Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/2u_KNQyTxavOpkL1-8yfDB_YI5Y.roa
File: 2u_KNQyTxavOpkL1-8yfDB_YI5Y.roa (raw, json)
Hash identifier: VpfrnXI6BbTq9rd6qBPdAgYwDAhctOGnvZEFn3JEiQ8=
Subject key identifier: DA:EF:CA:35:0C:93:C5:AB:CE:A6:42:F5:FB:CC:9F:0C:1F:D8:23:96
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 01848AA764A23B3CBD36034E999938038C9C
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/2u_KNQyTxavOpkL1-8yfDB_YI5Y.roa
Signing time: Fri 18 Nov 2022 12:12:16 +0000
ROA not before: Fri 18 Nov 2022 12:12:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201235
IP address blocks: 217.113.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8a:a7:64:a2:3b:3c:bd:36:03:4e:99:99:38:03:8c:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Nov 18 12:12:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=daefca350c93c5abcea642f5fbcc9f0c1fd82396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c9:79:86:b0:c8:61:f0:a4:02:fa:6d:9e:ce:
25:26:01:9e:8d:e5:40:10:74:22:36:45:31:80:f2:
27:46:55:f7:5d:3d:6e:3d:bb:9b:e6:ca:a6:aa:ce:
ee:89:0d:81:cb:46:b8:1a:1b:a7:89:c6:b6:f7:a1:
eb:7b:2d:15:ce:56:7d:4d:28:0f:e7:83:ed:7c:94:
41:93:58:e8:d8:32:3c:79:b4:fd:e1:97:75:b5:00:
c0:69:fb:f9:65:41:72:b1:8b:7d:f3:35:88:96:42:
6e:74:e2:92:81:c5:9b:78:bc:98:8a:b7:3d:32:9a:
75:54:98:aa:99:8c:80:ce:f3:54:0a:ad:56:2d:37:
49:f8:01:9b:97:0c:6b:52:bf:6c:a8:4f:f8:1c:d4:
21:b6:fe:51:ca:a0:cd:e1:72:97:4b:34:56:e0:33:
ba:c5:28:a2:20:5d:9f:62:6d:d0:14:49:b2:86:85:
d1:fb:46:1b:33:99:50:f1:83:ea:3b:a1:53:c1:d6:
94:ff:6a:7b:38:54:05:35:ec:db:c0:eb:69:50:95:
e2:f5:97:cf:45:f7:b5:41:b7:f4:a7:fb:bd:e0:96:
bb:d9:1b:29:ca:7b:2d:fc:7a:4d:a1:56:8e:68:c9:
8d:32:1a:30:8b:6e:80:d9:35:19:3c:1c:52:c3:e6:
f9:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:EF:CA:35:0C:93:C5:AB:CE:A6:42:F5:FB:CC:9F:0C:1F:D8:23:96
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/2u_KNQyTxavOpkL1-8yfDB_YI5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.16.0/24
Signature Algorithm: sha256WithRSAEncryption
34:f1:3f:29:da:1f:49:be:6c:87:d7:94:c2:e5:6e:80:69:16:
93:39:0e:3b:0d:ed:e0:6c:57:2f:35:e6:b5:ec:9d:fb:22:68:
11:36:69:7b:17:6a:e4:fe:ba:d2:74:12:b8:8b:77:de:93:8b:
3a:85:73:dc:83:6e:f7:c0:3c:96:51:6b:73:21:00:e5:bf:8a:
99:df:84:b7:b5:dc:78:37:cf:6d:7f:3c:a1:72:8e:7e:29:38:
6d:53:03:e4:e3:7d:f0:c0:72:54:f9:8c:3c:cc:3a:bc:0a:20:
4e:82:bc:8e:49:11:99:3b:55:7c:e8:b7:3a:a7:f5:8e:ea:d7:
f8:40:45:18:d7:03:b2:60:bc:9e:29:ef:c7:eb:47:9d:24:12:
fc:37:20:52:5a:91:be:ed:f0:14:52:63:87:e3:17:af:f6:db:
d0:87:27:1b:51:19:41:4e:24:d1:f0:6b:bf:22:04:da:43:73:
38:94:8c:2c:98:18:5b:05:6d:76:b4:52:31:35:86:ce:c7:12:
62:07:a4:96:c7:28:f8:2d:c3:18:db:f2:bb:80:2e:aa:89:23:
3a:c0:63:bc:69:fb:9e:da:dd:9b:8e:2b:08:a3:d1:bd:f5:2a:
a5:40:27:42:cc:1f:74:d9:67:b1:d4:32:f8:b4:3b:68:09:cd:
19:23:68:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:23 2023 by rpki-client on console-ams.rpki-client.org