Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/1Wuo4LyOUm0q5SnuPFgfD4IYdo8.roa
File: 1Wuo4LyOUm0q5SnuPFgfD4IYdo8.roa (raw, json)
Hash identifier: GbCA81Qnx8z4X/zb4efkwYUIbTXboI+uE0HY/oZVioo=
Subject key identifier: D5:6B:A8:E0:BC:8E:52:6D:2A:E5:29:EE:3C:58:1F:0F:82:18:76:8F
Certificate issuer: /CN=3ad65216812ed24fd1c719871a59a971dec30a26
Certificate serial: 0214BAF7
Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/1Wuo4LyOUm0q5SnuPFgfD4IYdo8.roa
Signing time: Sat 01 Jan 2022 16:10:45 +0000
ROA not before: Sat 01 Jan 2022 16:10:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29633
IP address blocks: 217.75.176.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34913015 (0x214baf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26
Validity
Not Before: Jan 1 16:10:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d56ba8e0bc8e526d2ae529ee3c581f0f8218768f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f9:d9:21:45:6e:2a:8d:73:7e:ae:5c:cb:3d:
30:ae:1d:4a:eb:38:88:d2:af:65:7e:9a:cb:e3:57:
23:97:d3:88:0f:96:a2:8f:15:d3:56:9b:63:cf:be:
01:e5:43:1d:1b:4e:04:d7:f0:9e:a1:9d:31:b0:d2:
5b:96:65:6c:ef:24:77:72:d5:39:ee:e9:1f:e4:ee:
33:e8:0b:ee:19:81:04:62:13:6c:6d:9c:e8:bd:6a:
63:62:94:22:5a:cb:42:e0:54:ff:2f:0f:b9:21:39:
2a:9e:65:b4:dd:60:b1:93:38:63:d7:bd:93:92:f3:
df:4f:75:ac:ba:61:83:cc:b2:f1:8d:fb:6d:a5:67:
32:84:a0:01:3a:86:26:95:2f:41:f7:ca:9a:6c:f7:
8e:9c:65:61:f3:2b:69:7d:61:4d:2a:b2:64:d0:b1:
03:08:66:76:dc:f7:41:b6:85:3a:95:c3:85:a0:8d:
b9:b1:2d:ca:a0:b0:d1:ef:0d:58:b1:d4:a2:b2:31:
2e:eb:68:81:c9:b0:1b:b9:ea:a8:c8:1e:90:0c:ab:
f6:e2:de:ba:ba:46:0d:50:e5:3e:20:3f:dc:72:90:
dd:f0:51:b7:54:63:a9:ac:73:77:1f:9c:3d:94:17:
f0:d8:91:d1:d7:16:3c:1d:04:0d:43:8f:c6:5d:2c:
f3:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:6B:A8:E0:BC:8E:52:6D:2A:E5:29:EE:3C:58:1F:0F:82:18:76:8F
X509v3 Authority Key Identifier:
keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/1Wuo4LyOUm0q5SnuPFgfD4IYdo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.75.176.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:af:5e:e5:bd:91:c1:b5:8f:24:a8:6d:ae:72:44:be:bf:59:
1a:8b:81:13:02:64:6a:61:f1:07:56:60:fa:a3:61:7f:6d:9c:
e4:6c:6a:a9:5f:33:62:4c:fc:e2:ad:2a:a6:04:89:0b:f1:27:
30:87:85:fe:0e:9b:4c:97:05:97:95:f0:0d:63:ef:11:06:50:
3d:e0:7d:b3:53:44:62:60:86:c2:35:f6:ef:cf:71:a1:4f:43:
4b:c3:be:b4:39:96:c2:21:80:0d:40:73:3f:5c:87:11:b5:71:
14:ab:09:00:3c:b1:6e:5f:2e:ce:76:84:7a:a5:e6:5c:cf:9b:
4b:e3:97:ab:24:90:f4:3c:b0:60:7b:a5:20:59:ae:b4:a7:45:
8d:b4:6b:dd:21:cb:7a:e0:a0:da:fc:a2:8c:58:b0:8d:7a:81:
ca:8d:7c:63:1a:fa:52:d6:b9:e2:7e:c7:8a:8d:80:29:2f:75:
2e:79:55:50:fe:96:f6:a4:e3:cd:0c:41:12:e3:a9:2e:56:aa:
eb:d9:9b:f7:3c:23:1f:2b:94:c3:5d:9f:15:c4:27:f2:a8:eb:
9e:d8:ac:5c:17:64:7b:9b:ee:9f:92:41:64:39:c8:cd:ab:44:
95:77:31:1f:f9:bb:8c:19:28:1c:b1:cd:a9:be:3e:b4:88:d7:
66:70:a6:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:57 2023 by rpki-client on console-ams.rpki-client.org