Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/q9C5oJHU8Xmc0v_o4hFTktDXztI.roa
File: q9C5oJHU8Xmc0v_o4hFTktDXztI.roa (raw, json)
Hash identifier: SFbvRtwsTC/xOIithVvgzAIwoat911ak8rFT8nv7Q4E=
Subject key identifier: AB:D0:B9:A0:91:D4:F1:79:9C:D2:FF:E8:E2:11:53:92:D0:D7:CE:D2
Certificate issuer: /CN=9cce3b1197d0cf9511540572a58fd372dcc07489
Certificate serial: 02A878F2
Authority key identifier: 9C:CE:3B:11:97:D0:CF:95:11:54:05:72:A5:8F:D3:72:DC:C0:74:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nM47EZfQz5URVAVypY_TctzAdIk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/q9C5oJHU8Xmc0v_o4hFTktDXztI.roa
Signing time: Fri 04 Mar 2022 10:51:50 +0000
ROA not before: Fri 04 Mar 2022 10:51:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210876
IP address blocks: 217.67.161.0/24 maxlen: 24
217.67.162.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44595442 (0x2a878f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cce3b1197d0cf9511540572a58fd372dcc07489
Validity
Not Before: Mar 4 10:51:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abd0b9a091d4f1799cd2ffe8e2115392d0d7ced2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:22:b0:2c:e3:d8:0d:d3:c6:a4:c1:21:9e:d9:
0c:a9:63:4d:6a:f9:10:30:90:b7:c4:e1:ac:7a:34:
3a:b1:a6:40:fc:f5:bf:f6:56:20:c0:1e:8f:bc:b8:
60:2c:de:cf:d3:16:8a:40:76:59:d9:b2:c4:bb:a9:
55:e9:42:e3:38:c8:ae:4b:95:d6:93:63:b7:e9:c6:
7d:74:5f:ee:f0:66:f8:da:6f:52:b4:52:77:41:47:
0c:c7:ba:56:66:b7:55:54:ea:62:bd:99:a2:ff:52:
c0:a6:14:90:b4:05:b6:67:2a:8c:77:fd:41:fd:8f:
30:ab:bd:0f:8c:7e:d3:b8:75:31:58:f9:e3:a5:fd:
26:2d:96:c6:96:5c:af:59:df:7d:4f:32:56:8a:d4:
f0:38:52:c4:5f:b8:43:43:5a:64:9d:c1:46:c0:cf:
e4:f5:3f:e6:01:d4:ad:4c:64:6d:38:df:e1:80:86:
52:76:3f:32:8b:f9:92:18:53:3b:ce:18:c2:f0:34:
19:9d:6f:20:9f:12:18:72:b9:c9:39:58:31:86:f3:
9e:8e:8d:51:02:b3:06:bc:86:71:06:bb:ed:c8:17:
96:fd:90:9c:79:78:e6:a2:d6:18:0f:a3:7d:29:fe:
81:9c:71:2b:47:11:c5:a2:82:a1:74:9d:67:f3:33:
ef:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:D0:B9:A0:91:D4:F1:79:9C:D2:FF:E8:E2:11:53:92:D0:D7:CE:D2
X509v3 Authority Key Identifier:
keyid:9C:CE:3B:11:97:D0:CF:95:11:54:05:72:A5:8F:D3:72:DC:C0:74:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nM47EZfQz5URVAVypY_TctzAdIk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/q9C5oJHU8Xmc0v_o4hFTktDXztI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/nM47EZfQz5URVAVypY_TctzAdIk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.67.161.0-217.67.163.255
Signature Algorithm: sha256WithRSAEncryption
39:bd:d0:04:0e:3f:02:f8:62:3d:63:82:31:e5:24:58:84:12:
a3:9c:e7:b9:34:e6:ef:da:ee:2d:ed:a7:8e:83:68:5b:35:ef:
c6:30:6e:66:03:d9:cb:fb:15:41:28:57:b3:e3:61:0b:65:6d:
66:e4:9f:88:20:7e:d8:76:4f:d8:10:1e:8d:73:8d:db:37:1f:
38:8b:7d:d7:5d:fa:81:b2:29:13:85:73:5b:9b:5f:9e:6a:30:
7f:01:ce:4a:86:d9:cd:5c:47:47:14:3e:6b:60:7e:17:8a:4b:
3b:11:d9:1b:e2:58:be:2f:da:ab:11:a6:96:86:22:69:ab:59:
ed:a8:79:61:44:09:b9:b1:0e:92:0d:c4:a9:41:39:d8:07:a9:
b2:2b:80:b0:60:53:ea:ac:23:d8:3b:54:6a:cd:a0:5c:9f:9b:
fe:1c:53:4e:4d:80:a4:a7:4c:53:60:0c:8d:cb:ec:0a:48:b2:
e0:87:b3:54:79:fc:01:58:c4:5e:e3:f4:20:5a:73:2d:1f:b6:
08:cb:bc:ff:b8:f1:fb:31:6c:6c:e4:31:f2:bb:77:d4:b1:a5:
9a:b2:9d:38:4e:47:19:7c:a7:5f:35:76:1e:e5:70:72:b4:b3:
dd:07:4a:ef:dd:ed:89:1f:1d:18:9b:1e:f3:4e:49:05:04:db:
aa:cf:7c:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:18 2025 by rpki-client