Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/A-dw42-Ub9J_Uf5XTvnX6d_Pzx4.roa
File: A-dw42-Ub9J_Uf5XTvnX6d_Pzx4.roa (raw, json)
Hash identifier: 2OtBOPlc8yuE1ouLDL5oBOf+lXh87f4m9Rh31xRp3IY=
Subject key identifier: 03:E7:70:E3:6F:94:6F:D2:7F:51:FE:57:4E:F9:D7:E9:DF:CF:CF:1E
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 0183C196FD0EBE3024EF8A535D4CB88363A9
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/A-dw42-Ub9J_Uf5XTvnX6d_Pzx4.roa
Signing time: Mon 10 Oct 2022 11:10:41 +0000
ROA not before: Mon 10 Oct 2022 11:10:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57206
IP address blocks: 217.113.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c1:96:fd:0e:be:30:24:ef:8a:53:5d:4c:b8:83:63:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Oct 10 11:10:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03e770e36f946fd27f51fe574ef9d7e9dfcfcf1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8c:c7:97:1f:17:c4:4c:e1:40:b2:be:bf:cc:
8b:fe:82:0b:44:68:9b:1c:6e:9b:c8:25:96:9b:d2:
3b:28:a7:9c:ca:fd:52:71:c9:a2:1d:cf:36:6b:16:
20:2e:d2:47:03:80:3a:fa:94:44:56:4c:94:1b:d3:
df:b0:c7:79:20:e0:a2:39:ed:33:29:c5:18:70:84:
05:68:ff:ba:8a:c6:f0:f2:4b:84:56:a6:79:47:c6:
fa:77:c9:0f:81:a9:32:97:1b:c3:7e:2a:c4:dc:6f:
16:50:54:f4:39:fc:29:01:30:a9:42:26:6d:64:83:
9f:63:29:66:23:54:ac:98:bf:53:58:f2:5b:df:2f:
9f:a0:dd:bf:80:12:2e:3e:a0:c2:fd:05:21:8b:79:
a5:49:0b:a7:5e:c7:34:5f:26:3b:20:9d:89:2c:f5:
ce:57:5a:93:90:5f:3d:b4:07:ee:1e:9f:67:92:38:
1a:ee:e9:b7:88:73:e4:b8:f1:b5:e2:19:4f:f2:c2:
75:8b:71:eb:63:09:eb:58:7b:ef:23:aa:cb:2e:7e:
3c:ea:1b:d7:9b:63:ca:35:53:aa:c1:6a:f8:77:28:
91:33:6a:ad:61:f2:b3:ae:33:47:a5:3f:90:13:f1:
1b:c7:e5:a5:69:cd:84:7a:b7:1f:4c:46:e0:f4:bc:
bf:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:E7:70:E3:6F:94:6F:D2:7F:51:FE:57:4E:F9:D7:E9:DF:CF:CF:1E
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/A-dw42-Ub9J_Uf5XTvnX6d_Pzx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.8.0/24
Signature Algorithm: sha256WithRSAEncryption
11:93:ed:54:98:92:2c:87:fc:b2:76:55:6b:17:bd:3d:9a:85:
d8:b2:2e:b4:e8:6a:53:da:57:26:9d:e5:d1:91:8c:87:00:23:
8b:77:af:3d:48:d1:63:8d:55:32:f8:aa:00:03:e4:ec:a7:ff:
de:ec:32:98:8b:bd:4a:86:e1:e0:08:bb:77:a8:28:68:d8:49:
6b:0c:d3:59:68:ce:23:05:89:c5:43:32:9b:64:9e:27:02:b2:
ad:a6:18:fe:58:65:6c:ce:08:83:0a:dc:50:3a:c1:f3:03:5a:
b1:39:ea:5f:da:d7:15:71:8d:77:9b:52:c5:76:0e:dd:e7:a9:
4b:a8:e5:44:44:c3:cd:ac:78:05:eb:08:ac:d2:9e:a8:8c:11:
e4:72:37:dd:ae:bc:ad:c2:45:50:7a:3a:2f:3a:e0:0f:cf:72:
ec:a7:fe:e5:55:b1:ca:f6:a7:6d:36:0c:f4:46:96:6b:20:cd:
69:6b:5c:03:d4:f3:f7:b9:00:6d:26:65:a5:7e:92:0a:d7:db:
2a:cd:f5:be:06:4a:03:3c:0a:56:57:53:a5:36:d6:6b:17:95:
d8:dd:5a:6f:77:a5:39:35:e1:ce:c1:12:89:b7:b2:a3:44:e6:
2a:e1:5a:c1:4e:ed:ff:8b:6f:26:35:50:c9:b1:3f:33:27:96:
56:7b:43:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:42 2023 by rpki-client on console-fra.rpki-client.org