Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/a7ce7a-8443-46eb-8cba-3bb4d6200518/1/i1QjhmirefADe8Q0_4TMyW8R4Ug.roa
File: i1QjhmirefADe8Q0_4TMyW8R4Ug.roa (raw, json)
Hash identifier: KWpjyiZvEqVfxSeIxJpTUb/mlqsouJ5ac3kIgVt6ON0=
Subject key identifier: 8B:54:23:86:68:AB:79:F0:03:7B:C4:34:FF:84:CC:C9:6F:11:E1:48
Certificate issuer: /CN=0232a4bfb7796405a556b759f1d193e4c4d37129
Certificate serial: 11DD117D
Authority key identifier: 02:32:A4:BF:B7:79:64:05:A5:56:B7:59:F1:D1:93:E4:C4:D3:71:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AjKkv7d5ZAWlVrdZ8dGT5MTTcSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/a7ce7a-8443-46eb-8cba-3bb4d6200518/1/i1QjhmirefADe8Q0_4TMyW8R4Ug.roa
Signing time: Sat 01 Jan 2022 09:59:19 +0000
ROA not before: Sat 01 Jan 2022 09:59:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205111
IP address blocks: 217.163.72.0/24 maxlen: 24
213.244.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 299700605 (0x11dd117d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0232a4bfb7796405a556b759f1d193e4c4d37129
Validity
Not Before: Jan 1 09:59:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b54238668ab79f0037bc434ff84ccc96f11e148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d2:d4:c1:05:bd:34:e0:65:74:16:5f:2d:92:
35:8c:4f:5d:87:9b:47:fa:71:1f:ce:75:f3:f0:f5:
1f:ac:28:23:d9:5a:62:03:fa:18:59:77:b6:17:a1:
88:df:58:fe:ad:00:55:06:7c:f4:25:4a:48:6e:6f:
b7:e1:d6:f0:8b:33:c5:75:52:d7:64:2a:ea:e5:5d:
11:59:37:aa:94:6f:24:95:1b:2f:75:36:1c:d4:ff:
dc:8e:a7:5b:59:1d:ad:cb:59:e6:8b:8f:f3:7d:56:
48:f0:3b:6f:42:89:5f:a5:13:22:e5:90:1f:93:35:
d7:b4:26:03:8f:81:49:40:8a:28:af:54:e0:12:d1:
14:7b:b2:ea:42:d2:29:9f:a7:44:f0:0d:ba:c2:17:
07:df:00:db:19:1f:5d:49:6a:02:2a:28:97:e8:54:
c6:08:aa:02:e4:5e:ba:16:b3:96:33:e8:6d:9f:c8:
0f:1f:04:03:fc:22:89:5e:b3:c8:24:bb:a5:37:4b:
f6:16:14:c3:98:c1:84:3d:43:32:60:c0:ba:54:ee:
52:39:1b:c8:ca:54:ec:bd:64:cb:af:16:53:34:0d:
c9:9e:82:0d:d5:f4:59:bd:c7:41:93:24:e5:5f:14:
f1:b4:73:63:b8:b2:68:c6:24:82:26:b7:59:3d:12:
82:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:54:23:86:68:AB:79:F0:03:7B:C4:34:FF:84:CC:C9:6F:11:E1:48
X509v3 Authority Key Identifier:
keyid:02:32:A4:BF:B7:79:64:05:A5:56:B7:59:F1:D1:93:E4:C4:D3:71:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AjKkv7d5ZAWlVrdZ8dGT5MTTcSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/a7ce7a-8443-46eb-8cba-3bb4d6200518/1/i1QjhmirefADe8Q0_4TMyW8R4Ug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/a7ce7a-8443-46eb-8cba-3bb4d6200518/1/AjKkv7d5ZAWlVrdZ8dGT5MTTcSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.244.146.0/24
217.163.72.0/24
Signature Algorithm: sha256WithRSAEncryption
77:5d:12:52:55:1a:66:7c:c3:6a:bb:11:20:d9:45:d6:2c:54:
5a:1a:03:59:97:52:a4:45:0b:85:c5:9f:35:a4:d8:13:5d:c1:
9a:7f:69:a3:5c:3d:ec:ae:96:2e:48:88:13:e8:13:ef:35:31:
7a:ae:42:1d:64:be:be:fb:99:de:9e:96:62:7b:02:72:9d:50:
5f:5e:50:7c:4a:92:6a:89:78:a4:1c:c6:58:c8:a2:93:3c:d6:
c3:af:c9:4c:4c:68:d1:e0:cd:23:a7:9c:b9:3d:39:69:27:81:
e8:4e:fe:13:42:7c:18:14:7e:39:dc:02:74:57:c2:98:6a:91:
e0:70:83:c0:1a:d6:9e:b8:8c:56:c5:81:df:42:1d:b6:a0:cb:
83:9a:29:dd:a7:e5:65:ff:b7:ee:81:04:fa:0f:dc:f1:42:c0:
4b:d6:d6:ea:23:c7:b3:ba:55:fa:5c:05:30:91:89:04:bc:f9:
f1:5d:2c:ec:8b:cb:37:6b:e7:8c:a1:37:4e:b6:bb:61:ff:c9:
51:8f:08:d7:49:57:a0:34:d3:2c:d3:4a:3e:f7:1f:6e:64:03:
45:60:4c:9b:be:81:79:36:1d:4b:b7:15:fe:6c:08:08:13:ac:
07:a3:e6:29:c8:be:eb:f7:02:b7:1f:b4:73:44:6b:12:84:26:
42:e4:d8:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:42 2023 by rpki-client on console-fra.rpki-client.org