Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/d7d1dc-6467-4ca5-ba8c-ea816336769d/1/_0gWu_cyVYmNjQRx0Td24Pqu08c.roa
File: _0gWu_cyVYmNjQRx0Td24Pqu08c.roa (raw, json)
Hash identifier: HvDYT+eJ5Ym0R/GfYml6URXfPxDxdw2PCb9U+dZ+OR8=
Subject key identifier: FF:48:16:BB:F7:32:55:89:8D:8D:04:71:D1:37:76:E0:FA:AE:D3:C7
Certificate issuer: /CN=10a30cd0735c0f0d68ff76f89b5ff06792d48a05
Certificate serial: CCB15A
Authority key identifier: 10:A3:0C:D0:73:5C:0F:0D:68:FF:76:F8:9B:5F:F0:67:92:D4:8A:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EKMM0HNcDw1o_3b4m1_wZ5LUigU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/d7d1dc-6467-4ca5-ba8c-ea816336769d/1/_0gWu_cyVYmNjQRx0Td24Pqu08c.roa
Signing time: Sat 01 Jan 2022 08:58:54 +0000
ROA not before: Sat 01 Jan 2022 08:58:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 217.114.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13414746 (0xccb15a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10a30cd0735c0f0d68ff76f89b5ff06792d48a05
Validity
Not Before: Jan 1 08:58:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff4816bbf73255898d8d0471d13776e0faaed3c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c5:be:1a:71:de:67:4c:16:68:c8:bf:7b:a2:
90:ee:3e:f1:56:af:c3:7b:0c:d8:d7:f0:dc:e7:98:
23:9c:12:8c:2b:b1:8a:91:22:e6:2b:ba:74:cf:51:
2a:e8:07:02:1d:ec:db:5a:97:d8:3b:82:d4:56:08:
8e:70:d9:59:2e:78:1f:e4:6e:14:17:b5:72:8d:a7:
df:d9:ba:ef:7a:6b:21:6c:11:02:a9:85:02:38:d7:
78:27:4b:4f:41:fe:fd:77:9e:b6:77:f4:3a:fd:4b:
c4:6a:89:0f:b9:f1:8c:90:74:b3:d0:98:7b:c2:98:
43:a1:f2:be:e8:24:c9:b5:9f:cd:c8:9f:8a:55:74:
2a:6b:ed:cf:f0:9b:d8:ba:1d:99:7e:45:50:27:d4:
94:f7:30:c9:e8:d8:4d:0f:0a:88:92:be:11:9d:6e:
01:67:26:e1:0d:29:9d:99:f8:2d:3f:56:d1:34:4a:
9c:aa:50:7b:d9:04:ae:76:a7:04:2e:d7:85:55:5b:
9a:65:cd:56:46:b3:b4:bf:f5:ea:e0:10:0e:eb:92:
c2:9e:fe:75:5c:8e:ca:09:73:ec:25:14:a1:e7:a2:
e2:3a:2a:25:15:f8:27:7c:d0:b2:f8:ec:01:47:0b:
1e:10:01:51:a7:7e:e8:24:d0:d3:9f:de:92:85:38:
07:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:48:16:BB:F7:32:55:89:8D:8D:04:71:D1:37:76:E0:FA:AE:D3:C7
X509v3 Authority Key Identifier:
keyid:10:A3:0C:D0:73:5C:0F:0D:68:FF:76:F8:9B:5F:F0:67:92:D4:8A:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EKMM0HNcDw1o_3b4m1_wZ5LUigU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d7d1dc-6467-4ca5-ba8c-ea816336769d/1/_0gWu_cyVYmNjQRx0Td24Pqu08c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d7d1dc-6467-4ca5-ba8c-ea816336769d/1/EKMM0HNcDw1o_3b4m1_wZ5LUigU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.114.42.0/24
Signature Algorithm: sha256WithRSAEncryption
85:59:cd:2c:c3:f1:6e:cf:e7:e0:5e:16:6e:d8:fd:55:9f:0f:
c6:b7:3f:62:a4:1d:1a:4a:38:23:51:d4:17:3f:4c:49:1e:2c:
1e:47:de:7f:f3:05:3d:0f:15:ba:c5:19:6e:4a:e1:80:93:ea:
a5:01:27:9c:e5:97:9b:d5:be:65:60:05:4d:c3:6c:db:a0:6b:
86:d3:a6:ec:ff:4e:e9:71:b8:46:cc:cc:32:2f:a1:1b:8b:7f:
8c:73:80:2b:e5:b4:f6:ea:95:7a:4b:87:e7:5e:ce:01:23:01:
ac:1a:f8:84:7c:3d:51:85:8d:2d:1f:27:58:15:7b:85:b1:fe:
27:f0:5c:b7:95:21:1c:b2:33:a7:72:95:0a:72:fb:5e:18:9d:
6d:f6:4c:1e:f0:8b:fa:6f:10:e0:e5:b4:db:9d:4d:37:2d:8e:
c3:59:62:06:bd:b4:b1:6a:ee:c0:63:e9:66:6b:a1:68:2d:83:
ab:b9:91:51:37:c8:14:a4:fb:32:d7:1b:d7:48:1e:0f:1c:ec:
91:fb:51:53:0a:ce:60:7b:6c:87:2a:94:9d:11:61:36:ba:c0:
22:99:81:05:4b:40:0c:f1:3b:89:b1:c1:98:7c:c6:af:9a:6f:
06:66:ab:26:f6:46:52:21:15:cb:47:a3:64:01:45:20:06:3f:
ce:92:e6:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:20 2023 by rpki-client on console-fra.rpki-client.org