Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/5d5f73-63b9-4aaa-a8ec-5afc3a4fe542/1/C0WGVcUcl3X544f3NjEDyk55OuU.roa
File: C0WGVcUcl3X544f3NjEDyk55OuU.roa (raw, json)
Hash identifier: hKK8x3QZpvoWgS/kWt5AVMQk/LKOvBa3Ydt0LwOneXc=
Subject key identifier: 0B:45:86:55:C5:1C:97:75:F9:E3:87:F7:36:31:03:CA:4E:79:3A:E5
Certificate issuer: /CN=9b23639060ff87a77fc67a6e03c0c4dd2ae4c391
Certificate serial: 16312F55
Authority key identifier: 9B:23:63:90:60:FF:87:A7:7F:C6:7A:6E:03:C0:C4:DD:2A:E4:C3:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/myNjkGD_h6d_xnpuA8DE3Srkw5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/5d5f73-63b9-4aaa-a8ec-5afc3a4fe542/1/C0WGVcUcl3X544f3NjEDyk55OuU.roa
Signing time: Sat 01 Jan 2022 11:54:37 +0000
ROA not before: Sat 01 Jan 2022 11:54:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196678
IP address blocks: 131.117.216.0/24 maxlen: 24
131.117.218.0/23 maxlen: 24
131.117.217.0/24 maxlen: 24
131.117.220.0/22 maxlen: 22
2a00:bd40::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 372322133 (0x16312f55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b23639060ff87a77fc67a6e03c0c4dd2ae4c391
Validity
Not Before: Jan 1 11:54:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b458655c51c9775f9e387f7363103ca4e793ae5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:45:aa:09:6a:86:b7:3e:15:33:52:a7:63:50:
e1:60:82:58:20:b0:0d:28:0b:31:0f:50:bf:c9:78:
03:79:46:a7:a2:74:30:8f:69:45:f5:78:6a:ee:62:
6e:76:52:27:4f:45:ec:f7:40:bf:5d:5f:56:d6:57:
ef:39:a4:22:5d:4c:a0:ee:5a:48:21:35:da:ac:54:
74:f0:84:46:63:6e:6f:25:4b:75:77:1c:6e:81:a2:
fd:4f:13:59:da:fd:41:5d:27:95:85:13:a4:50:82:
d3:79:7c:59:8b:eb:42:f9:c1:07:ce:41:c2:34:66:
ed:65:62:e3:b7:82:29:55:39:ea:f4:cb:49:d7:30:
23:b7:ca:63:11:2b:ef:ac:e4:e2:72:89:d5:ca:2f:
a1:76:38:32:49:5b:e3:a4:9a:2e:f6:29:ce:88:fb:
41:bb:78:c5:96:36:68:b0:6d:d5:72:3f:e6:44:b5:
c9:f8:61:34:36:d5:eb:5a:25:de:1e:74:ea:b9:24:
ea:5d:85:69:b1:d8:3d:a7:36:a6:aa:41:48:62:e0:
47:85:42:14:ca:93:53:57:1c:5a:c8:24:73:c0:f9:
72:c8:28:64:46:1c:7d:e2:b7:86:6a:a6:d6:26:c3:
12:2a:6b:9a:a4:0e:89:65:aa:c7:70:37:ed:54:b7:
ea:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:45:86:55:C5:1C:97:75:F9:E3:87:F7:36:31:03:CA:4E:79:3A:E5
X509v3 Authority Key Identifier:
keyid:9B:23:63:90:60:FF:87:A7:7F:C6:7A:6E:03:C0:C4:DD:2A:E4:C3:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/myNjkGD_h6d_xnpuA8DE3Srkw5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/5d5f73-63b9-4aaa-a8ec-5afc3a4fe542/1/C0WGVcUcl3X544f3NjEDyk55OuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/5d5f73-63b9-4aaa-a8ec-5afc3a4fe542/1/myNjkGD_h6d_xnpuA8DE3Srkw5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.117.216.0/21
IPv6:
2a00:bd40::/32
Signature Algorithm: sha256WithRSAEncryption
a0:6f:1b:24:a1:4b:f4:f4:4d:2f:98:c2:c0:47:30:b8:f8:88:
48:10:7d:ea:7f:ad:fc:dc:40:a0:ae:9b:b1:25:e1:37:04:f5:
ae:ae:93:fc:c2:ee:ad:be:04:e9:26:f3:83:b0:96:93:e8:de:
47:7d:2b:c1:9d:37:fc:e0:e8:04:62:c6:c4:05:38:11:4f:8a:
10:ff:e7:76:8c:4a:a5:71:be:3e:5e:d3:65:39:5f:ea:4c:d5:
3d:14:a9:f4:be:80:16:cb:9f:0d:b4:14:93:13:a2:0b:a5:31:
80:f0:79:2f:83:cd:b4:d7:08:2f:06:fe:e8:b3:2c:b2:e5:82:
77:26:01:9c:89:9a:d6:18:89:a1:1c:27:cf:19:af:a8:95:5a:
5e:bd:54:fb:8f:e1:15:c6:2d:63:40:17:3f:78:7e:c1:d1:13:
7e:5f:8e:05:47:88:49:a0:51:ac:6e:f4:2a:ce:d0:c4:0a:05:
21:1c:16:3b:ff:49:54:1f:c7:13:0b:b4:e4:7d:2e:64:ff:3d:
15:03:44:a0:2a:8d:fd:8a:95:f7:0e:03:1b:b0:97:d3:61:76:
8b:67:11:7c:bf:d9:d8:01:b4:8d:69:17:96:33:81:0a:60:ba:
73:f0:14:30:8c:6c:01:1f:4b:04:29:1e:3d:04:00:f7:02:ae:
52:1b:e4:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:30 2024 by rpki-client on console-ams.rpki-client.org