Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/9c6507-9d7f-42c7-9d12-0e35001778a5/1/1gSYH-QVPKp4p6SsiaW0B7PTuRI.roa
File: 1gSYH-QVPKp4p6SsiaW0B7PTuRI.roa (raw, json)
Hash identifier: VC+ZDL5IckIC281Ge/LzTHUzs40ZwWNI/1GShoQhOZ0=
Subject key identifier: D6:04:98:1F:E4:15:3C:AA:78:A7:A4:AC:89:A5:B4:07:B3:D3:B9:12
Certificate issuer: /CN=cafaf6fa25b8d2acb1b44dcdd55437aba2226e9e
Certificate serial: 0651D09D
Authority key identifier: CA:FA:F6:FA:25:B8:D2:AC:B1:B4:4D:CD:D5:54:37:AB:A2:22:6E:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yvr2-iW40qyxtE3N1VQ3q6Iibp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/9c6507-9d7f-42c7-9d12-0e35001778a5/1/1gSYH-QVPKp4p6SsiaW0B7PTuRI.roa
Signing time: Sat 01 Jan 2022 14:07:35 +0000
ROA not before: Sat 01 Jan 2022 14:07:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12180
IP address blocks: 217.17.144.0/20 maxlen: 20
81.91.112.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106025117 (0x651d09d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cafaf6fa25b8d2acb1b44dcdd55437aba2226e9e
Validity
Not Before: Jan 1 14:07:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d604981fe4153caa78a7a4ac89a5b407b3d3b912
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a1:5b:d4:a3:91:93:f0:ff:d4:4e:ea:59:46:
a5:ec:eb:10:6f:1a:59:ca:5f:69:67:a6:6e:4a:de:
c2:f8:83:e1:e2:75:f7:b5:42:ed:52:c3:35:a1:e5:
36:bf:61:a8:94:91:2f:dd:7d:62:2b:7b:10:dc:8a:
63:c6:75:76:53:fd:53:d7:06:6b:cd:11:cb:9a:8c:
20:6b:29:e7:43:cb:94:16:a2:1b:f1:aa:c3:f9:a9:
81:ea:0d:ac:d9:79:0e:d9:73:15:2f:f0:a0:d6:16:
bc:2e:8b:31:af:4d:a2:ac:8f:0f:a5:c7:a0:9d:2f:
b0:6f:37:fe:df:3a:bd:d1:87:ae:35:bc:3d:8c:65:
76:db:8b:7d:aa:30:80:32:ff:bf:86:10:a6:6c:9c:
7a:3f:39:99:17:c0:a0:9e:2e:00:c7:19:c3:f0:60:
fb:e7:62:05:8b:6b:b8:72:0c:c9:38:68:78:bd:00:
d3:fd:41:d2:00:0f:7a:e6:e2:ec:a3:c3:8b:4f:f6:
09:f4:d8:dc:b1:01:6f:b6:6b:69:36:a5:b9:4c:88:
15:32:b8:82:b6:32:3e:3b:f5:4a:68:40:80:97:9c:
9e:fb:eb:54:19:c6:e0:fd:54:19:6f:22:90:7d:f3:
ec:4f:7c:3f:6b:45:65:01:bc:74:07:93:b5:e6:6e:
c2:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:04:98:1F:E4:15:3C:AA:78:A7:A4:AC:89:A5:B4:07:B3:D3:B9:12
X509v3 Authority Key Identifier:
keyid:CA:FA:F6:FA:25:B8:D2:AC:B1:B4:4D:CD:D5:54:37:AB:A2:22:6E:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yvr2-iW40qyxtE3N1VQ3q6Iibp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/9c6507-9d7f-42c7-9d12-0e35001778a5/1/1gSYH-QVPKp4p6SsiaW0B7PTuRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/9c6507-9d7f-42c7-9d12-0e35001778a5/1/yvr2-iW40qyxtE3N1VQ3q6Iibp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.91.112.0/20
217.17.144.0/20
Signature Algorithm: sha256WithRSAEncryption
6a:97:e2:f0:c3:f9:1d:74:f7:20:c6:7a:22:69:18:ca:07:7c:
26:d6:70:c8:dd:12:8c:c4:ae:c9:60:ed:28:a4:60:93:d0:d6:
de:99:45:ce:f8:1b:f6:2f:b5:8d:ac:3b:bd:71:fd:0a:8f:73:
3a:c2:78:38:ff:3d:4a:7f:76:0c:f0:95:3f:ff:33:8b:dc:50:
cc:4e:78:6a:79:e1:66:d7:82:a3:5a:eb:fc:dd:10:7b:df:bd:
62:ec:b8:30:34:e4:1d:ff:d0:09:83:6c:86:6a:33:b5:87:b5:
2e:7d:8f:04:0d:30:df:ea:7e:44:3b:ed:96:52:0d:f5:9c:db:
8e:e3:9f:87:65:44:21:1c:16:0c:20:a3:b1:50:a0:dd:fe:62:
ee:ae:4c:49:0f:dc:b0:83:7d:10:f2:83:52:f6:bd:fd:ac:fb:
75:14:10:01:e4:44:f7:59:17:84:7e:98:03:6f:5c:2c:12:b8:
ed:39:27:3c:59:57:d4:bc:a9:fd:b1:9f:8a:59:4d:68:27:be:
d3:62:55:7b:20:f2:e0:ba:f4:b2:7f:c8:ed:30:ba:c0:1c:4d:
2e:c4:62:d5:81:82:11:f3:9f:9b:62:54:ed:d7:3d:1c:9d:50:
b9:13:23:d8:93:3f:ee:04:21:47:ab:46:fc:ea:44:fd:15:4c:
b6:f5:5a:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:22 2024 by rpki-client on console-ams.rpki-client.org