Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/a58311-e674-405c-98f2-1470bcceeb1b/1/S7fEk_JathARi3PjcjSrAkfKcZk.roa
File: S7fEk_JathARi3PjcjSrAkfKcZk.roa (raw, json)
Hash identifier: GI+kbs8ICGmgg7f4itv34bCygq1MMINHyDOM3A9T4xU=
Subject key identifier: 4B:B7:C4:93:F2:5A:B6:10:11:8B:73:E3:72:34:AB:02:47:CA:71:99
Certificate issuer: /CN=4984d0cc6703bf942c6dac89dff1a7bf6632ea8b
Certificate serial: 011BE0CB
Authority key identifier: 49:84:D0:CC:67:03:BF:94:2C:6D:AC:89:DF:F1:A7:BF:66:32:EA:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SYTQzGcDv5QsbayJ3_Gnv2Yy6os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/a58311-e674-405c-98f2-1470bcceeb1b/1/S7fEk_JathARi3PjcjSrAkfKcZk.roa
Signing time: Mon 10 Jan 2022 09:57:50 +0000
ROA not before: Mon 10 Jan 2022 09:57:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21465
IP address blocks: 217.23.96.0/20 maxlen: 20
217.23.96.0/21 maxlen: 21
217.23.104.0/21 maxlen: 21
217.23.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18604235 (0x11be0cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4984d0cc6703bf942c6dac89dff1a7bf6632ea8b
Validity
Not Before: Jan 10 09:57:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bb7c493f25ab610118b73e37234ab0247ca7199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a1:ef:72:79:72:ca:2e:f8:50:a2:db:28:c6:
46:1b:81:5c:26:2b:4c:a9:72:a7:c7:52:61:f4:d0:
93:f5:dd:17:01:b8:60:61:09:e0:72:84:49:aa:5f:
63:d0:8a:02:b1:53:7e:3d:13:9d:c7:a4:ca:12:1a:
13:cf:7c:13:0f:4e:97:2e:43:c9:21:0c:93:88:2d:
b5:33:0b:15:aa:5b:2e:7d:41:fe:ee:89:84:ba:9b:
dd:6e:3a:a1:f7:26:51:6b:a1:57:bc:ca:2f:94:80:
5e:c0:59:e9:30:88:2d:04:d9:bf:df:48:68:22:e6:
4c:8f:1b:89:be:47:97:27:c5:69:fa:a9:bb:21:32:
10:7d:4e:fb:52:91:da:15:d1:b2:24:9e:f4:3c:91:
8d:2d:09:f8:89:b5:b8:c6:32:e0:f2:33:37:5c:0f:
59:c2:83:66:2c:93:67:3b:48:fc:80:c9:c0:d2:0b:
20:b5:73:66:ba:b1:d8:a2:cf:bc:da:57:c1:b5:f0:
40:61:72:c3:c5:44:9e:d4:c5:0c:6b:4d:ff:b5:34:
96:12:58:a1:db:8e:a3:fe:76:01:4c:ea:31:1a:31:
fa:a6:a5:89:1e:21:60:0b:72:e7:26:29:cb:3c:19:
4f:86:be:35:80:17:61:90:3b:1d:13:10:a6:1d:68:
07:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:B7:C4:93:F2:5A:B6:10:11:8B:73:E3:72:34:AB:02:47:CA:71:99
X509v3 Authority Key Identifier:
keyid:49:84:D0:CC:67:03:BF:94:2C:6D:AC:89:DF:F1:A7:BF:66:32:EA:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYTQzGcDv5QsbayJ3_Gnv2Yy6os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/a58311-e674-405c-98f2-1470bcceeb1b/1/S7fEk_JathARi3PjcjSrAkfKcZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/a58311-e674-405c-98f2-1470bcceeb1b/1/SYTQzGcDv5QsbayJ3_Gnv2Yy6os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.23.96.0/20
Signature Algorithm: sha256WithRSAEncryption
2f:df:04:a5:64:f2:b9:1c:19:63:e8:c6:fb:30:49:f4:ec:d9:
6f:e2:9a:92:9f:24:5e:96:a4:c3:b7:6a:70:02:c6:24:54:67:
d7:03:27:9c:8d:3b:48:eb:3b:7d:e4:12:ec:08:14:99:d6:fa:
03:11:ac:d2:8a:41:14:8c:0c:02:80:2c:85:6b:75:69:d5:04:
5a:9b:65:17:b3:7b:ae:ce:27:59:a6:05:9a:3b:59:2a:59:d8:
21:09:5c:17:6d:ca:36:ec:b8:d5:2d:52:06:75:a1:62:87:25:
f2:2b:49:1e:b6:6a:93:27:23:80:31:e5:dc:81:f2:5a:b1:ec:
60:9e:e3:7a:85:38:d9:88:61:83:25:8b:99:eb:d9:96:65:a4:
c8:3a:a3:11:38:e4:13:f0:10:3b:ee:0e:a3:f7:96:62:e9:b1:
a6:9a:e9:8c:4a:14:54:da:37:08:fb:6b:30:48:e7:7d:d1:0b:
8e:e4:b1:ab:7b:20:9d:de:c4:c1:7d:30:e4:70:49:7f:ce:93:
bf:22:1d:2e:05:e0:7b:b3:c6:b0:20:e6:94:cc:2d:ce:50:69:
11:e9:ce:7c:60:a4:fe:bc:1d:5d:a1:1a:87:62:58:c9:86:03:
ff:f5:5c:a3:25:64:7d:c1:85:2e:81:49:9f:0b:8f:75:11:bb:
8d:39:17:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:08 2023 by rpki-client on console-fra.rpki-client.org