Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/Xx0J3QkEPUUhreHAC-HTLfjuwaA.roa
File: Xx0J3QkEPUUhreHAC-HTLfjuwaA.roa (raw, json)
Hash identifier: LUSYv5a9E8iU6g51HqDwMXr2BAViKg3pAElyizPax88=
Subject key identifier: 5F:1D:09:DD:09:04:3D:45:21:AD:E1:C0:0B:E1:D3:2D:F8:EE:C1:A0
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 07CE4EE3
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/Xx0J3QkEPUUhreHAC-HTLfjuwaA.roa
Signing time: Fri 01 Apr 2022 16:57:37 +0000
ROA not before: Fri 01 Apr 2022 16:57:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 217.113.11.0/24 maxlen: 24
217.113.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130961123 (0x7ce4ee3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Apr 1 16:57:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f1d09dd09043d4521ade1c00be1d32df8eec1a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:17:6a:95:16:43:13:71:cd:11:f5:e3:87:d1:
76:ec:77:7e:b8:16:e5:28:28:fb:4d:b1:a1:9b:4b:
03:c8:cc:9a:f5:88:19:bc:bb:b0:4b:6b:a0:45:fe:
b3:0e:ce:7d:8b:9e:fe:8f:44:af:f2:08:fb:53:af:
49:33:56:ed:2f:9a:c8:cb:3c:91:32:80:ba:f8:c5:
30:5e:92:d1:17:6a:6a:80:71:d4:18:02:3f:25:51:
a0:68:08:b8:76:d8:95:20:cf:75:a3:94:96:33:f8:
e1:86:43:38:83:bc:57:64:a9:57:a5:89:4e:f2:cc:
92:74:24:e4:b0:19:84:fa:8b:80:43:f3:ea:1e:1f:
60:5c:bb:82:89:22:84:84:15:98:26:9f:82:25:7f:
f4:dc:0b:20:6a:4d:90:ea:f7:9d:4a:7b:4f:cc:5e:
70:c8:0c:2d:61:bd:1b:30:4d:fb:6a:91:e9:a9:ad:
0f:b2:85:c7:ed:40:e8:17:d4:bf:85:06:cf:0e:82:
75:c6:ef:d5:36:cd:9f:38:f8:7a:de:be:02:c1:57:
1f:6c:8f:1c:73:20:67:ba:3a:37:a9:5e:c9:6d:93:
06:cc:3b:df:24:da:d9:c9:a2:75:96:b5:9f:d6:08:
f8:7f:d5:3d:7e:a8:a3:8e:53:28:70:f3:19:ff:c4:
40:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:1D:09:DD:09:04:3D:45:21:AD:E1:C0:0B:E1:D3:2D:F8:EE:C1:A0
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/Xx0J3QkEPUUhreHAC-HTLfjuwaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.10.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:db:60:54:e8:73:19:22:56:32:a6:4b:31:0e:d4:80:7a:86:
c6:6c:01:2c:eb:f4:bd:57:6c:ea:0f:41:cc:50:43:aa:85:22:
0e:11:48:e2:9d:68:04:87:8d:3c:b8:f7:9b:35:be:65:2d:99:
ef:27:bb:63:32:f8:9e:99:1f:57:87:c6:43:9b:51:1b:10:0f:
9f:cb:5f:f6:93:17:f9:aa:2a:04:eb:d3:c4:6e:6d:f3:eb:e0:
84:bb:cd:86:57:e4:ce:3a:2d:a5:d4:16:51:00:c6:de:4c:a1:
16:28:8d:df:2b:8d:35:c2:aa:6b:24:6e:cf:a5:65:75:3b:72:
84:f2:68:91:a7:cd:28:d6:e8:1c:ed:73:1a:9e:a2:29:e8:54:
02:a1:15:c5:32:d7:bf:4c:52:a7:0b:08:f3:d1:1f:ef:04:53:
59:1d:a9:63:7e:2d:89:62:89:d7:57:95:01:75:72:8f:5e:70:
13:d6:6c:9c:c0:e2:e4:32:75:a6:5a:54:90:20:8a:8a:c3:91:
45:9d:f3:c1:0f:b7:24:a0:3a:b2:95:a8:8c:98:12:d9:b7:13:
1d:af:48:ff:b0:54:19:8a:b3:47:6a:9c:80:4d:e0:3e:d7:84:
85:a2:54:d2:31:75:ec:6c:64:2c:d0:af:16:d2:9d:72:d2:6b:
57:73:8b:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:24 2023 by rpki-client on console-ams.rpki-client.org