Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/dNMWKpiRi87LEE63RVicBRB3BxU.roa
File: dNMWKpiRi87LEE63RVicBRB3BxU.roa (raw, json)
Hash identifier: ZHITDMq8lhCQ3aN7NLwrZSlmcM0q8GmWTjGHk3S2D7A=
Subject key identifier: 74:D3:16:2A:98:91:8B:CE:CB:10:4E:B7:45:58:9C:05:10:77:07:15
Certificate issuer: /CN=9cce3b1197d0cf9511540572a58fd372dcc07489
Certificate serial: 02DEAEA0
Authority key identifier: 9C:CE:3B:11:97:D0:CF:95:11:54:05:72:A5:8F:D3:72:DC:C0:74:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nM47EZfQz5URVAVypY_TctzAdIk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/dNMWKpiRi87LEE63RVicBRB3BxU.roa
Signing time: Thu 24 Mar 2022 12:56:23 +0000
ROA not before: Thu 24 Mar 2022 12:56:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210876
IP address blocks: 217.67.161.0/24 maxlen: 24
217.67.162.0/23 maxlen: 24
217.67.166.0/23 maxlen: 23
217.67.168.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48148128 (0x2deaea0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cce3b1197d0cf9511540572a58fd372dcc07489
Validity
Not Before: Mar 24 12:56:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74d3162a98918bcecb104eb745589c0510770715
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:14:da:36:23:9f:68:3a:39:6f:04:7b:d1:4f:
13:e4:1b:41:b2:72:3d:36:27:52:30:6e:92:6d:93:
7d:4a:39:9a:5b:c7:76:99:0a:96:07:49:6e:ff:77:
e8:27:fa:b9:de:d6:fc:67:ac:58:95:b2:5e:ae:82:
1d:af:a1:b1:6b:0c:19:70:fa:bb:84:ad:5d:5e:93:
7b:2a:2b:b4:f8:e2:fb:c6:74:54:8d:e6:a3:7d:3f:
d3:2d:e5:3a:af:48:9d:96:b2:b7:d2:80:93:dc:19:
1c:bf:fc:e1:2a:72:bd:8d:03:fc:40:24:38:23:fa:
91:85:21:34:aa:d6:27:aa:5d:d9:d9:b7:6a:08:13:
ba:aa:6f:9c:78:e4:0e:2c:e9:de:6d:37:b4:c8:ad:
29:e4:d9:52:a2:f4:6f:cb:98:c9:99:d9:78:a0:9f:
b9:f8:cc:ad:8d:d7:01:6a:a6:f7:e3:f2:da:42:42:
37:b1:3d:66:95:4c:68:71:5f:16:39:31:06:01:e7:
83:60:dc:0a:be:8f:e1:98:8d:bd:36:12:fa:57:2d:
3d:f9:93:16:8f:85:43:c7:0d:d3:34:34:aa:a1:4e:
12:b1:6d:02:71:71:05:73:9b:96:d2:fa:f2:8e:1d:
05:2a:cb:d2:00:6c:7e:2b:da:ca:ac:52:69:17:f7:
64:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:D3:16:2A:98:91:8B:CE:CB:10:4E:B7:45:58:9C:05:10:77:07:15
X509v3 Authority Key Identifier:
keyid:9C:CE:3B:11:97:D0:CF:95:11:54:05:72:A5:8F:D3:72:DC:C0:74:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nM47EZfQz5URVAVypY_TctzAdIk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/dNMWKpiRi87LEE63RVicBRB3BxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/nM47EZfQz5URVAVypY_TctzAdIk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.67.161.0-217.67.163.255
217.67.166.0-217.67.171.255
Signature Algorithm: sha256WithRSAEncryption
61:51:83:4c:2f:4d:f1:d0:32:b6:ff:6d:fa:75:0e:ef:26:41:
05:be:e8:99:e5:12:ee:aa:82:4a:f2:2e:aa:ef:0a:56:07:8a:
77:5d:c2:5c:d1:12:96:5c:89:01:53:50:ff:a1:a2:e6:27:45:
48:90:8c:ef:17:0a:1d:48:05:e9:f9:f1:ca:56:43:d9:df:ef:
d8:b0:05:f8:93:a0:62:2e:5f:e6:98:59:e4:78:24:1f:31:d5:
06:ff:53:26:eb:61:0f:26:ed:e5:21:f6:78:13:c5:f5:37:0f:
c9:6f:f4:61:f4:e8:71:29:42:26:33:8b:b0:05:89:46:d8:92:
18:04:d9:e3:b5:5f:3e:b9:5b:74:a9:ca:d9:f0:76:b1:c2:72:
4c:7d:24:fa:c1:54:4e:69:74:4d:7f:25:c0:50:81:7e:49:f6:
99:c6:c7:38:ba:aa:72:fa:f6:d2:2d:d1:c3:56:d7:49:39:df:
ec:c1:3f:6e:8a:24:c0:14:f8:bd:cb:42:51:ba:cd:27:55:d0:
03:26:6d:33:95:d2:10:98:2e:61:ac:9f:a7:dd:68:bc:45:a3:
56:a6:83:ab:70:67:23:81:b6:25:79:59:a9:d4:81:35:c3:c2:
b3:25:1a:3a:1e:e8:46:14:a9:0c:d9:6f:67:7d:d2:9b:22:a0:
11:dc:01:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:58 2023 by rpki-client on console-fra.rpki-client.org