Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/2451b7-9091-4a27-ab91-348f9ffbd883/1/tcSf13eTSOAMvs2sEizbfZJpFy4.roa
File: tcSf13eTSOAMvs2sEizbfZJpFy4.roa (raw, json)
Hash identifier: XlEkCFsbtfOYd9sdgtJaJCl+/jTrgprUrjpIpdVzSmw=
Subject key identifier: B5:C4:9F:D7:77:93:48:E0:0C:BE:CD:AC:12:2C:DB:7D:92:69:17:2E
Certificate issuer: /CN=a1b0477f9d09a2c74f4c459e80b729afeeb312d4
Certificate serial: 0182AB43B6136D521D4ABEC2C01D59A98821
Authority key identifier: A1:B0:47:7F:9D:09:A2:C7:4F:4C:45:9E:80:B7:29:AF:EE:B3:12:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obBHf50JosdPTEWegLcpr-6zEtQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/2451b7-9091-4a27-ab91-348f9ffbd883/1/tcSf13eTSOAMvs2sEizbfZJpFy4.roa
Signing time: Wed 17 Aug 2022 10:05:17 +0000
ROA not before: Wed 17 Aug 2022 10:05:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205257
IP address blocks: 178.17.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ab:43:b6:13:6d:52:1d:4a:be:c2:c0:1d:59:a9:88:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1b0477f9d09a2c74f4c459e80b729afeeb312d4
Validity
Not Before: Aug 17 10:05:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5c49fd7779348e00cbecdac122cdb7d9269172e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:9c:6a:d3:40:29:cf:ea:4d:14:86:26:7f:08:
d3:7f:0b:dc:6d:04:02:69:3f:17:64:04:d2:67:6c:
6f:3d:9b:f9:81:d3:5e:64:77:91:65:f0:81:00:48:
2c:ff:25:fe:e1:41:a6:cb:b9:48:63:c2:65:99:b3:
3d:08:d4:68:29:aa:2e:37:5d:96:7e:1c:3c:91:1f:
f3:43:bb:f7:7f:06:85:dd:bc:d6:d6:87:df:ef:d6:
47:a8:d3:d0:df:48:7c:5d:48:cc:df:23:89:ae:c6:
97:dd:b2:3f:6f:07:6c:a5:91:c1:7f:26:9b:69:de:
74:f1:74:90:09:6d:ba:6d:a4:73:ef:00:fd:70:a3:
7b:c6:bb:b9:99:91:08:ff:6e:dc:d8:fb:9f:1c:e2:
7a:2a:99:58:e3:b3:a4:86:ce:59:e9:d8:a5:12:4e:
8e:d7:ff:31:e6:19:58:57:9a:70:7f:e1:f5:a0:9f:
11:db:1d:97:9d:03:e8:eb:09:94:99:5b:ef:e3:b0:
a0:50:89:ef:9c:b8:ec:fc:66:b4:22:74:bd:4d:9b:
81:c0:19:d3:f5:66:af:ff:7b:6f:c7:6c:7d:11:27:
a6:d3:ba:bf:5b:20:3a:81:5d:20:a6:f4:d2:ff:9d:
3f:29:c9:89:1e:ba:b5:76:9e:98:3a:a0:63:a1:15:
2d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:C4:9F:D7:77:93:48:E0:0C:BE:CD:AC:12:2C:DB:7D:92:69:17:2E
X509v3 Authority Key Identifier:
keyid:A1:B0:47:7F:9D:09:A2:C7:4F:4C:45:9E:80:B7:29:AF:EE:B3:12:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obBHf50JosdPTEWegLcpr-6zEtQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/2451b7-9091-4a27-ab91-348f9ffbd883/1/tcSf13eTSOAMvs2sEizbfZJpFy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/2451b7-9091-4a27-ab91-348f9ffbd883/1/obBHf50JosdPTEWegLcpr-6zEtQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.17.217.0/24
Signature Algorithm: sha256WithRSAEncryption
15:59:c5:d4:5c:69:98:09:c0:84:cc:c7:54:66:1c:9e:75:3f:
80:6b:d3:2a:05:0f:8f:d7:9c:98:83:69:d4:31:c5:7e:ca:69:
1a:4a:a4:8d:11:32:11:98:05:3b:30:bb:9e:4a:7e:e7:05:b4:
35:4e:7e:06:b9:89:fa:a7:9e:53:18:96:37:99:7c:22:28:24:
63:fa:30:5a:5d:c7:ba:f8:3e:26:56:42:90:7a:e9:5e:fc:04:
29:d3:59:eb:96:0a:87:37:78:63:46:5b:71:5e:12:60:2f:58:
bc:10:3e:7c:f5:d5:13:59:47:36:b4:7a:1f:3c:1a:bf:19:c9:
ee:09:ee:f2:61:06:75:ac:f4:47:85:56:18:f6:76:a1:4d:14:
67:d3:26:1b:18:c9:0c:38:62:5e:92:51:51:18:a8:2a:52:55:
6c:1c:1a:43:db:58:a6:42:2c:aa:a9:14:47:c0:9e:9b:c8:bb:
b2:96:24:5d:17:fc:a9:ce:12:1d:7b:b5:51:84:98:84:83:8c:
ad:85:45:ff:44:19:02:b5:2c:62:95:15:29:87:80:82:bf:d7:
a2:4e:26:9d:9c:dd:92:50:cb:84:a4:1c:8c:73:8d:54:99:8d:
fb:85:8c:9d:6b:ed:f7:65:84:96:68:f0:12:60:95:f0:99:32:
cd:b7:05:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:31 2024 by rpki-client on console-ams.rpki-client.org