Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/04df92-a979-421f-8046-1415c9779e17/1/4tRuyDR9xKZuzISyr7zhuFSHp9w.roa
File: 4tRuyDR9xKZuzISyr7zhuFSHp9w.roa (raw, json)
Hash identifier: j7oAFZgQDwVub6slYJeNSxR/hsv1IPk6l7TP9vzB+Hk=
Subject key identifier: E2:D4:6E:C8:34:7D:C4:A6:6E:CC:84:B2:AF:BC:E1:B8:54:87:A7:DC
Certificate issuer: /CN=184d1c002f060ec956e64e5cfe4f1dc098587fd6
Certificate serial: 4B5E6C
Authority key identifier: 18:4D:1C:00:2F:06:0E:C9:56:E6:4E:5C:FE:4F:1D:C0:98:58:7F:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GE0cAC8GDslW5k5c_k8dwJhYf9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/04df92-a979-421f-8046-1415c9779e17/1/4tRuyDR9xKZuzISyr7zhuFSHp9w.roa
Signing time: Wed 13 Apr 2022 16:08:17 +0000
ROA not before: Wed 13 Apr 2022 16:08:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208425
IP address blocks: 217.28.139.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4939372 (0x4b5e6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=184d1c002f060ec956e64e5cfe4f1dc098587fd6
Validity
Not Before: Apr 13 16:08:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e2d46ec8347dc4a66ecc84b2afbce1b85487a7dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:95:6d:1c:65:87:7c:69:67:5b:cc:95:89:05:
c7:40:f9:ec:d6:b8:e8:ff:ac:4f:d7:8a:77:b4:70:
ca:b5:35:7c:2e:9f:12:37:71:d7:2c:b4:2b:c3:18:
8d:29:c8:d8:ee:18:18:28:76:52:a1:01:9f:a5:31:
2d:dc:0d:b5:69:0b:94:c3:06:f1:9e:93:c3:3c:1a:
17:81:f8:39:58:01:88:fc:91:d0:b0:7c:b5:5c:59:
0a:7e:2a:77:c7:c8:45:4c:2f:3b:d5:80:2e:59:fd:
5e:03:4b:da:64:36:f1:c4:a8:99:07:73:d7:a2:41:
be:80:58:66:0b:fe:6f:3e:51:5d:4e:5c:c0:f8:e5:
e2:61:ac:fc:9e:00:0b:cf:b8:1a:2e:22:d3:a0:35:
41:c4:e5:69:1e:a8:10:69:ac:15:4c:31:29:45:06:
90:c1:e5:87:97:ba:3d:6a:fe:2b:36:3d:34:c1:ec:
3b:a6:60:18:da:94:c2:19:aa:b0:53:0e:b5:c8:46:
c4:80:b7:fa:fd:7c:17:6c:7b:af:0d:3e:81:6d:19:
72:05:db:eb:a2:a6:46:59:23:06:af:a7:9a:97:e1:
e7:32:36:55:b9:a4:d1:b6:43:a8:f0:2c:29:25:aa:
63:a4:ad:ef:02:d8:4b:7c:78:82:c8:8b:f9:ec:d1:
b6:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:D4:6E:C8:34:7D:C4:A6:6E:CC:84:B2:AF:BC:E1:B8:54:87:A7:DC
X509v3 Authority Key Identifier:
keyid:18:4D:1C:00:2F:06:0E:C9:56:E6:4E:5C:FE:4F:1D:C0:98:58:7F:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GE0cAC8GDslW5k5c_k8dwJhYf9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/04df92-a979-421f-8046-1415c9779e17/1/4tRuyDR9xKZuzISyr7zhuFSHp9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/04df92-a979-421f-8046-1415c9779e17/1/GE0cAC8GDslW5k5c_k8dwJhYf9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.139.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:8d:58:4c:b2:0f:be:3b:7e:b3:7d:93:3d:6d:11:87:d9:14:
5c:43:b4:70:88:9c:72:ba:52:32:fd:7b:e2:32:52:dc:7f:fc:
a7:fb:de:c6:83:6d:f7:7f:88:83:bd:5d:64:3b:40:6d:e6:42:
4d:6b:24:c6:bf:20:52:ae:b5:b9:03:39:6b:b6:34:f4:81:f0:
71:b2:85:a9:42:2e:3e:8f:0f:40:ab:46:ca:64:29:0f:97:56:
4f:ab:c6:d3:a7:46:1c:ba:b3:a0:6d:e3:1f:f0:70:46:be:1a:
f7:ff:9e:d1:68:b1:d8:fc:98:93:f2:d2:a7:dd:4e:7d:bb:59:
1f:ff:74:dc:96:9a:3b:1d:bd:50:5a:cd:14:dc:6f:1c:cf:77:
18:65:f2:8e:a9:56:4e:7f:92:22:29:f0:ef:fd:c2:db:3c:3d:
e0:35:b3:3c:b9:1a:fc:d8:28:35:4c:2f:f2:e8:03:ef:68:fa:
4b:0b:13:77:6c:36:d9:13:ad:0a:1f:7a:65:8d:03:3a:69:ca:
18:bb:73:f5:9d:c3:0d:fe:3e:69:37:bc:c0:04:30:5d:1e:db:
e3:19:05:89:ba:56:0a:ea:ea:5c:27:74:d3:51:6a:bb:7a:97:
9c:f7:a9:ad:9b:4a:9b:b9:e8:54:68:47:95:dd:a7:f5:5d:14:
fd:88:d1:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:49 2023 by rpki-client on console-fra.rpki-client.org