Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/CEdabdUNzqBp-kOH4a5ei9abbMU.roa
File: CEdabdUNzqBp-kOH4a5ei9abbMU.roa (raw, json)
Hash identifier: R6jgvv9y56bmq0SC0NBqToZV2gowdPjn3Rhaqnvbh6s=
Subject key identifier: 08:47:5A:6D:D5:0D:CE:A0:69:FA:43:87:E1:AE:5E:8B:D6:9B:6C:C5
Certificate issuer: /CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Certificate serial: 35E9FC21
Authority key identifier: 20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/CEdabdUNzqBp-kOH4a5ei9abbMU.roa
Signing time: Sat 01 Jan 2022 03:02:10 +0000
ROA not before: Sat 01 Jan 2022 03:02:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5418
IP address blocks: 217.170.15.0/24 maxlen: 24
2a02:10:100::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 904526881 (0x35e9fc21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Validity
Not Before: Jan 1 03:02:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08475a6dd50dcea069fa4387e1ae5e8bd69b6cc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:47:9f:fe:2a:03:7a:cf:ff:a6:36:84:8d:35:
52:64:a2:86:dd:8b:d4:ac:81:94:84:fc:78:99:b6:
90:5c:fb:ec:ce:ff:75:dd:0a:6c:df:dc:17:72:46:
3f:59:9a:97:bf:da:46:e9:9f:b5:cd:2e:9e:62:74:
3d:3b:43:07:5f:06:9f:02:12:90:a5:79:f5:fb:bc:
1e:b9:a4:e8:f6:ce:c8:a4:76:92:9f:98:09:eb:b1:
2c:00:52:9c:f0:81:f6:43:15:0b:67:97:7f:d7:27:
52:95:17:92:86:eb:8a:41:1f:27:4e:a4:2c:f7:42:
32:d1:b8:12:31:cc:af:00:c6:f9:42:78:28:24:c4:
65:a6:b4:9a:f6:df:92:67:55:0d:c8:b1:98:be:ad:
0f:0a:8e:55:17:4e:52:d1:f3:91:14:ef:f2:f9:87:
4f:e1:d6:90:1e:b8:bd:39:72:34:e5:39:f7:f7:8d:
b2:d6:4c:53:d5:ee:89:38:7b:75:59:fd:74:76:5e:
cb:ba:14:ba:a0:9f:72:75:a1:78:c8:7e:3d:63:d8:
ca:04:30:e3:9d:bc:46:32:dc:fe:b4:32:cb:7b:00:
8d:07:7b:6d:af:c4:8f:9b:8b:6b:6a:6c:7c:e0:80:
25:ae:bd:17:e8:8e:01:8c:c9:5d:a5:7a:12:9f:64:
9b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:47:5A:6D:D5:0D:CE:A0:69:FA:43:87:E1:AE:5E:8B:D6:9B:6C:C5
X509v3 Authority Key Identifier:
keyid:20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/CEdabdUNzqBp-kOH4a5ei9abbMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.170.15.0/24
IPv6:
2a02:10:100::/48
Signature Algorithm: sha256WithRSAEncryption
8b:29:24:df:49:03:a2:33:5f:ca:ec:6d:95:cf:07:f7:36:64:
67:0b:6a:a2:ce:24:1c:9e:b3:b9:17:bb:03:ea:a8:38:6f:22:
24:eb:1b:c3:31:ff:69:79:a2:3f:79:5a:0d:c1:c1:d5:be:93:
3d:53:1c:ab:bd:dd:3a:7c:d0:88:f3:5a:ce:d5:b4:fd:16:8c:
