNDMyMS05YzA5LTZiNWY2ODUyMmE3ZC8x
L1gxRWlqeWxYN2pTdWR5U2dpM3NwMWNONGJpNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjIv
ZGFiNDIwLTBkZTMtNDMyMS05YzA5LTZiNWY2ODUyMmE3ZC8xL3AtNFlMWnhEcGM1
d2FOX1p1bnFvN1pEbDRMby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAdkJADANBgkqhkiG9w0BAQsFAAOC
AQEAoM21dEQWGNCT6fnjB24wNdCBezoqDHQHD7MxtB0E+D3aWQ1mQEM9fbzlxO8r
t74V3e0WXDb1qTPbbocnyoryIt9y8RMZsvDij1frPqm3yOLzEFiq0Ltxsjzu5+oL
YQS2dTrYFQzDegnXvD3A671DdEMZuhEePsyftMWcW0fT15/WqgKT95JwZoBMb7YX
TFMgXz/zYpvnYN2J1AkMTVhk32+KRee4CJ7wVJuQzWkWmDjahtC0yKGsTCQmV3P4
/QNYf+AXshJLlGToupwY7t7MsElMoCMn3NdOIASb+pPZeZh91qRCbVihiRmOFZo7
lpByKnN2PYZpTthyCXIGtVadog==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:04 2024 by rpki-client on console-ams.rpki-client.org