Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/_eFKEzL_urHlNFvOdsQNTjlB-mY.roa
File: _eFKEzL_urHlNFvOdsQNTjlB-mY.roa (raw, json)
Hash identifier: e+RfJIljb2ngxDuZEiVtFiEtnUDVPzTCwKfP8c6jlw8=
Subject key identifier: FD:E1:4A:13:32:FF:BA:B1:E5:34:5B:CE:76:C4:0D:4E:39:41:FA:66
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 0183C196FC82C6BF3134E88357A6CE252337
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/_eFKEzL_urHlNFvOdsQNTjlB-mY.roa
Signing time: Mon 10 Oct 2022 11:10:41 +0000
ROA not before: Mon 10 Oct 2022 11:10:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50364
IP address blocks: 217.113.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c1:96:fc:82:c6:bf:31:34:e8:83:57:a6:ce:25:23:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Oct 10 11:10:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fde14a1332ffbab1e5345bce76c40d4e3941fa66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2d:d6:f5:af:2f:64:f2:38:75:2f:cb:93:73:
ce:fe:1c:af:6d:1d:5b:80:df:5e:bb:94:23:62:d6:
34:e8:b0:84:d5:25:d8:1c:34:f2:d3:14:4b:60:56:
4f:9a:d5:9f:f4:53:d4:0a:b2:68:69:57:b4:4a:73:
ce:28:08:84:c3:ec:f1:7d:ae:a3:c6:af:17:e7:12:
8b:1f:58:fe:ea:f7:51:3b:f3:ba:a5:0d:42:51:1e:
4e:9c:b9:a0:be:8d:b4:b8:3f:cf:38:cc:8d:c1:23:
e7:16:51:bf:89:54:76:3a:57:fa:70:cf:4e:f5:71:
a2:b0:2c:86:c4:b6:1a:9e:41:dc:fc:88:13:4a:5d:
84:0b:ea:58:e8:90:e2:49:32:d1:33:12:27:af:d6:
0a:27:de:a9:ff:8a:e4:91:9d:c1:8a:ae:67:a8:17:
eb:02:4d:97:d4:4b:e4:98:53:89:fb:e0:5b:2f:95:
d7:59:63:5b:61:e2:56:38:b8:d7:f1:f7:54:5d:b0:
f3:a3:24:36:e8:3b:d5:8b:54:44:1e:03:ae:c4:7f:
1b:2d:de:7e:2d:74:fb:f6:09:ea:e7:e1:2c:bb:16:
4f:2f:44:c6:85:35:b4:fc:76:6a:c8:67:eb:62:fc:
57:da:a7:eb:5a:2c:c0:6c:45:92:df:98:9c:04:b9:
ac:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:E1:4A:13:32:FF:BA:B1:E5:34:5B:CE:76:C4:0D:4E:39:41:FA:66
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/_eFKEzL_urHlNFvOdsQNTjlB-mY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.9.0/24
Signature Algorithm: sha256WithRSAEncryption
02:6f:1e:8d:68:b3:0a:ea:d7:ca:cc:b1:0e:6e:e8:43:99:43:
fd:45:7b:7c:2d:0b:7e:b1:34:f1:e0:e8:c9:4d:82:ac:3a:d9:
8e:b9:a4:29:2b:d6:92:9b:f8:e5:87:97:18:83:be:43:dd:10:
f0:93:6c:20:b5:32:00:53:53:bf:12:2f:b3:8e:f6:5c:bb:cd:
f1:b9:16:27:5b:c5:79:64:59:f0:b3:4e:6e:a7:88:9a:02:3b:
73:c0:ff:c5:c4:41:c9:0e:12:7d:47:c8:9c:f0:2b:cb:06:7e:
d6:91:56:7c:25:04:47:33:e8:00:32:6c:9e:f3:1f:d4:e4:9f:
62:bb:71:be:41:50:82:bb:24:88:42:b7:f8:80:d9:cf:a3:57:
22:29:1a:a6:91:38:39:05:32:05:d6:93:44:c3:20:a4:15:9d:
17:d6:b7:3c:d4:48:8c:e2:c1:73:b8:c8:4a:4f:20:81:8e:72:
84:7a:e1:4c:6f:9d:8e:4f:90:51:1c:3e:7b:16:0e:ce:2f:fa:
3a:ff:6b:e2:34:38:d5:6f:76:4a:62:90:f8:67:fd:77:4f:cf:
5a:12:47:bb:d7:d4:80:39:27:0b:71:7f:09:a8:03:4b:aa:4f:
f6:44:c5:77:a9:41:40:dc:d3:bf:11:b1:8d:8d:27:6f:e2:ea:
07:30:db:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:42 2023 by rpki-client on console-fra.rpki-client.org