Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/a7ce7a-8443-46eb-8cba-3bb4d6200518/1/l0d8O7TQMIrC95UbWHLNNR2OflA.roa
File: l0d8O7TQMIrC95UbWHLNNR2OflA.roa (raw, json)
Hash identifier: avX/SWbiI/vt19baIsqBiM/FTQ427HWBNg9BTtzsy+c=
Subject key identifier: 97:47:7C:3B:B4:D0:30:8A:C2:F7:95:1B:58:72:CD:35:1D:8E:7E:50
Certificate issuer: /CN=0232a4bfb7796405a556b759f1d193e4c4d37129
Certificate serial: 1258194A
Authority key identifier: 02:32:A4:BF:B7:79:64:05:A5:56:B7:59:F1:D1:93:E4:C4:D3:71:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AjKkv7d5ZAWlVrdZ8dGT5MTTcSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/a7ce7a-8443-46eb-8cba-3bb4d6200518/1/l0d8O7TQMIrC95UbWHLNNR2OflA.roa
Signing time: Thu 24 Feb 2022 18:24:06 +0000
ROA not before: Thu 24 Feb 2022 18:24:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399734
IP address blocks: 217.163.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 307763530 (0x1258194a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0232a4bfb7796405a556b759f1d193e4c4d37129
Validity
Not Before: Feb 24 18:24:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97477c3bb4d0308ac2f7951b5872cd351d8e7e50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9b:a2:36:ce:30:38:f0:de:53:38:cd:c5:46:
65:ec:e8:22:09:47:57:0a:ca:73:80:36:70:df:bb:
fa:92:6b:33:ec:08:ce:36:73:a7:fc:c2:ca:3e:87:
6f:57:66:5e:ad:e9:75:57:ba:6d:17:c6:8b:74:26:
66:a8:e7:43:c6:5d:69:fa:f6:13:ca:69:3b:2e:85:
4b:af:a6:cb:7b:8e:1a:fb:f4:0b:96:f2:2d:e8:c2:
24:ab:96:7a:35:f5:23:83:3a:58:19:7e:63:51:b9:
c7:57:42:71:00:55:cd:c9:e5:6a:bc:d5:6b:00:c2:
c4:32:e8:00:fd:2c:cd:5f:a4:c0:dc:8c:3b:f2:f9:
df:81:38:57:5f:16:83:13:de:34:22:41:83:48:1f:
82:a5:2c:e6:3c:0e:c3:ed:b6:27:72:49:1a:6d:85:
d1:1c:3c:9a:6b:de:98:0b:87:b7:90:2c:31:17:1a:
4b:04:a8:f0:af:f6:48:62:f0:a6:bb:d4:83:69:d7:
bc:ca:31:de:de:cd:f5:a9:bf:5f:bf:65:52:44:dc:
0c:ec:14:7b:c2:c3:b1:e6:64:1c:38:b5:c2:41:15:
0f:95:3d:9f:f3:7f:9e:a8:05:b6:ad:cc:a4:21:03:
a3:6b:43:d0:d9:44:44:8d:21:93:d2:e6:cd:38:cf:
0c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:47:7C:3B:B4:D0:30:8A:C2:F7:95:1B:58:72:CD:35:1D:8E:7E:50
X509v3 Authority Key Identifier:
keyid:02:32:A4:BF:B7:79:64:05:A5:56:B7:59:F1:D1:93:E4:C4:D3:71:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AjKkv7d5ZAWlVrdZ8dGT5MTTcSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/a7ce7a-8443-46eb-8cba-3bb4d6200518/1/l0d8O7TQMIrC95UbWHLNNR2OflA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/a7ce7a-8443-46eb-8cba-3bb4d6200518/1/AjKkv7d5ZAWlVrdZ8dGT5MTTcSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.163.118.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:87:12:aa:60:76:33:30:9b:d6:c6:be:a9:b6:9e:b7:41:ff:
3e:06:8a:62:4c:73:01:6f:a7:76:66:f1:c5:f2:c4:43:f8:ff:
7e:0d:4c:18:53:9f:f8:fb:90:bb:48:1f:05:4a:28:73:cc:65:
bc:f4:65:59:31:4b:ec:1e:45:88:1d:44:f2:c9:55:6e:c7:e1:
f9:43:06:9f:0a:07:80:65:f1:6c:88:16:ac:f3:05:25:45:32:
da:4a:0f:61:68:b7:ac:a8:7c:ab:57:ef:e5:d9:a7:fc:c1:18:
73:8f:25:51:b9:04:b3:8b:46:87:74:34:02:6f:45:81:9b:fb:
4e:8f:b1:29:ed:4f:32:02:a5:37:9c:de:86:f3:f4:cf:60:4a:
95:71:90:57:84:46:55:bc:9e:87:bf:ff:5d:82:4c:8b:4f:f5:
5f:85:67:dd:6f:fa:26:f7:cb:77:c1:dc:fe:d2:78:ef:76:0e:
4f:11:27:8d:b2:2b:d0:11:15:a0:d2:25:f5:7a:43:aa:12:52:
4f:e4:21:ac:5a:5e:c9:e5:d2:80:18:4c:3a:9e:78:37:80:e3:
59:e6:91:ac:d5:72:6a:c6:0b:9b:a5:c9:16:25:7a:b1:f2:c4:
2a:87:7e:b0:69:45:6a:26:6d:f6:6b:a0:a3:f9:35:fe:3e:4e:
8c:ac:ce:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:42 2023 by rpki-client on console-fra.rpki-client.org