Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d34378-7da4-4233-9522-54eb7c07aac4/1/ItepKouiq1yAJDyOFbPniiTnkcE.roa
File: ItepKouiq1yAJDyOFbPniiTnkcE.roa (raw, json)
Hash identifier: 6/IX3oUzQf84S3RyHTtf9QrCi7fd7SvzN646LnK50UY=
Subject key identifier: 22:D7:A9:2A:8B:A2:AB:5C:80:24:3C:8E:15:B3:E7:8A:24:E7:91:C1
Certificate issuer: /CN=811100ee46bf67a8495e8d356356966a8d2f7e65
Certificate serial: 4966DA
Authority key identifier: 81:11:00:EE:46:BF:67:A8:49:5E:8D:35:63:56:96:6A:8D:2F:7E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gREA7ka_Z6hJXo01Y1aWao0vfmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/d34378-7da4-4233-9522-54eb7c07aac4/1/ItepKouiq1yAJDyOFbPniiTnkcE.roa
Signing time: Sat 01 Jan 2022 00:52:12 +0000
ROA not before: Sat 01 Jan 2022 00:52:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 217.114.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4810458 (0x4966da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=811100ee46bf67a8495e8d356356966a8d2f7e65
Validity
Not Before: Jan 1 00:52:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22d7a92a8ba2ab5c80243c8e15b3e78a24e791c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:2b:3c:40:ba:b7:c5:5b:05:55:43:a7:1b:4f:
5a:50:75:11:32:ac:94:e2:72:cd:3a:91:fa:76:be:
3c:b2:4c:16:52:2b:b0:eb:a7:47:bb:77:36:b8:43:
d0:ca:69:c9:0a:36:e8:70:00:13:64:17:dd:09:ce:
79:cc:f5:b9:6b:88:ca:8a:e6:78:4b:c6:72:0d:37:
be:5b:92:3e:21:d4:61:0f:71:a7:1c:49:96:90:0d:
c6:d0:1b:a7:44:a5:39:77:97:b5:94:dd:33:47:d6:
d4:d4:b5:05:91:d7:35:34:47:2f:cd:ba:98:df:73:
8d:70:f2:dd:3b:8e:8c:e9:00:ac:44:a4:bd:5e:ee:
ce:54:9e:0e:3a:77:25:88:a7:81:aa:2a:19:84:66:
17:df:1b:e9:c5:42:77:ff:2a:f6:ad:31:8b:14:80:
a5:95:ff:b4:9e:85:f3:40:9a:a9:7c:76:1f:da:9b:
b0:b1:ee:f2:61:9d:7b:fc:78:32:0f:ee:52:a2:88:
6b:fc:f2:5b:04:14:02:4c:0a:54:dc:96:91:bc:ef:
b0:bc:9f:75:93:15:56:d0:e7:a5:6b:52:11:b1:ad:
3d:c4:12:5f:6e:b5:76:3c:ad:76:a3:d4:3c:76:5a:
b9:6c:84:27:dd:90:43:10:4b:47:b7:eb:ed:57:ba:
e1:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:D7:A9:2A:8B:A2:AB:5C:80:24:3C:8E:15:B3:E7:8A:24:E7:91:C1
X509v3 Authority Key Identifier:
keyid:81:11:00:EE:46:BF:67:A8:49:5E:8D:35:63:56:96:6A:8D:2F:7E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gREA7ka_Z6hJXo01Y1aWao0vfmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d34378-7da4-4233-9522-54eb7c07aac4/1/ItepKouiq1yAJDyOFbPniiTnkcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d34378-7da4-4233-9522-54eb7c07aac4/1/gREA7ka_Z6hJXo01Y1aWao0vfmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.114.44.0/24
Signature Algorithm: sha256WithRSAEncryption
15:86:ed:5a:5e:ec:2d:f3:7f:c0:d6:e7:cf:4c:98:2e:81:fd:
15:fb:aa:e6:5d:d8:34:72:c9:9f:45:ed:05:db:9b:e0:a7:51:
a2:a8:cb:0e:f2:27:2a:94:f5:ee:fe:08:d1:b3:89:f4:f2:a3:
a1:44:80:02:61:95:ca:0e:d1:12:b4:91:8f:97:92:30:91:22:
c3:24:22:25:17:69:00:b4:c9:e7:53:2e:e6:89:82:70:a5:aa:
e8:38:2b:30:20:ee:2a:cb:c5:09:14:5f:9d:12:2b:ee:3c:ff:
66:01:a1:48:c5:57:11:01:45:0c:ae:2c:25:be:41:e0:a9:36:
12:c7:8e:82:37:67:06:13:32:3b:2b:5b:69:e2:6f:4f:0f:f9:
cf:1c:04:0b:ff:a4:2d:7b:59:df:97:5f:7f:38:42:b0:61:ab:
c7:3b:69:aa:15:b8:2b:d5:69:f4:a8:35:91:c1:62:8d:25:d3:
ce:b3:53:46:c3:cf:c3:1b:5b:92:77:5e:39:57:a4:ce:42:90:
6b:94:65:28:ba:73:55:20:8f:59:21:90:b1:64:fc:15:fe:d4:
50:a1:09:8e:24:fb:f6:96:a6:3e:04:a3:98:22:a7:49:2a:cc:
d4:d1:c7:ab:b4:53:9f:ae:10:98:e5:fe:9f:53:7a:3c:2c:16:
bd:ba:92:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:59 2024 by rpki-client on console-ams.rpki-client.org