Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/9oX4zaOeAEqm3ihmypYfcT1Uapc.roa
File: 9oX4zaOeAEqm3ihmypYfcT1Uapc.roa (raw, json)
Hash identifier: W7NAkIGJd3JuHPeKVKr9lGO0Rjx+9N4W82H7FXCBoVA=
Subject key identifier: F6:85:F8:CD:A3:9E:00:4A:A6:DE:28:66:CA:96:1F:71:3D:54:6A:97
Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Certificate serial: 136EA486
Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/9oX4zaOeAEqm3ihmypYfcT1Uapc.roa
Signing time: Sat 01 Jan 2022 05:58:25 +0000
ROA not before: Sat 01 Jan 2022 05:58:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61054
IP address blocks: 217.112.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 326018182 (0x136ea486)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Validity
Not Before: Jan 1 05:58:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f685f8cda39e004aa6de2866ca961f713d546a97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c5:30:af:08:d3:62:9d:79:e7:8e:87:05:b8:
60:9e:db:9a:e9:0e:19:77:ba:77:a2:5a:96:79:92:
89:d7:e4:3c:e1:94:6b:0a:de:da:96:af:9f:30:50:
9b:64:d4:e3:6d:ec:61:a7:e0:3e:5c:8d:bf:69:0d:
cc:98:b6:66:66:5d:af:7f:92:21:10:fb:3d:b2:53:
81:ab:59:10:b3:d6:73:b0:23:2f:d3:98:bd:b0:c1:
22:a2:a9:32:52:de:ff:58:48:88:39:f4:f5:09:1d:
37:1b:d4:ea:32:80:f6:6b:72:b9:24:dc:7f:b8:81:
31:42:fc:67:92:76:31:4c:c1:27:cd:7c:06:d8:41:
16:d6:cd:18:36:b2:07:a0:1d:df:20:ed:b5:32:80:
41:13:93:03:8a:4e:92:19:ec:63:93:80:d2:a0:c9:
9f:b5:e5:cc:6c:40:3b:4d:a6:9e:53:7e:03:a6:02:
a2:38:ef:cf:25:f3:b5:54:a8:78:31:c2:ce:42:42:
69:7a:17:f3:c8:ba:ce:d5:b5:3b:9d:34:61:8b:7f:
cf:c1:e6:0a:47:fd:e2:66:c8:1f:37:b3:40:21:e2:
9a:c1:a9:c0:a3:50:e0:c4:82:a2:d8:fd:d3:52:3e:
40:1a:74:1e:91:13:47:41:63:d1:5f:89:6f:01:94:
9f:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:85:F8:CD:A3:9E:00:4A:A6:DE:28:66:CA:96:1F:71:3D:54:6A:97
X509v3 Authority Key Identifier:
keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/9oX4zaOeAEqm3ihmypYfcT1Uapc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.112.150.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:c5:e5:a1:c9:0a:f2:cd:dd:63:c1:7d:22:a9:f2:67:82:0e:
51:65:eb:e7:aa:c0:9d:f4:91:c7:fe:01:73:9b:fe:68:34:90:
e6:72:c2:57:4b:83:b8:eb:6e:d1:89:66:cf:de:79:b6:d7:f7:
0b:b1:f3:11:df:7e:67:f6:ad:df:86:59:2e:3d:a8:4d:61:4c:
a6:5e:27:dc:aa:e4:f2:ce:ea:08:6d:cb:8e:f4:6e:27:71:53:
33:ef:aa:f7:87:57:60:51:ac:61:8c:86:a4:d3:f5:2c:b2:e6:
79:29:97:16:54:b0:2b:ab:d6:08:c4:8e:3a:bb:21:c2:05:a9:
bd:76:93:b8:80:24:9c:4c:6e:d4:66:90:01:4b:54:15:e8:17:
46:35:92:da:8b:3e:fc:34:c6:73:9b:3d:9a:10:9d:f6:8a:1c:
7b:b6:56:4a:d1:f5:44:a2:fe:e1:be:84:1b:6d:49:fe:2a:3e:
0b:9d:1c:14:69:ae:c1:47:58:40:db:3b:5a:37:35:07:70:83:
ca:50:2e:64:1d:1e:91:a6:bf:c3:8e:6d:aa:3b:df:18:03:74:
d2:f5:ab:56:a1:0e:b5:ce:a2:d4:4a:ae:9f:68:fd:68:98:84:
7b:d2:67:a7:6d:eb:87:91:7d:52:be:29:c0:d4:3d:91:d3:d6:
5b:d3:68:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:38 2023 by rpki-client on console-fra.rpki-client.org