Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/o8fCQAhtdSiywcdJAXePfHi7Xq4.roa
File: o8fCQAhtdSiywcdJAXePfHi7Xq4.roa (raw, json)
Hash identifier: 8HYiIBQnNz3B7AAs9HmFRUhgcwv0nIffP8zIMW9O3Bw=
Subject key identifier: A3:C7:C2:40:08:6D:75:28:B2:C1:C7:49:01:77:8F:7C:78:BB:5E:AE
Certificate issuer: /CN=9cce3b1197d0cf9511540572a58fd372dcc07489
Certificate serial: 02C38A6D
Authority key identifier: 9C:CE:3B:11:97:D0:CF:95:11:54:05:72:A5:8F:D3:72:DC:C0:74:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nM47EZfQz5URVAVypY_TctzAdIk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/o8fCQAhtdSiywcdJAXePfHi7Xq4.roa
Signing time: Mon 14 Mar 2022 13:02:26 +0000
ROA not before: Mon 14 Mar 2022 13:02:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201942
IP address blocks: 217.67.172.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46369389 (0x2c38a6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cce3b1197d0cf9511540572a58fd372dcc07489
Validity
Not Before: Mar 14 13:02:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3c7c240086d7528b2c1c74901778f7c78bb5eae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:19:33:71:e0:09:0b:b8:e2:49:cd:e8:97:16:
59:3b:fe:f9:1d:d6:2e:6c:b0:26:6e:90:8a:14:68:
5d:e1:71:5d:4f:b4:f6:41:66:9e:09:9b:31:64:25:
24:96:6f:1a:68:23:db:61:18:39:ae:be:ec:0e:09:
54:cd:c9:4c:b5:e7:5b:71:b1:e6:1e:e8:e2:a3:31:
a2:13:f8:bb:41:01:fb:42:00:2b:73:bf:ed:f3:94:
6d:ad:0b:0f:06:25:ae:64:d1:95:cc:c5:04:83:fe:
14:11:b8:fd:78:e0:91:43:31:1d:33:f2:e6:80:e2:
91:94:d0:e6:03:13:43:07:56:84:c1:02:cc:02:52:
3f:ef:a1:a2:41:33:eb:3d:65:09:83:a1:1f:a5:70:
f6:31:48:0c:c5:f3:10:74:a9:ff:bf:5d:1d:5d:f5:
7a:4f:59:8d:b9:e4:05:2a:57:d3:00:20:a5:ff:60:
3c:02:fc:a3:a9:4c:86:08:fd:60:68:da:6d:73:a3:
15:c8:82:8a:2d:0b:85:ad:b8:ad:ba:b8:5c:ce:a9:
d8:db:36:20:7d:00:61:e1:c7:c1:5c:b0:32:a9:88:
ac:37:fb:76:e8:70:9c:55:da:f6:60:0c:10:95:a5:
30:27:c0:df:ca:1a:58:e4:5b:e9:8a:e9:74:12:09:
cf:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:C7:C2:40:08:6D:75:28:B2:C1:C7:49:01:77:8F:7C:78:BB:5E:AE
X509v3 Authority Key Identifier:
keyid:9C:CE:3B:11:97:D0:CF:95:11:54:05:72:A5:8F:D3:72:DC:C0:74:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nM47EZfQz5URVAVypY_TctzAdIk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/o8fCQAhtdSiywcdJAXePfHi7Xq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/nM47EZfQz5URVAVypY_TctzAdIk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.67.172.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:20:4f:28:fc:15:55:0e:76:65:da:75:56:53:88:46:38:50:
83:7e:d7:5c:ab:90:e0:13:e0:97:ec:8c:14:49:ca:ad:31:88:
fe:2e:d2:1b:c9:9b:58:c5:1a:23:f9:51:70:2a:58:45:54:b4:
bd:9e:49:a5:23:09:5c:da:9a:76:b7:9a:94:21:92:d9:53:ba:
e3:2a:c0:04:8c:9c:42:d9:52:6b:9e:01:17:1f:f1:b8:7e:6e:
e7:e6:f9:f5:8c:66:44:bd:c4:ec:8a:16:45:f2:ca:53:9a:da:
e0:50:16:b2:3c:5d:32:5b:ff:85:af:54:2b:1a:f0:cf:46:c2:
6a:34:e6:04:eb:75:80:6d:c3:11:ac:4d:b2:8e:8d:90:18:b4:
d1:a9:cb:b3:2c:5b:40:f6:e5:40:47:0d:2b:04:b3:1a:de:6c:
f4:78:4f:38:c8:4b:2f:6c:33:89:52:ac:77:be:a2:20:35:ec:
5e:e3:56:5c:79:60:59:a3:ef:16:00:f3:70:38:bc:4f:9e:3c:
d7:14:73:68:f6:c2:1f:f4:b8:85:63:0b:f6:b0:45:18:ca:0e:
18:84:fb:ca:6a:0b:91:40:fe:28:e2:4a:03:38:0c:41:9f:75:
8f:96:66:29:35:1a:a2:15:75:12:b6:5b:bc:f1:7b:8c:c8:86:
85:80:bc:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:05 2024 by rpki-client on console-fra.rpki-client.org