Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/X1ZQ15CeJJrRmXchRWmnZYPYFew.roa
File: X1ZQ15CeJJrRmXchRWmnZYPYFew.roa (raw, json)
Hash identifier: WgERPheZDYCKJe/L+0j1qpHxPR8//Qiwbi6uoKXBoSU=
Subject key identifier: 5F:56:50:D7:90:9E:24:9A:D1:99:77:21:45:69:A7:65:83:D8:15:EC
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 0A2F6825
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/X1ZQ15CeJJrRmXchRWmnZYPYFew.roa
Signing time: Wed 25 May 2022 14:33:13 +0000
ROA not before: Wed 25 May 2022 14:33:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60798
IP address blocks: 193.107.218.0/24 maxlen: 24
185.243.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170879013 (0xa2f6825)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: May 25 14:33:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f5650d7909e249ad19977214569a76583d815ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:05:e2:80:02:c5:58:7d:f3:b9:21:c8:73:3e:
22:d1:42:a6:dc:fa:cd:20:87:87:9c:62:d9:b8:8b:
ac:d7:b8:52:a9:c0:90:b4:70:9a:38:d7:80:49:b9:
e7:9c:8e:4f:c9:e2:42:93:ff:c0:2d:32:f7:e3:04:
1e:4b:4d:b2:04:47:8a:5d:75:f0:f4:3b:12:17:22:
e1:92:38:d1:d1:8c:d1:bd:55:90:a1:b0:31:ee:29:
c5:cc:fc:92:97:a1:15:fa:e3:3e:f9:ad:91:cc:1f:
6d:e0:a8:af:f5:6e:31:69:c0:e8:a2:85:d7:95:97:
83:5e:0c:19:71:ec:8f:62:2f:70:10:44:23:eb:32:
8c:a2:56:f8:f5:6a:14:7f:23:20:5d:8f:02:86:70:
ae:1d:14:35:6f:fb:0b:14:49:2b:fa:f7:f2:84:62:
89:15:40:14:cf:18:d0:27:00:d6:d7:82:8a:7a:0e:
28:44:b4:dd:21:7d:83:2e:9f:14:8e:57:67:ed:30:
10:76:24:01:c6:14:49:7c:37:5a:da:e8:05:1f:60:
2b:bb:f4:5e:fb:45:3a:54:0c:1c:b8:02:66:db:86:
24:1b:e9:2f:08:b3:8a:2c:dc:20:d0:ea:28:b4:23:
65:9e:57:3e:4f:26:e1:45:17:0a:63:93:31:ec:a9:
43:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:56:50:D7:90:9E:24:9A:D1:99:77:21:45:69:A7:65:83:D8:15:EC
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/X1ZQ15CeJJrRmXchRWmnZYPYFew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.7.0/24
193.107.218.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:9d:2d:f7:e6:d4:69:13:41:d5:3a:cf:98:f3:13:43:69:95:
da:b3:b0:b5:cc:3f:e5:39:69:0e:07:b0:38:54:b4:65:34:ac:
1d:64:04:8c:8d:c6:0a:22:72:a8:88:57:b2:1e:0b:77:a2:12:
db:7e:b5:f2:c2:18:42:7f:b5:06:2b:64:0b:8e:76:83:58:a7:
de:10:66:47:a6:01:4a:1d:5a:11:16:fb:68:e5:99:a6:3e:5e:
3e:c9:c9:85:14:f6:71:ee:76:37:3b:08:e1:03:1f:40:0c:27:
c3:85:11:20:25:20:f1:bb:04:83:6c:51:5d:28:4d:8b:0a:58:
ad:d9:43:19:71:96:47:6c:56:3a:09:7b:0f:4e:80:53:27:d1:
a8:98:78:b4:b7:5a:1b:04:e0:1b:7d:9c:69:6a:f2:88:63:ed:
50:eb:5b:de:ef:92:4a:fa:3c:c4:ab:06:0e:ca:a3:68:e0:ff:
6b:7f:88:ff:96:b0:d0:f6:2d:aa:4e:84:09:82:01:21:01:49:
35:49:dc:f6:ff:0f:2c:c9:1b:ac:d5:11:bd:1c:83:ec:9a:a4:
45:e1:3f:a5:a5:3d:fd:23:05:18:a6:b5:6a:b4:6c:53:06:58:
15:1b:65:34:2a:ec:f1:8d:a1:d5:aa:50:c1:e2:8c:66:07:fd:
6a:e2:56:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:50 2024 by rpki-client on console-fra.rpki-client.org