Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/Wo_unZpkcx_Sc33JzshotIYBdJQ.roa
File: Wo_unZpkcx_Sc33JzshotIYBdJQ.roa (raw, json)
Hash identifier: mpwjO0bSY0EWTgnxfoT6/8OITJyH5+fouqcU0bRlD+A=
Subject key identifier: 5A:8F:EE:9D:9A:64:73:1F:D2:73:7D:C9:CE:C8:68:B4:86:01:74:94
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 07EFCF24
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/Wo_unZpkcx_Sc33JzshotIYBdJQ.roa
Signing time: Thu 14 Apr 2022 06:49:42 +0000
ROA not before: Thu 14 Apr 2022 06:49:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 217.113.10.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133156644 (0x7efcf24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Apr 14 06:49:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a8fee9d9a64731fd2737dc9cec868b486017494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e5:e8:0b:24:1c:9a:fa:e8:07:bb:a1:db:a3:
4d:71:f5:7e:7b:0b:e1:dd:4b:f1:1a:f7:41:2a:88:
f4:2e:73:7a:ad:33:c1:dc:72:d3:31:d7:23:08:ee:
60:67:e5:b7:eb:fa:f7:b0:08:22:fd:f7:ea:8a:8f:
7d:c4:92:18:66:98:34:f5:d7:53:42:d5:a7:b9:ec:
46:b5:b4:a8:50:df:7d:34:df:df:f6:f3:d2:98:e0:
c5:66:21:c2:f6:bd:d6:33:9b:21:54:1b:92:86:0b:
0a:67:7b:15:1f:8b:4a:02:5c:ce:6d:98:ac:aa:22:
3b:8e:70:a5:b6:19:57:47:b8:1f:39:9d:ca:46:df:
46:6d:39:88:26:4e:90:15:f5:01:4b:7a:11:a1:32:
55:37:25:d3:3e:4a:62:f7:f4:a2:0b:b9:ff:94:c4:
55:62:91:2c:fc:ba:69:1c:55:fe:d1:b5:a6:24:1d:
85:72:d4:8e:14:d9:7f:d1:52:14:0e:28:1d:0b:92:
6e:91:8a:8c:a6:f3:89:f6:da:c8:a5:c8:ee:d0:5a:
03:3c:92:ba:b3:c3:5c:df:19:7c:a8:27:fb:8f:62:
22:0d:b4:a3:38:86:88:e4:87:a6:be:53:5b:15:c5:
33:e7:64:c4:68:d3:7c:aa:93:21:75:6c:6c:48:63:
6e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:8F:EE:9D:9A:64:73:1F:D2:73:7D:C9:CE:C8:68:B4:86:01:74:94
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/Wo_unZpkcx_Sc33JzshotIYBdJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.10.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:e3:ad:9c:5d:97:27:bf:bc:88:2d:aa:47:14:6e:89:8b:ea:
e1:49:0b:d7:b0:9f:f3:fa:e3:d5:c1:b8:4d:5c:9b:8f:d5:30:
41:6e:5d:73:90:8d:46:a6:96:6f:db:52:07:9e:4c:a9:a3:15:
0c:d0:b5:80:0e:5a:5b:90:81:49:70:6d:fc:6a:b0:84:db:a6:
04:1f:d5:69:05:04:bd:d0:56:53:8b:68:43:d7:1d:95:9f:98:
69:9c:0a:4f:3a:bf:04:a8:3c:4e:76:0f:22:ab:57:42:27:b9:
3c:2d:50:e9:36:69:d6:01:8c:ec:8a:c7:07:1c:ce:7b:90:9e:
cf:62:40:01:9a:41:51:27:17:ed:53:0d:4f:d0:21:85:61:52:
fc:bc:81:81:7f:16:64:75:36:91:0a:04:31:dd:2c:ec:87:94:
ff:14:54:b0:7e:2c:7a:5d:07:d9:0d:ba:f3:51:c2:ca:eb:cf:
7f:83:f0:7a:f7:b8:97:2d:a9:ed:52:1c:3c:59:97:88:c9:d8:
50:cf:e5:9d:81:b7:bd:d5:b1:f0:7a:e8:45:8b:69:37:5a:ab:
df:0e:59:ae:74:98:ea:f5:32:b5:80:e5:30:60:f3:b4:9b:4a:
99:8e:9d:c6:bf:a3:f5:01:ce:77:1e:ba:18:fd:1d:71:66:43:
69:93:cd:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:23 2023 by rpki-client on console-ams.rpki-client.org