Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/756505-2062-49e7-94fe-04777c198ef1/1/_bYb-CL7YgjpJKYGF03Abdcea5o.roa
File: _bYb-CL7YgjpJKYGF03Abdcea5o.roa (raw, json)
Hash identifier: SDSGenmfJ36aQE/rhS4ZgBfxMWBolpVBI2GTx2milc4=
Subject key identifier: FD:B6:1B:F8:22:FB:62:08:E9:24:A6:06:17:4D:C0:6D:D7:1E:6B:9A
Certificate issuer: /CN=d7880ed1021d0ecac71205673b004813b39dfc99
Certificate serial: 329D4BA2
Authority key identifier: D7:88:0E:D1:02:1D:0E:CA:C7:12:05:67:3B:00:48:13:B3:9D:FC:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/14gO0QIdDsrHEgVnOwBIE7Od_Jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/756505-2062-49e7-94fe-04777c198ef1/1/_bYb-CL7YgjpJKYGF03Abdcea5o.roa
Signing time: Wed 26 Jan 2022 17:09:32 +0000
ROA not before: Wed 26 Jan 2022 17:09:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3262
IP address blocks: 217.18.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 849169314 (0x329d4ba2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7880ed1021d0ecac71205673b004813b39dfc99
Validity
Not Before: Jan 26 17:09:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fdb61bf822fb6208e924a606174dc06dd71e6b9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1c:26:3f:06:a2:e4:8d:dc:f9:0d:94:d3:0b:
d2:7f:bc:b0:00:c7:d0:23:a3:ba:6d:2e:a0:1f:12:
40:dd:f0:9d:24:d2:9b:ff:20:40:fe:bf:02:16:2a:
ca:3b:4f:26:ac:26:d1:2c:4f:da:72:d9:a0:98:1e:
c8:cd:79:0c:29:26:a2:8c:d7:a9:22:3e:04:5b:ff:
f9:5f:5e:c8:c3:d0:59:3f:e5:3f:bf:bc:2e:a5:d0:
12:ef:d9:fb:bc:6b:a5:00:09:ae:3e:ae:f2:26:db:
12:23:3b:13:f8:58:a8:33:38:49:b3:45:b5:7b:2a:
1c:5d:9f:7f:4e:96:15:94:ad:7e:ae:72:3a:c2:aa:
86:f4:23:f5:2b:fe:46:9b:f4:30:ae:9d:a4:fd:25:
57:15:ce:fe:fd:ec:46:a4:36:4b:09:07:a4:fb:ec:
3e:82:f5:8c:49:7c:db:52:bb:f3:e7:a1:be:a6:a8:
de:c6:fe:21:f2:51:03:fa:84:24:f9:38:89:93:15:
85:cf:b6:ab:fa:0f:c3:9d:c6:52:37:d6:16:d2:ac:
02:95:a2:98:e0:2e:79:61:7f:6b:60:f9:14:d1:ab:
5f:fc:9b:73:0b:9a:a5:b3:eb:46:9b:20:bb:b4:fb:
af:3c:6d:06:c8:cb:13:d8:a5:81:87:ee:f8:c4:ef:
69:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:B6:1B:F8:22:FB:62:08:E9:24:A6:06:17:4D:C0:6D:D7:1E:6B:9A
X509v3 Authority Key Identifier:
keyid:D7:88:0E:D1:02:1D:0E:CA:C7:12:05:67:3B:00:48:13:B3:9D:FC:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/14gO0QIdDsrHEgVnOwBIE7Od_Jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/756505-2062-49e7-94fe-04777c198ef1/1/_bYb-CL7YgjpJKYGF03Abdcea5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/756505-2062-49e7-94fe-04777c198ef1/1/14gO0QIdDsrHEgVnOwBIE7Od_Jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.18.238.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:b1:7f:25:04:a3:f1:7d:d0:19:5b:88:61:41:b2:6c:a3:49:
