Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/ngYwcdtuzKj4MuYLsaSfXY6sFUo.roa
File: ngYwcdtuzKj4MuYLsaSfXY6sFUo.roa (raw, json)
Hash identifier: uh8Yg5l0aseItqJ0/L72n4vnLQ7rQU45S3U/hDNHakM=
Subject key identifier: 9E:06:30:71:DB:6E:CC:A8:F8:32:E6:0B:B1:A4:9F:5D:8E:AC:15:4A
Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Certificate serial: 13707473
Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/ngYwcdtuzKj4MuYLsaSfXY6sFUo.roa
Signing time: Sat 01 Jan 2022 05:58:26 +0000
ROA not before: Sat 01 Jan 2022 05:58:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200005
IP address blocks: 217.112.151.0/24 maxlen: 24
217.112.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 326136947 (0x13707473)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Validity
Not Before: Jan 1 05:58:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e063071db6ecca8f832e60bb1a49f5d8eac154a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:41:ed:2c:b2:9f:d6:ca:a6:22:05:60:ee:0c:
d5:8d:5c:49:6a:61:7c:ed:90:1c:7e:c1:ab:97:af:
b2:1f:6a:6f:3a:e2:7b:57:78:4b:f1:d8:f0:f3:67:
8d:f9:4f:06:10:b5:86:26:36:02:9a:e6:41:d5:e4:
2c:c6:c5:37:a1:f8:11:50:6b:e2:0a:37:57:db:1a:
a1:75:c1:57:c5:c8:df:ce:43:30:00:c0:4a:d8:c6:
1c:05:36:ef:6a:d7:db:db:2d:f4:4d:1e:bd:81:17:
0f:b9:d6:3b:c6:d6:d1:45:f8:00:aa:11:36:92:39:
ae:99:2d:5d:20:b4:a5:38:3a:ed:6a:00:0e:ea:98:
cd:05:36:a4:ae:13:8f:35:cd:4a:8c:cc:99:51:0a:
0c:93:57:54:a2:7e:dc:c9:a7:7d:50:38:26:30:41:
eb:ff:77:16:4b:9a:94:0b:1e:9d:85:f1:a1:79:55:
78:78:53:a2:ee:b6:cd:f0:41:35:86:4f:2e:3e:4e:
2a:d5:d6:1a:87:c1:39:8f:38:da:9c:01:f0:f9:51:
09:3a:c2:47:47:fc:8f:86:89:b8:41:02:4b:e5:83:
ca:27:9e:0e:1e:bb:8d:85:94:e6:50:2b:a5:e0:02:
57:b7:56:24:f6:6b:a4:58:f5:ff:52:12:c9:aa:dd:
22:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:06:30:71:DB:6E:CC:A8:F8:32:E6:0B:B1:A4:9F:5D:8E:AC:15:4A
X509v3 Authority Key Identifier:
keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/ngYwcdtuzKj4MuYLsaSfXY6sFUo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.112.151.0/24
217.112.158.0/24
Signature Algorithm: sha256WithRSAEncryption
05:97:3a:1e:ed:64:ac:a0:d1:76:2f:30:e6:99:5b:66:05:2b:
37:c6:3d:29:6b:e4:07:88:e6:5e:b6:d7:c1:b1:d0:dd:6e:7f:
8b:ac:89:f4:1a:33:9e:5a:0e:2b:f7:8b:15:ca:3e:2b:64:1b:
cd:c6:88:9e:f0:e2:69:5e:d4:eb:39:6d:e3:20:65:06:e3:f7:
61:bd:e3:e7:6d:e9:92:f3:92:fa:a8:03:19:38:62:f3:a0:45:
9a:bc:95:f0:5c:2f:c7:4d:25:73:30:db:80:f3:14:e7:45:a3:
82:c7:39:84:2e:91:49:c0:d3:13:8b:4f:4f:80:d5:a7:dd:03:
25:4f:a5:ee:20:51:09:d8:41:4d:16:52:1e:28:21:e8:60:7e:
8b:f5:29:65:26:de:06:d6:a7:52:b2:4d:7c:f7:34:97:6f:68:
96:58:88:10:95:ff:bb:d1:21:b0:f9:83:5a:a5:26:2a:48:2b:
07:a6:bf:ac:b0:99:81:33:6b:09:8d:73:63:66:f9:1a:71:08:
20:0d:e9:59:11:08:62:9c:39:c3:fb:57:bb:01:75:5d:93:21:
6c:68:4e:67:4e:9a:58:54:e3:fb:99:95:4a:fe:b4:7f:27:84:
ce:61:b4:79:92:17:be:4e:b9:59:53:f9:3f:5a:36:f8:04:03:
90:c8:fb:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:06 2024 by rpki-client on console-fra.rpki-client.org