Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/gZ4sbcCFZ0KuGextNSAaUiN8vHw.roa
File: gZ4sbcCFZ0KuGextNSAaUiN8vHw.roa (raw, json)
Hash identifier: Gb0Mg+AkhkR/dfFfD3D7L+ZstivzJx/ML/jCGJMbYHw=
Subject key identifier: 81:9E:2C:6D:C0:85:67:42:AE:19:EC:6D:35:20:1A:52:23:7C:BC:7C
Certificate issuer: /CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Certificate serial: 0183038E5375F378DFA6E1DE5524AC6AF53D
Authority key identifier: 0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/gZ4sbcCFZ0KuGextNSAaUiN8vHw.roa
Signing time: Sat 03 Sep 2022 13:33:22 +0000
ROA not before: Sat 03 Sep 2022 13:33:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 217.25.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:03:8e:53:75:f3:78:df:a6:e1:de:55:24:ac:6a:f5:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Validity
Not Before: Sep 3 13:33:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=819e2c6dc0856742ae19ec6d35201a52237cbc7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ef:90:cf:c3:80:23:93:85:35:3a:f3:7d:65:
22:1b:00:dc:38:86:6b:c9:2d:92:4f:19:4b:a0:21:
06:fc:10:a1:b7:de:14:70:01:17:ba:53:72:6d:dc:
ff:e3:1b:79:33:f5:90:b1:22:9e:7c:3d:c9:3c:53:
76:25:0b:8d:dd:cb:fb:17:7e:24:8e:82:e1:78:8c:
b0:ee:13:a0:36:e0:a6:59:bf:8a:cb:b3:c1:7b:29:
29:1a:9c:41:76:e3:3d:81:07:3d:91:14:e2:5f:ed:
a6:aa:a5:be:bb:0c:b9:99:7b:9d:d3:68:f7:68:5b:
99:40:87:87:f4:93:ae:1b:0c:ae:20:97:4e:c0:1c:
69:93:a3:48:da:21:3b:60:9e:93:63:db:f5:f9:78:
0a:80:49:aa:f7:a1:22:66:13:fe:f8:06:60:60:e5:
4c:cd:6e:f6:87:86:58:11:eb:dd:c3:43:c7:55:e2:
94:a0:e3:57:39:6a:f0:0c:f5:56:79:bf:81:01:c0:
2a:e4:cf:a3:ba:83:7f:8e:11:d9:60:af:7d:00:94:
33:a9:11:a2:19:6c:2c:7a:94:94:91:9a:fb:e9:fe:
01:43:d0:6d:49:f4:a4:9d:21:40:a2:6b:1c:00:0b:
11:ad:bf:de:cc:f7:e1:fd:ef:d7:12:b3:3b:a6:68:
96:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:9E:2C:6D:C0:85:67:42:AE:19:EC:6D:35:20:1A:52:23:7C:BC:7C
X509v3 Authority Key Identifier:
keyid:0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/gZ4sbcCFZ0KuGextNSAaUiN8vHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/D_gMvf4YNUo8_bov4HmqLrxY3NQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.25.1.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:61:36:35:87:62:ba:74:09:0f:29:54:9c:30:3e:6b:99:1e:
70:58:ee:55:34:f5:c8:d8:f3:14:8e:4a:82:f8:14:0d:04:fc:
2d:99:34:1a:34:30:47:5a:17:15:e3:f2:20:1c:0b:ae:16:4c:
9c:58:67:47:b8:75:71:99:3e:25:05:b6:f1:ad:c5:2e:09:07:
9a:a9:f2:bc:77:94:09:c0:65:7e:05:cd:ac:42:0a:fa:86:dd:
ad:b3:d3:29:c8:8d:91:a7:99:55:75:6a:ef:2d:89:a8:40:36:
d1:aa:b4:3f:5a:ff:9b:7c:ba:b2:ef:55:dc:9e:98:09:6b:62:
88:0e:62:87:ee:b5:27:09:35:d2:ad:64:1e:36:f3:3e:4e:c8:
f7:a7:a6:99:1a:51:fd:50:d0:4c:2b:2d:10:60:80:38:b2:d1:
98:4e:cd:c7:38:2f:03:e9:61:93:13:e0:92:a3:4f:95:93:5c:
92:40:e0:0c:1d:7c:4b:89:6b:ed:e1:e7:c3:00:74:57:4a:b0:
06:3f:10:e3:8c:14:79:b2:07:7c:ca:fb:5c:c5:8c:92:b9:75:
33:2d:cb:d4:30:70:2f:ce:a7:ee:b9:ee:4a:55:83:80:6b:f3:
02:f2:ed:62:4b:10:18:e2:6b:c1:da:91:fe:ac:31:0d:ed:fa:
97:98:e3:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:38 2023 by rpki-client on console-ams.rpki-client.org