Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/95f051-5e1d-4d36-a593-1a5eb50885ae/1/EXkJlzS6ViS13x4i7NOQdqUguok.roa
File: EXkJlzS6ViS13x4i7NOQdqUguok.roa (raw, json)
Hash identifier: yD1B1r5E9KvDip4xyDWJC6ug/K1iRQjnfLgFUoDfqcI=
Subject key identifier: 11:79:09:97:34:BA:56:24:B5:DF:1E:22:EC:D3:90:76:A5:20:BA:89
Certificate issuer: /CN=59c3cc99899373c85974f01c9cd7aa057ab97fab
Certificate serial: 08EABA3D
Authority key identifier: 59:C3:CC:99:89:93:73:C8:59:74:F0:1C:9C:D7:AA:05:7A:B9:7F:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WcPMmYmTc8hZdPAcnNeqBXq5f6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/95f051-5e1d-4d36-a593-1a5eb50885ae/1/EXkJlzS6ViS13x4i7NOQdqUguok.roa
Signing time: Sat 01 Jan 2022 12:05:17 +0000
ROA not before: Sat 01 Jan 2022 12:05:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29503
IP address blocks: 217.146.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149600829 (0x8eaba3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59c3cc99899373c85974f01c9cd7aa057ab97fab
Validity
Not Before: Jan 1 12:05:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1179099734ba5624b5df1e22ecd39076a520ba89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:70:c5:76:45:af:19:d9:08:03:3a:e7:98:9f:
da:f2:72:31:ea:83:c6:d6:e7:6e:1e:01:9a:52:77:
67:e5:ba:b2:99:c2:02:20:14:46:ee:9d:3b:b8:cc:
4d:b1:06:3c:21:ba:ab:b2:38:ca:6e:c9:e0:3e:4b:
52:44:c1:6d:d7:f4:8c:b0:dc:08:94:91:68:c8:5f:
5f:ea:73:42:50:ef:a5:36:9d:5f:9d:4a:ba:14:59:
5a:ee:94:41:00:1d:62:f2:be:54:4d:ab:d0:45:68:
87:c2:c6:02:c8:dd:5c:a8:55:ca:79:c8:09:ae:9b:
18:70:fa:54:b6:53:cc:27:ae:bd:54:2d:f4:ee:34:
80:5a:71:07:80:96:4c:0e:6b:21:46:01:73:d0:98:
35:96:dd:51:6d:0b:4f:da:d2:de:e3:0b:be:ba:9f:
e8:a9:a1:ff:29:c6:85:7e:27:bf:7f:54:91:bb:89:
58:7a:8a:ac:3e:ef:da:27:80:97:aa:75:b2:ea:a6:
63:f6:e1:a6:f5:bb:e8:8f:26:f2:c9:01:b7:5f:33:
f3:57:0c:46:35:e1:6b:6b:03:d3:6c:99:b3:59:99:
00:64:f9:ce:a7:08:0e:ab:0d:03:73:96:fd:12:ae:
45:50:19:af:6c:d9:8d:18:38:06:29:0d:a3:33:48:
66:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:79:09:97:34:BA:56:24:B5:DF:1E:22:EC:D3:90:76:A5:20:BA:89
X509v3 Authority Key Identifier:
keyid:59:C3:CC:99:89:93:73:C8:59:74:F0:1C:9C:D7:AA:05:7A:B9:7F:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WcPMmYmTc8hZdPAcnNeqBXq5f6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/95f051-5e1d-4d36-a593-1a5eb50885ae/1/EXkJlzS6ViS13x4i7NOQdqUguok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/95f051-5e1d-4d36-a593-1a5eb50885ae/1/WcPMmYmTc8hZdPAcnNeqBXq5f6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.146.32.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:f0:ab:e4:ee:89:ca:90:12:5f:b4:f8:1c:6d:03:84:34:24:
f5:4a:16:c9:e1:41:16:24:50:07:6a:6b:20:35:1b:3e:9f:5e:
24:8b:eb:91:90:b7:2c:8e:aa:6c:a2:f0:1b:c9:e2:48:f0:2d:
99:21:22:ba:a6:43:d0:17:82:99:a9:cd:8a:12:9a:7f:3a:27:
ae:9b:b9:72:3a:7d:e2:aa:e3:43:c9:1d:e1:de:5f:de:e4:bc:
b4:91:22:4d:37:e9:d0:49:9a:70:e6:3a:21:01:e4:6d:64:2a:
85:38:93:c5:45:6f:49:89:f6:ea:88:74:52:0c:e2:d7:bc:d1:
7b:64:f7:96:9e:ac:77:52:49:c4:f1:63:2c:52:b7:dd:ac:ee:
98:c9:54:2a:ad:5a:45:b4:4f:3f:92:5f:67:7d:18:fc:a4:b3:
be:b4:4c:7d:bd:f6:3b:83:e3:f6:ab:da:e5:4e:b8:82:36:0f:
af:b3:60:64:45:46:8a:30:52:cb:ec:f1:c5:00:7a:f4:a5:7d:
df:5c:d2:f5:26:a6:d8:cc:e2:e6:68:c9:16:7a:69:0b:98:e2:
e1:f4:14:24:e5:2e:44:bc:05:48:69:96:bf:0c:c9:19:4a:57:
33:25:40:a2:d4:06:d9:fa:b0:48:10:9c:5e:c2:b0:46:7b:e1:
e1:bd:bb:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:48 2024 by rpki-client on console-fra.rpki-client.org