Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/G3Zvl85dEodjSvAjZzPp2sK4bxA.roa
File: G3Zvl85dEodjSvAjZzPp2sK4bxA.roa (raw, json)
Hash identifier: b6Wj9gPwcYWmxNqA6zAHzRbtsdHYRy1EAzfGYubJqF4=
Subject key identifier: 1B:76:6F:97:CE:5D:12:87:63:4A:F0:23:67:33:E9:DA:C2:B8:6F:10
Certificate issuer: /CN=5de458f21d406466bdf68240f505eefd197ba936
Certificate serial: 3817DF9E
Authority key identifier: 5D:E4:58:F2:1D:40:64:66:BD:F6:82:40:F5:05:EE:FD:19:7B:A9:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XeRY8h1AZGa99oJA9QXu_Rl7qTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/G3Zvl85dEodjSvAjZzPp2sK4bxA.roa
Signing time: Sat 01 Jan 2022 13:00:57 +0000
ROA not before: Sat 01 Jan 2022 13:00:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16290
IP address blocks: 217.117.128.0/22 maxlen: 22
217.117.136.0/21 maxlen: 21
84.23.160.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 941088670 (0x3817df9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5de458f21d406466bdf68240f505eefd197ba936
Validity
Not Before: Jan 1 13:00:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b766f97ce5d1287634af0236733e9dac2b86f10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:65:61:92:84:71:4f:f1:32:95:f6:de:be:9c:
d7:42:da:84:01:c5:69:a0:0f:65:9f:91:a1:c0:b2:
de:7c:28:a1:2c:a7:bf:fe:89:2c:09:81:0f:d7:c1:
4d:82:54:0f:ad:c3:ea:ae:17:26:06:b6:0f:05:6d:
21:16:83:18:e4:c8:99:da:65:cf:83:70:62:d4:b9:
a4:87:47:88:67:8e:c9:08:a7:a2:04:f4:85:d1:5a:
76:c9:a9:85:4b:2b:8f:fe:64:42:bd:3e:2a:75:58:
85:54:34:c9:b8:ca:d0:71:b2:21:bc:bf:ae:ff:8b:
f6:ee:22:5b:8c:31:a3:9f:8b:a9:d2:53:a6:ca:e2:
13:c2:0d:f8:23:75:ec:9d:3a:a4:8b:e1:87:61:43:
dd:a8:ea:b6:66:53:1a:9a:4c:3d:23:6a:be:8e:8c:
19:7e:9a:f8:b2:c9:57:1e:e0:d9:57:e8:70:5f:c2:
35:71:e7:e1:68:79:2f:47:64:40:e6:8b:5a:d6:6d:
71:d4:91:84:8c:c6:48:20:6f:3e:94:41:93:47:7a:
02:e6:5a:1e:ac:86:62:dc:b9:cf:9e:85:53:b6:e3:
ed:c5:a0:16:9e:7c:b5:82:66:4c:b4:51:91:7b:e5:
db:ef:e5:64:ca:b1:13:f2:eb:af:17:66:a2:6a:67:
f8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:76:6F:97:CE:5D:12:87:63:4A:F0:23:67:33:E9:DA:C2:B8:6F:10
X509v3 Authority Key Identifier:
keyid:5D:E4:58:F2:1D:40:64:66:BD:F6:82:40:F5:05:EE:FD:19:7B:A9:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XeRY8h1AZGa99oJA9QXu_Rl7qTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/G3Zvl85dEodjSvAjZzPp2sK4bxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.23.160.0/19
217.117.128.0/22
217.117.136.0/21
Signature Algorithm: sha256WithRSAEncryption
46:0e:be:b5:4c:0c:e1:6e:c9:53:76:04:38:60:54:f9:55:68:
21:44:8a:dd:6b:33:df:cc:f3:55:6b:e9:88:2e:12:71:f3:b6:
37:43:86:84:5a:9f:39:a0:57:7a:0c:db:0d:eb:7a:9f:db:bf:
be:8b:8f:1d:ce:12:85:91:f7:8b:42:be:9b:74:8b:5e:b5:5b:
f6:f0:35:6e:f5:11:3f:5b:aa:e3:57:34:b2:a5:3e:01:5f:75:
34:98:3c:21:f4:27:c3:a8:fc:aa:2f:0a:d9:13:b8:81:ae:e1:
a8:ab:66:b7:4f:ee:c3:08:f1:b1:48:40:6c:e5:12:86:d6:da:
14:2b:e7:ad:80:08:37:cd:5d:9f:18:51:c7:0c:58:d5:58:a8:
ff:e0:6a:5f:6e:94:e7:e6:20:5b:48:fd:92:cb:83:6b:90:54:
49:9e:66:14:c9:8f:c9:d7:90:6d:6c:9f:4a:af:71:ec:6d:3d:
48:db:e4:05:d6:ae:de:22:18:de:3b:51:04:0a:17:cb:31:ce:
64:d4:af:90:31:6c:76:9a:05:22:f8:2e:e8:09:e8:c9:1d:76:
d5:1a:c3:86:d4:b7:3c:15:f4:b7:f2:a7:fb:68:b2:74:8c:c3:
98:09:42:6f:50:2f:b1:69:d0:fd:dd:a6:5a:cb:32:d3:67:9e:
bd:61:8f:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:50 2024 by rpki-client on console-fra.rpki-client.org