8e:0d:49:f7:08:09:51:c0:46:08:33:19:bc:33:23:b6:2c:73:
53:96:5d:bd:70:bb:81:e8:ce:1c:e2:05:c0:96:30:8e:ca:09:
79:e0:9e:80:af:58:a2:c7:cb:d4:bd:1b:a5:64:a8:05:15:ca:
5a:e8:ac:86:4c:1f:b0:df:ba:29:66:07:9a:cf:c2:76:3e:14:
4f:ec:b1:c5:91:26:be:1c:95:41:c2:00:1c:3d:39:8d:36:e2:
b2:69:29:6c:2e:30:db:d1:e5:b7:2b:ca:3a:63:d7:8d:3c:3a:
42:ec:06:88:42:cd:c4:54:6a:ed:3f:6b:b2:53:4d:03:ee:6a:
7f:75:13:f2:cf:c9:01:ac:76:66:5f:9a:6d:5f:87:f6:fa:b9:
3b:cc:35:a9:a9:07:c2:f8:66:05:57:7d:db:b0:94:6f:d8:23:
5e:7b:12:bb:91:02:30:29:3d:df:56:df:bc:ac:f9:72:b1:1b:
57:40:0d:25:a1:87:24:4d:57:e7:f0:ad:32:80:a5:5f:e4:29:
2b:9d:3d:69:eb:9d:c5:15:73:31:84:c7:89:2f:d3:ed:72:ca:
79:8d:39:98:e6:bd:b0:52:77:29:84:16:dd:e9:42:de:41:0a:
42:5d:51:6e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEMp1LojANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
Nzg4MGVkMTAyMWQwZWNhYzcxMjA1NjczYjAwNDgxM2IzOWRmYzk5MB4XDTIyMDEy
NjE3MDkzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmRiNjFiZjgyMmZi
NjIwOGU5MjRhNjA2MTc0ZGMwNmRkNzFlNmI5YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMEcJj8GouSN3PkNlNML0n+8sADH0COjum0uoB8SQN3wnSTS
m/8gQP6/AhYqyjtPJqwm0SxP2nLZoJgeyM15DCkmoozXqSI+BFv/+V9eyMPQWT/l
P7+8LqXQEu/Z+7xrpQAJrj6u8ibbEiM7E/hYqDM4SbNFtXsqHF2ff06WFZStfq5y
OsKqhvQj9Sv+Rpv0MK6dpP0lVxXO/v3sRqQ2SwkHpPvsPoL1jEl821K78+ehvqao
3sb+IfJRA/qEJPk4iZMVhc+2q/oPw53GUjfWFtKsApWimOAueWF/a2D5FNGrX/yb
cwuapbPrRpsgu7T7rzxtBsjLE9ilgYfu+MTvaXcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT9thv4IvtiCOkkpgYXTcBt1x5rmjAfBgNVHSMEGDAWgBTXiA7RAh0OyscS
BWc7AEgTs538mTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzE0Z08wUUlkRHNySEVnVm5Pd0JJRTdPZF9Kay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGQvNzU2NTA1LTIwNjItNDllNy05NGZlLTA0Nzc3YzE5OGVmMS8x
L19iWWItQ0w3WWdqcEpLWUdGMDNBYmRjZWE1by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGQv
NzU2NTA1LTIwNjItNDllNy05NGZlLTA0Nzc3YzE5OGVmMS8xLzE0Z08wUUlkRHNy
SEVnVm5Pd0JJRTdPZF9Kay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANkS7jANBgkqhkiG9w0BAQsFAAOC
AQEALbF/JQSj8X3QGVuIYUGybKNJjg1J9wgJUcBGCDMZvDMjtixzU5ZdvXC7gejO
HOIFwJYwjsoJeeCegK9YosfL1L0bpWSoBRXKWuishkwfsN+6KWYHms/Cdj4UT+yx
xZEmvhyVQcIAHD05jTbismkpbC4w29HltyvKOmPXjTw6QuwGiELNxFRq7T9rslNN
A+5qf3UT8s/JAax2Zl+abV+H9vq5O8w1qakHwvhmBVd927CUb9gjXnsSu5ECMCk9
31bfvKz5crEbV0ANJaGHJE1X5/CtMoClX+QpK509aeudxRVzMYTHiS/T7XLKeY05
mOa9sFJ3KYQW3elC3kEKQl1Rbg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:39 2023 by rpki-client on console-ams.rpki-client.org