Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/SkkYXJsFNUzQvcgetcMxyljxEd4.roa
File: SkkYXJsFNUzQvcgetcMxyljxEd4.roa (raw, json)
Hash identifier: VjQ5+bWRseb1IKaeWBqNGuTG/UoEExttE3QyHFM9tBk=
Subject key identifier: 4A:49:18:5C:9B:05:35:4C:D0:BD:C8:1E:B5:C3:31:CA:58:F1:11:DE
Certificate issuer: /CN=04a2ae2cd094333018c41daafb474c6cfa80d07d
Certificate serial: 01598371
Authority key identifier: 04:A2:AE:2C:D0:94:33:30:18:C4:1D:AA:FB:47:4C:6C:FA:80:D0:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKKuLNCUMzAYxB2q-0dMbPqA0H0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/SkkYXJsFNUzQvcgetcMxyljxEd4.roa
Signing time: Wed 16 Mar 2022 17:30:51 +0000
ROA not before: Wed 16 Mar 2022 17:30:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12426
IP address blocks: 217.145.192.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22643569 (0x1598371)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04a2ae2cd094333018c41daafb474c6cfa80d07d
Validity
Not Before: Mar 16 17:30:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a49185c9b05354cd0bdc81eb5c331ca58f111de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5f:65:bc:98:85:4c:7f:2b:d9:f6:25:b9:6c:
be:38:55:75:29:3a:f4:93:b7:02:67:24:67:75:3a:
66:a7:33:d1:38:c4:ec:1e:31:ba:69:e9:74:cc:e2:
87:c8:0a:2f:f8:23:3c:cc:82:33:a4:cc:10:75:a4:
d1:f1:6e:c2:c8:cc:ed:f8:08:df:3a:63:fc:84:a5:
fe:bd:52:a9:7e:2b:a6:d8:62:1b:aa:a3:78:85:1a:
90:1a:07:fd:b7:82:20:0d:cd:86:7f:9b:c6:51:48:
eb:0a:f7:29:f4:8d:bc:18:c7:ce:2c:83:ed:93:1f:
20:f3:0c:85:bb:19:9e:ab:37:f3:4e:a7:0d:68:79:
40:1f:6a:b1:38:e6:cf:78:54:b7:1e:87:55:3b:27:
5d:34:da:4e:4d:c6:1a:14:2d:64:65:ca:07:c5:49:
12:b1:ed:e5:4c:69:ac:20:28:d2:b8:cb:14:83:ed:
6b:bd:31:02:f4:44:d7:28:2b:eb:f0:a6:59:3f:3e:
a4:86:ab:e6:36:b0:71:85:02:30:80:53:62:6e:2c:
42:77:b7:a9:cc:6d:e6:44:a8:70:97:91:29:ff:3d:
43:15:c1:89:61:54:71:f2:b4:33:88:c3:4f:c3:20:
76:cf:42:da:12:82:ce:6a:87:50:f0:f9:0c:98:01:
67:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:49:18:5C:9B:05:35:4C:D0:BD:C8:1E:B5:C3:31:CA:58:F1:11:DE
X509v3 Authority Key Identifier:
keyid:04:A2:AE:2C:D0:94:33:30:18:C4:1D:AA:FB:47:4C:6C:FA:80:D0:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKKuLNCUMzAYxB2q-0dMbPqA0H0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/SkkYXJsFNUzQvcgetcMxyljxEd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/BKKuLNCUMzAYxB2q-0dMbPqA0H0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.145.192.0/20
Signature Algorithm: sha256WithRSAEncryption
38:37:d7:d7:48:93:b2:ea:f7:62:94:29:f7:94:21:97:b3:7e:
ec:3f:79:72:87:82:b8:ca:f4:85:ec:47:2b:79:b5:f1:dd:5e:
00:c2:82:ef:3b:02:d4:7e:c2:2e:5f:fe:66:9f:79:ac:a4:a8:
65:7b:57:3e:5b:3a:06:bf:2d:8c:29:a4:34:73:84:dc:eb:7e:
88:08:95:2e:c1:75:07:20:af:42:b7:62:3c:89:f2:6d:36:e6:
29:6d:76:5e:a7:f1:ce:38:be:de:49:28:07:3c:85:21:b4:1b:
80:5e:80:d2:a8:17:74:81:df:fb:cc:0f:02:65:7e:ac:d3:84:
79:b2:16:12:79:fe:1d:57:b6:7c:1d:48:96:2a:ae:00:10:82:
fe:0b:9f:7a:0b:d6:c7:53:6b:29:37:bb:ad:17:df:48:10:f4:
cf:77:d6:d4:2d:88:12:a4:44:3c:37:10:a1:cd:7e:4f:f1:7e:
82:cb:d3:50:1f:7a:f5:e5:48:96:09:a1:04:27:b9:da:ec:d1:
b7:28:f3:07:a2:a8:06:c8:db:e9:19:a4:c2:7c:5d:4e:c2:f1:
e6:25:ff:ee:2a:71:ba:43:77:25:a4:8c:a8:c7:8c:db:9c:b8:
0f:23:1e:8a:f7:b1:8b:e0:b9:62:93:97:d3:b0:fa:3f:ef:1d:
b5:bb:ad:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:51 2023 by rpki-client on console-fra.rpki-client.org