Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/23190c-e1a0-4ba4-b1d8-a102be382e51/1/iPR0FusFK_IhpcE9v2QVg9-ykrg.roa
File: iPR0FusFK_IhpcE9v2QVg9-ykrg.roa (raw, json)
Hash identifier: Ti2tZvbikyMKTOYRTAQFfZx7jpqiFqKd8T47UbtHv6Y=
Subject key identifier: 88:F4:74:16:EB:05:2B:F2:21:A5:C1:3D:BF:64:15:83:DF:B2:92:B8
Certificate issuer: /CN=ef7fd5d33061a9de920af1c2a13513d46dd24612
Certificate serial: 16C9C42E
Authority key identifier: EF:7F:D5:D3:30:61:A9:DE:92:0A:F1:C2:A1:35:13:D4:6D:D2:46:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/73_V0zBhqd6SCvHCoTUT1G3SRhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/23190c-e1a0-4ba4-b1d8-a102be382e51/1/iPR0FusFK_IhpcE9v2QVg9-ykrg.roa
Signing time: Sat 01 Jan 2022 07:03:09 +0000
ROA not before: Sat 01 Jan 2022 07:03:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3292
IP address blocks: 217.28.162.0/24 maxlen: 24
217.28.160.0/23 maxlen: 23
217.28.164.0/22 maxlen: 22
217.28.168.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 382321710 (0x16c9c42e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef7fd5d33061a9de920af1c2a13513d46dd24612
Validity
Not Before: Jan 1 07:03:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88f47416eb052bf221a5c13dbf641583dfb292b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:42:97:4a:e8:15:7b:c8:a8:17:a6:bd:25:7d:
61:99:e3:47:d1:30:b6:94:cd:ad:96:ac:c2:ae:cf:
8d:9a:75:0c:e1:df:c8:4d:fe:fc:79:7f:8a:5c:2a:
d9:4e:b6:78:f7:b7:66:f9:4c:50:df:26:5e:ce:fe:
8d:cb:e2:8d:1d:75:19:e8:38:84:84:7b:7e:0a:c9:
69:41:61:6b:80:8d:b3:32:7d:81:a6:d6:aa:d3:f5:
38:5e:db:7d:ac:17:bf:89:bb:ca:6c:0b:c2:30:0f:
96:81:7d:a7:29:b5:1a:5f:75:82:5c:41:d7:f5:93:
a1:10:96:21:53:52:fb:53:38:2a:43:4e:c6:85:09:
6e:e5:b5:f2:37:f0:f3:ff:73:42:d5:e8:f4:37:97:
f1:43:8f:ce:47:b5:cf:bd:da:6e:0d:ec:3b:4c:2c:
1c:ef:53:01:87:77:ed:5f:5b:7b:33:fa:bc:de:a3:
e9:31:a3:b9:da:cb:1f:fd:b2:c2:b6:d6:db:e0:1f:
8d:fc:27:e6:c8:8d:59:4b:7e:89:0e:7e:59:c6:74:
b0:b2:eb:1a:05:05:b6:c8:da:ad:f9:15:ba:04:68:
5c:2c:c1:b0:22:95:4c:b6:7f:1a:e8:a3:84:bf:13:
4a:ce:f5:ae:25:e5:ba:a0:6e:9d:25:f3:1c:93:33:
1a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:F4:74:16:EB:05:2B:F2:21:A5:C1:3D:BF:64:15:83:DF:B2:92:B8
X509v3 Authority Key Identifier:
keyid:EF:7F:D5:D3:30:61:A9:DE:92:0A:F1:C2:A1:35:13:D4:6D:D2:46:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/73_V0zBhqd6SCvHCoTUT1G3SRhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/23190c-e1a0-4ba4-b1d8-a102be382e51/1/iPR0FusFK_IhpcE9v2QVg9-ykrg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/23190c-e1a0-4ba4-b1d8-a102be382e51/1/73_V0zBhqd6SCvHCoTUT1G3SRhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.160.0-217.28.162.255