01:26:a4:e5:e4:fb:88:ed:73:4b:de:ac:95:d0:d1:5b:d3:ae:
5e:3d:06:96:c1:bc:72:ef:e4:32:72:a5:dd:ee:73:78:ea:94:
5d:97:21:02:ee:f4:ea:92:83:db:d5:ba:82:1d:d9:47:48:14:
8b:32:5d:77:39:2a:22:c6:f2:6d:2f:8c:dc:cf:55:12:65:22:
02:0a:f9:53:f6:4e:f6:eb:fb:e6:05:06:63:82:f6:de:45:8b:
32:43:b0:9a:64:6c:31:1b:0c:54:d3:a8:4d:e6:43:ce:6d:f7:
b6:d4:10:da:8c:96:c6:4b:ad:5e:06:07:6e:8a:bd:38:88:87:
5e:58:5a:f5:41:57:4d:2c:ce:2d:68:38:6e:ef:42:5d:70:ff:
ea:14:7f:83:ea:76:e3:dd:a6:18:f2:3b:c1:a3:0d:29:6f:33:
97:30:3f:9b:ac:22:84:28:8f:f1:bb:5e:47:68:b3:8b:39:47:
ad:bb:57:36
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIENen8ITANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MDFmZTMwZmM2YjRiMGQwZjZkYjRlMWJmYmJkNTAxOTVkY2E1NzVjMB4XDTIyMDEw
MTAzMDIxMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDg0NzVhNmRkNTBk
Y2VhMDY5ZmE0Mzg3ZTFhZTVlOGJkNjliNmNjNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK9Hn/4qA3rP/6Y2hI01UmSiht2L1KyBlIT8eJm2kFz77M7/
dd0KbN/cF3JGP1mal7/aRumftc0unmJ0PTtDB18GnwISkKV59fu8Hrmk6PbOyKR2
kp+YCeuxLABSnPCB9kMVC2eXf9cnUpUXkobrikEfJ06kLPdCMtG4EjHMrwDG+UJ4
KCTEZaa0mvbfkmdVDcixmL6tDwqOVRdOUtHzkRTv8vmHT+HWkB64vTlyNOU59/eN
stZMU9XuiTh7dVn9dHZey7oUuqCfcnWheMh+PWPYygQw4528RjLc/rQyy3sAjQd7
ba/Ej5uLa2psfOCAJa69F+iOAYzJXaV6Ep9km1sCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBQIR1pt1Q3OoGn6Q4fhrl6L1ptsxTAfBgNVHSMEGDAWgBQgH+MPxrSw0Pbb
Thv7vVAZXcpXXDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lCX2pEOGEwc05EMjIwNGItNzFRR1YzS1Yxdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDMvOGQ4MGY5LTQ5NGUtNGFiYi05OTU2LWZjMTIxYzgwMGIzMC8x
L0NFZGFiZFVOenFCcC1rT0g0YTVlaTlhYmJNVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDMv
OGQ4MGY5LTQ5NGUtNGFiYi05OTU2LWZjMTIxYzgwMGIzMC8xL0lCX2pEOGEwc05E
MjIwNGItNzFRR1YzS1Yxdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEANmqDzAPBAIAAjAJAwcAKgIAEAEA
MA0GCSqGSIb3DQEBCwUAA4IBAQCLKSTfSQOiM1/K7G2Vzwf3NmRnC2qiziQcnrO5
F7sD6qg4byIk6xvDMf9peaI/eVoNwcHVvpM9Uxyrvd06fNCI81rO1bT9FowBJqTl
5PuI7XNL3qyV0NFb065ePQaWwbxy7+QycqXd7nN46pRdlyEC7vTqkoPb1bqCHdlH
SBSLMl13OSoixvJtL4zcz1USZSICCvlT9k726/vmBQZjgvbeRYsyQ7CaZGwxGwxU
06hN5kPObfe21BDajJbGS61eBgduir04iIdeWFr1QVdNLM4taDhu70JdcP/qFH+D
6nbj3aYY8jvBow0pbzOXMD+brCKEKI/xu15HaLOLOUetu1c2
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:12 2023 by rpki-client on console-fra.rpki-client.org