Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/aCr3Tu8MRFpfGsEIFJuu1Z6cxIA.roa
File: aCr3Tu8MRFpfGsEIFJuu1Z6cxIA.roa (raw, json)
Hash identifier: 6AUAXimIB4E291AP0BGY8tyMoJ5x6UHBcAcU0sTuw6o=
Subject key identifier: 68:2A:F7:4E:EF:0C:44:5A:5F:1A:C1:08:14:9B:AE:D5:9E:9C:C4:80
Certificate issuer: /CN=a7ee182d9c43a5ce7068dfd9ba7aa8ed90e5e0ba
Certificate serial: 379E5F72
Authority key identifier: A7:EE:18:2D:9C:43:A5:CE:70:68:DF:D9:BA:7A:A8:ED:90:E5:E0:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/aCr3Tu8MRFpfGsEIFJuu1Z6cxIA.roa
Signing time: Sat 01 Jan 2022 12:55:24 +0000
ROA not before: Sat 01 Jan 2022 12:55:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30860
IP address blocks: 217.9.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 933126002 (0x379e5f72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7ee182d9c43a5ce7068dfd9ba7aa8ed90e5e0ba
Validity
Not Before: Jan 1 12:55:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=682af74eef0c445a5f1ac108149baed59e9cc480
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:33:71:b7:a7:94:62:f1:10:99:7e:a0:8b:22:
52:8c:ca:a4:b8:c0:3f:93:d8:7f:44:46:e9:01:62:
91:f9:50:aa:39:55:40:89:34:bf:50:d6:1c:8b:fe:
30:c2:af:89:06:f5:0a:d0:63:a2:af:ba:e4:11:fa:
b0:5f:38:41:d2:3a:a2:4e:ec:7d:76:f3:f0:a8:37:
37:4b:a3:c5:d7:c4:01:84:f0:97:d1:a6:f7:f7:63:
53:d4:2b:f8:21:9e:70:3b:9b:ff:51:a6:5d:23:bb:
9b:58:95:ff:bc:82:0c:b6:3c:d4:e0:9a:a0:f8:41:
34:d2:72:1d:88:44:72:13:25:e8:4f:d7:1d:af:2d:
93:b2:cf:20:96:ab:18:ef:97:4e:26:73:fe:87:f1:
61:9c:b3:ff:a3:85:09:58:99:52:05:ce:c9:d3:25:
f5:b4:cc:2f:7b:66:2e:7d:94:5b:7c:2f:0e:a8:00:
db:81:8c:f2:49:24:e3:bd:34:ca:2e:b3:7e:80:99:
55:2c:7c:5e:cc:50:d6:c4:d3:b3:25:14:e8:79:96:
d1:d5:e6:44:7f:fe:31:0c:6d:83:60:5c:b7:83:43:
b4:c3:48:7a:75:8e:34:f4:f7:38:6f:f1:d2:9c:20:
0c:db:8c:09:08:7b:7a:7c:8a:0c:9c:06:d8:f2:19:
26:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:2A:F7:4E:EF:0C:44:5A:5F:1A:C1:08:14:9B:AE:D5:9E:9C:C4:80
X509v3 Authority Key Identifier:
keyid:A7:EE:18:2D:9C:43:A5:CE:70:68:DF:D9:BA:7A:A8:ED:90:E5:E0:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/aCr3Tu8MRFpfGsEIFJuu1Z6cxIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.9.12.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:5b:ac:2e:69:f8:be:36:d7:ed:5f:ac:dd:36:2c:30:40:4b:
4f:4c:9b:24:97:81:86:66:ae:12:f8:3b:6b:06:e7:ef:f8:ae:
c4:64:2e:2f:3d:e5:55:b0:22:c1:5b:d4:60:b5:90:33:81:14:
32:50:7b:a7:92:c1:33:0b:e2:14:a5:28:9a:c8:2b:45:ac:85:
d7:81:53:a3:e6:37:29:1a:a8:cb:f9:4f:05:1c:44:22:26:74:
b3:1b:2c:d5:6d:c2:2c:39:9e:35:7b:d1:ef:fe:01:43:39:3e:
9a:b5:57:72:49:ff:f2:de:9b:79:77:5d:9a:a1:1e:24:74:72:
a4:eb:69:1a:c3:25:b7:30:f2:de:29:60:6c:71:f1:74:74:e9:
53:d0:2e:7d:67:e0:2a:48:6c:ae:09:56:96:6b:bc:ed:38:6e:
91:df:08:a8:d3:e3:cd:db:d1:83:90:0e:cf:0c:a2:d0:46:72:
97:d9:3a:9b:2f:12:f8:72:4b:97:c7:c9:81:9d:88:a5:a1:96:
38:b3:61:9e:2c:8b:3c:f6:79:80:97:87:06:d0:d4:50:61:de:
5c:f7:66:ca:20:ae:a1:24:13:54:bf:0d:89:4a:fe:df:9f:68:
4d:ff:4c:34:f8:7e:78:7b:d9:38:09:22:16:e1:ab:d8:4b:4f:
03:cf:f7:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:14 2023 by rpki-client on console-fra.rpki-client.org