Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/3a362d-4198-4b08-bb0a-dbe41fc8399e/1/dQwcBbiur5Zsx6LWNQH9yDsaDdM.roa
File: dQwcBbiur5Zsx6LWNQH9yDsaDdM.roa (raw, json)
Hash identifier: h1zAm1bE6ZjmYJ8/iDkoRNw9rwlu6a3/CecN/0RbNXM=
Subject key identifier: 75:0C:1C:05:B8:AE:AF:96:6C:C7:A2:D6:35:01:FD:C8:3B:1A:0D:D3
Certificate issuer: /CN=33fbdbb20c2d97073c0de8b7caa75ec1eeb191b8
Certificate serial: 066BAB79
Authority key identifier: 33:FB:DB:B2:0C:2D:97:07:3C:0D:E8:B7:CA:A7:5E:C1:EE:B1:91:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M_vbsgwtlwc8Dei3yqdewe6xkbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/3a362d-4198-4b08-bb0a-dbe41fc8399e/1/dQwcBbiur5Zsx6LWNQH9yDsaDdM.roa
Signing time: Sat 01 Jan 2022 16:05:10 +0000
ROA not before: Sat 01 Jan 2022 16:05:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 217.169.72.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107719545 (0x66bab79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33fbdbb20c2d97073c0de8b7caa75ec1eeb191b8
Validity
Not Before: Jan 1 16:05:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=750c1c05b8aeaf966cc7a2d63501fdc83b1a0dd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e5:2a:26:31:92:d0:25:cd:01:35:19:7c:13:
51:22:54:d3:02:9b:09:0c:4a:89:a6:e1:2f:22:5a:
70:38:f6:9e:e3:ff:55:d1:0a:4e:8a:6a:1d:c3:19:
c5:17:bb:e2:3e:d4:ce:83:21:e5:ce:2b:28:b0:da:
12:82:0a:e6:05:21:d2:3b:10:40:6a:96:62:23:be:
e9:f0:08:83:a9:f5:37:b2:10:28:2d:3c:a4:24:93:
85:e9:74:19:bb:dd:d8:ed:a0:e4:c3:5f:b5:93:08:
4b:1e:7b:ce:24:99:10:5b:d0:45:bb:83:0c:49:ca:
b4:4e:78:06:69:83:b0:d8:1e:e4:23:d8:3b:b1:ba:
50:6a:8d:68:2d:ec:4b:9a:4f:7b:80:dc:0e:f7:f5:
28:4a:e6:64:a5:59:13:f2:4a:44:0a:a3:cc:cb:27:
76:9d:57:2f:8e:d5:0b:1d:3d:82:33:82:90:c5:43:
bd:d8:be:37:11:0f:89:0a:07:94:e6:4a:12:82:a0:
0f:b1:68:99:25:32:8f:d0:5e:4a:fa:2e:7a:fb:76:
a2:f7:21:8c:15:9c:85:4f:ca:5b:dc:86:b3:5c:29:
29:5e:db:ff:b8:e3:6e:19:54:dd:ef:6c:97:05:4f:
5c:f9:7f:82:cc:23:42:a5:81:9d:11:ac:7c:e8:a8:
f3:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:0C:1C:05:B8:AE:AF:96:6C:C7:A2:D6:35:01:FD:C8:3B:1A:0D:D3
X509v3 Authority Key Identifier:
keyid:33:FB:DB:B2:0C:2D:97:07:3C:0D:E8:B7:CA:A7:5E:C1:EE:B1:91:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M_vbsgwtlwc8Dei3yqdewe6xkbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3a362d-4198-4b08-bb0a-dbe41fc8399e/1/dQwcBbiur5Zsx6LWNQH9yDsaDdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3a362d-4198-4b08-bb0a-dbe41fc8399e/1/M_vbsgwtlwc8Dei3yqdewe6xkbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.169.72.0/21
Signature Algorithm: sha256WithRSAEncryption
08:6d:55:ba:e6:05:2c:78:b1:9d:0e:f4:47:e3:67:cc:b3:71:
ae:07:ac:bc:99:ba:86:c7:a5:f3:76:3a:9b:c0:5a:67:36:dc:
f0:e8:eb:d0:b9:bf:23:90:03:be:78:22:5a:81:22:fa:62:84:
32:8c:19:d6:d1:73:ea:49:6b:12:d3:74:03:86:e4:dd:84:0a:
1c:3e:37:d8:29:f7:4b:2e:39:42:a1:fb:d6:f6:9d:ce:fd:cc:
2f:f4:4b:ba:ac:24:9d:b1:f7:9b:a7:dd:95:ea:54:35:e0:5d:
38:0a:e7:2e:35:25:6f:85:d8:1b:ce:00:db:f4:29:d4:75:f9:
22:17:6e:70:ff:38:2c:95:0a:07:98:f9:04:b1:be:a3:21:50:
03:e5:8a:bc:18:30:5f:9b:99:af:2d:1e:0b:93:69:fa:e9:48:
58:c3:50:2a:55:e2:e9:a6:aa:d5:0b:a6:70:8e:f3:a8:d2:17:
9d:35:31:11:d1:d8:12:51:52:03:93:18:d1:1d:81:45:3b:73:
90:61:3d:6a:23:85:ef:f5:6e:cc:ee:a8:1e:98:69:7e:81:b7:
9f:68:5a:56:2c:26:ed:ae:2f:26:42:8c:d5:f5:99:1b:31:86:
74:ac:45:05:75:61:ff:21:4f:ba:f7:e8:8a:dc:3d:ec:e8:0e:
11:e8:ac:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:55 2024 by rpki-client on console-fra.rpki-client.org