Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/f0372a-c332-485f-b293-a6d2684a9425/1/kDvb6pXK_gfpjt7OmpwXcWLSAk4.roa
File: kDvb6pXK_gfpjt7OmpwXcWLSAk4.roa (raw, json)
Hash identifier: z14g2xkb98Z4NhH/56dWUsgWrO2pK45tldSs1ibaP6M=
Subject key identifier: 90:3B:DB:EA:95:CA:FE:07:E9:8E:DE:CE:9A:9C:17:71:62:D2:02:4E
Certificate issuer: /CN=1f2cb35b874780cb93dc44210b9d79d6ed94fe5e
Certificate serial: 34F8E93F
Authority key identifier: 1F:2C:B3:5B:87:47:80:CB:93:DC:44:21:0B:9D:79:D6:ED:94:FE:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyyzW4dHgMuT3EQhC5151u2U_l4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/f0372a-c332-485f-b293-a6d2684a9425/1/kDvb6pXK_gfpjt7OmpwXcWLSAk4.roa
Signing time: Sat 01 Jan 2022 01:53:04 +0000
ROA not before: Sat 01 Jan 2022 01:53:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197745
IP address blocks: 217.196.184.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 888727871 (0x34f8e93f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f2cb35b874780cb93dc44210b9d79d6ed94fe5e
Validity
Not Before: Jan 1 01:53:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=903bdbea95cafe07e98edece9a9c177162d2024e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:10:d5:05:c6:80:9e:c6:69:41:f5:65:19:3b:
ac:7c:41:9f:2d:a0:fc:11:57:da:8c:c4:78:a9:46:
69:41:f7:e1:4e:88:37:b7:c3:93:89:10:37:5f:43:
fc:b5:79:0c:6e:92:b1:2a:40:27:6f:9b:57:61:e1:
7f:3a:93:6b:b7:8b:8b:cf:1c:45:32:c9:09:94:be:
dd:08:c8:7c:e5:32:a3:1a:da:f5:45:80:47:87:36:
a3:9a:ba:c0:da:60:c7:a3:a4:4a:9d:cc:e9:84:16:
e8:27:17:e9:91:1a:5f:5e:fc:c7:01:c0:d0:60:26:
fc:0e:a0:ce:31:5f:e0:be:19:23:fa:61:7e:8a:bc:
b3:ca:e2:b5:ae:2d:9e:cb:2d:64:5f:9d:f5:f7:37:
60:de:74:3c:ec:1a:21:bc:b6:2d:5e:a2:31:9f:87:
c1:f2:32:09:a7:ee:b6:d7:91:e9:dd:84:48:38:45:
40:8b:75:59:35:57:bf:a4:01:65:5b:a5:93:48:e8:
41:f3:c6:6e:3b:ee:7b:07:94:42:43:23:63:49:77:
f9:33:6d:3c:6c:6d:17:be:5a:dd:50:b4:22:bc:66:
c5:b4:d7:7d:9f:99:d2:23:4e:63:b3:69:7b:1a:63:
4e:c7:49:a4:ed:71:b0:b7:d5:5a:4e:58:08:fe:53:
e0:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:3B:DB:EA:95:CA:FE:07:E9:8E:DE:CE:9A:9C:17:71:62:D2:02:4E
X509v3 Authority Key Identifier:
keyid:1F:2C:B3:5B:87:47:80:CB:93:DC:44:21:0B:9D:79:D6:ED:94:FE:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyyzW4dHgMuT3EQhC5151u2U_l4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/f0372a-c332-485f-b293-a6d2684a9425/1/kDvb6pXK_gfpjt7OmpwXcWLSAk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/f0372a-c332-485f-b293-a6d2684a9425/1/HyyzW4dHgMuT3EQhC5151u2U_l4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.196.184.0/21
Signature Algorithm: sha256WithRSAEncryption
38:f6:0a:5a:00:3e:5b:be:cc:94:7f:9d:84:bb:ea:fe:e9:62:
d2:57:c0:10:15:fd:fb:bb:d4:21:d9:e1:78:dc:65:2c:0b:a1:
67:18:bb:86:b7:16:70:8a:b6:76:f4:fe:c9:1e:ff:0a:bc:2a:
a3:b5:68:1d:3f:f6:97:99:6d:86:96:81:d1:b2:8b:f3:3e:91:
6a:8d:34:1b:44:71:8e:31:ad:d8:79:94:9d:0d:0b:9c:20:43:
28:03:e4:e4:cd:d7:c3:6c:a2:70:d0:ea:94:68:46:bf:9f:02:
1b:05:e9:04:df:ed:2a:42:a5:56:1b:38:50:7b:ea:0c:63:78:
35:96:03:08:39:ce:9b:5c:ee:20:2e:b2:a2:46:5d:e7:1a:39:
d1:8b:85:6b:4a:e1:2c:11:71:fc:c0:09:e4:50:4a:a7:16:96:
d5:de:b3:4b:ed:6e:68:88:c5:fe:c6:ae:9c:76:a7:b1:3b:76:
90:76:35:67:c5:4c:0c:d6:84:4b:22:6c:59:0d:86:5b:eb:23:
da:50:3b:d1:8c:88:39:bd:94:fe:f3:b3:63:a9:54:ac:a9:e8:
1b:7b:75:05:dc:66:cf:d6:35:e8:64:b1:90:67:a6:d3:18:08:
71:67:14:5b:c6:cd:9c:b4:2a:21:e8:42:71:40:16:26:9c:32:
e8:3f:55:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:55 2023 by rpki-client on console-fra.rpki-client.org