217.28.164.0-217.28.175.255
Signature Algorithm: sha256WithRSAEncryption
73:22:77:b5:d0:05:65:38:3e:2d:64:00:9b:0c:2c:46:2e:a9:
97:09:7a:65:85:ad:3f:a1:d6:e5:35:f1:7c:a3:ef:e4:cb:da:
bd:16:e6:8c:e1:b8:f0:fb:de:48:c5:b8:9f:a6:92:33:94:4d:
d2:af:a6:7c:39:af:46:55:38:51:3d:a1:7b:8d:97:48:a6:e1:
cb:1f:ab:fe:58:51:1c:e2:42:04:8a:d7:05:e7:b2:7a:5a:b3:
b8:5e:bd:41:a6:0a:57:b0:c8:ba:59:2f:fe:be:47:10:70:92:
05:5c:90:01:a4:56:b0:a7:88:a7:25:a8:3b:0e:fa:58:97:cf:
39:f3:cd:e6:62:f8:a2:9f:9c:b5:1b:18:00:c7:d1:ed:e1:4b:
6a:3a:3f:6d:eb:f8:e1:9d:16:f7:e1:96:99:b2:21:6a:a0:8c:
88:2e:bb:36:a1:ec:aa:a9:b3:b1:05:fe:0f:92:db:57:3c:58:
97:7f:f3:d8:d2:1e:f0:95:3a:1a:d5:3e:9c:9b:93:01:49:e0:
69:88:ef:db:9b:80:80:50:66:6d:df:b9:09:d7:eb:29:d1:61:
70:fd:f1:88:7f:35:b0:b2:08:b6:5c:a2:23:34:c9:f1:48:86:
1a:fc:ac:cb:66:c5:e6:47:a1:6a:71:80:42:b2:10:ce:0d:a5:
2b:ae:f2:81
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgIEFsnELjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
ZjdmZDVkMzMwNjFhOWRlOTIwYWYxYzJhMTM1MTNkNDZkZDI0NjEyMB4XDTIyMDEw
MTA3MDMwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODhmNDc0MTZlYjA1
MmJmMjIxYTVjMTNkYmY2NDE1ODNkZmIyOTJiODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK9Cl0roFXvIqBemvSV9YZnjR9EwtpTNrZaswq7PjZp1DOHf
yE3+/Hl/ilwq2U62ePe3ZvlMUN8mXs7+jcvijR11Geg4hIR7fgrJaUFha4CNszJ9
gabWqtP1OF7bfawXv4m7ymwLwjAPloF9pym1Gl91glxB1/WToRCWIVNS+1M4KkNO
xoUJbuW18jfw8/9zQtXo9DeX8UOPzke1z73abg3sO0wsHO9TAYd37V9bezP6vN6j
6TGjudrLH/2ywrbW2+Afjfwn5siNWUt+iQ5+WcZ0sLLrGgUFtsjarfkVugRoXCzB
sCKVTLZ/GuijhL8TSs71riXluqBunSXzHJMzGn8CAwEAAaOCAh8wggIbMB0GA1Ud
DgQWBBSI9HQW6wUr8iGlwT2/ZBWD37KSuDAfBgNVHSMEGDAWgBTvf9XTMGGp3pIK
8cKhNRPUbdJGEjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzczX1YwekJocWQ2U0N2SENvVFVUMUczU1JoSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGMvMjMxOTBjLWUxYTAtNGJhNC1iMWQ4LWExMDJiZTM4MmU1MS8x
L2lQUjBGdXNGS19JaHBjRTl2MlFWZzkteWtyZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGMv
MjMxOTBjLWUxYTAtNGJhNC1iMWQ4LWExMDJiZTM4MmU1MS8xLzczX1YwekJocWQ2
U0N2SENvVFVUMUczU1JoSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA1
BggrBgEFBQcBBwEB/wQmMCQwIgQCAAEwHDAMAwQF2RygAwQA2RyiMAwDBALZHKQD
BATZHKAwDQYJKoZIhvcNAQELBQADggEBAHMid7XQBWU4Pi1kAJsMLEYuqZcJemWF
rT+h1uU18Xyj7+TL2r0W5ozhuPD73kjFuJ+mkjOUTdKvpnw5r0ZVOFE9oXuNl0im
4csfq/5YURziQgSK1wXnsnpas7hevUGmClewyLpZL/6+RxBwkgVckAGkVrCniKcl
qDsO+liXzznzzeZi+KKfnLUbGADH0e3hS2o6P23r+OGdFvfhlpmyIWqgjIguuzah
7Kqps7EF/g+S21c8WJd/89jSHvCVOhrVPpybkwFJ4GmI79ubgIBQZm3fuQnX6ynR
YXD98Yh/NbCyCLZcoiM0yfFIhhr8rMtmxeZHoWpxgEKyEM4NpSuu8oE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:25 2024 by rpki-client on console-fra.rpki-client.org