Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/1b1ca0-bbf2-4419-8a0c-50cbcb5b19c2/1/xAQG7l9kg_jRRZfyf-Bc32qbNLQ.roa
File: xAQG7l9kg_jRRZfyf-Bc32qbNLQ.roa (raw, json)
Hash identifier: 3AHNWldcwgDrD4RwgqJ/xoog/YQetyVadnPAk4uy6lU=
Subject key identifier: C4:04:06:EE:5F:64:83:F8:D1:45:97:F2:7F:E0:5C:DF:6A:9B:34:B4
Certificate issuer: /CN=ab1c800aa1b78a17a43e19fd9938355d0411e94a
Certificate serial: 0368D4
Authority key identifier: AB:1C:80:0A:A1:B7:8A:17:A4:3E:19:FD:99:38:35:5D:04:11:E9:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qxyACqG3ihekPhn9mTg1XQQR6Uo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/1b1ca0-bbf2-4419-8a0c-50cbcb5b19c2/1/xAQG7l9kg_jRRZfyf-Bc32qbNLQ.roa
Signing time: Wed 11 May 2022 14:00:08 +0000
ROA not before: Wed 11 May 2022 14:00:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202177
IP address blocks: 217.173.202.0/24 maxlen: 24
217.173.203.0/24 maxlen: 24
217.173.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 223444 (0x368d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab1c800aa1b78a17a43e19fd9938355d0411e94a
Validity
Not Before: May 11 14:00:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c40406ee5f6483f8d14597f27fe05cdf6a9b34b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b9:1a:77:88:e9:dc:4a:73:1b:5d:82:49:0c:
9f:49:68:ae:23:94:6d:62:2a:46:c6:3e:14:9c:22:
10:22:65:64:74:48:1a:9c:10:f7:b2:0f:fa:13:78:
6f:85:98:66:4c:6d:6c:18:cd:dc:ba:a2:8f:b7:d2:
f8:9a:6d:5e:60:31:6b:2c:cb:91:7e:58:80:6b:56:
19:5b:b9:17:fd:07:29:da:f2:1f:ce:f9:02:07:80:
c0:92:32:5f:bc:f9:67:39:0e:d1:89:f1:ba:4c:de:
18:65:95:f1:e4:b5:67:af:12:c9:fb:fc:41:ba:1a:
1b:b6:b0:7a:cd:8a:6f:33:af:93:b2:53:1c:e8:9d:
69:85:19:8b:51:bc:0e:29:f4:0c:fc:df:1e:b5:14:
0c:17:65:c7:1a:eb:a6:b8:f4:9e:7c:24:bc:9e:a6:
8e:bd:d6:01:43:57:1a:f2:e1:dd:bb:da:e0:2b:ce:
8d:e1:1c:d4:db:10:84:7f:82:06:5a:d1:59:26:24:
8f:bb:57:eb:3d:3c:dd:2e:43:a6:a8:0c:db:c4:54:
fd:76:98:77:bf:74:a8:f4:e7:45:1b:cc:fa:8b:5d:
d7:c6:b8:00:49:52:e2:5d:f1:f5:db:57:34:ce:4f:
09:8e:90:8f:08:c9:5f:8e:90:96:ef:57:21:03:e7:
44:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:04:06:EE:5F:64:83:F8:D1:45:97:F2:7F:E0:5C:DF:6A:9B:34:B4
X509v3 Authority Key Identifier:
keyid:AB:1C:80:0A:A1:B7:8A:17:A4:3E:19:FD:99:38:35:5D:04:11:E9:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qxyACqG3ihekPhn9mTg1XQQR6Uo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1b1ca0-bbf2-4419-8a0c-50cbcb5b19c2/1/xAQG7l9kg_jRRZfyf-Bc32qbNLQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1b1ca0-bbf2-4419-8a0c-50cbcb5b19c2/1/qxyACqG3ihekPhn9mTg1XQQR6Uo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.173.202.0-217.173.204.255
Signature Algorithm: sha256WithRSAEncryption
99:6f:f1:c4:22:b5:85:aa:54:45:ea:64:77:41:1c:55:0b:a9:
ac:5b:7f:4a:52:a5:b3:2c:d0:cb:da:9e:15:9e:99:d6:cb:09:
7c:6f:86:17:86:36:fa:ee:5a:69:8c:b8:d3:d6:4e:cc:44:13:
8e:e1:69:b4:51:e0:03:5a:04:e3:8e:05:e8:31:23:65:c7:36:
a2:0a:6a:6d:46:15:55:b1:34:02:0b:17:9d:7e:0d:e4:ca:35:
b0:79:ed:53:7f:ae:f2:c7:0a:53:c7:0c:69:ca:8f:b7:5b:38:
bf:6a:c3:56:d9:ea:e8:a8:5f:81:84:25:67:1e:44:03:52:a8:
c5:f7:c2:d3:b1:0a:6c:13:6b:da:7f:ae:07:39:b5:c0:d8:32:
88:0d:69:b6:b7:a9:fa:47:ed:d6:f9:7d:7a:8b:fc:2d:f6:18:
d6:8b:25:e5:41:4c:d2:4d:2e:14:80:41:d8:93:74:eb:a5:77:
5a:12:b0:fb:f4:5f:6b:9f:ae:92:14:5f:0f:24:32:b9:4e:18:
fb:a0:cf:ae:18:44:ae:74:79:56:10:f6:76:0b:c5:91:8a:40:
ee:ea:72:8c:41:13:37:9d:a5:fc:87:2d:2a:2b:33:ee:56:5d:
93:0c:88:ca:8f:f5:ab:be:3a:d9:34:38:b1:c2:b1:97:56:96:
af:05:b0:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:24:28 2025 by rpki-client