Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/ODTeoSDu_gS4T341ft7Ri8U-WtU.roa
File: ODTeoSDu_gS4T341ft7Ri8U-WtU.roa (raw, json)
Hash identifier: HiaYdONsCctHeAAxuMFOoHKFsj66tLYPefc/40e7zFw=
Subject key identifier: 38:34:DE:A1:20:EE:FE:04:B8:4F:7E:35:7E:DE:D1:8B:C5:3E:5A:D5
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 018BD8F64A5D68D408D216B0024B20C3AE98
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/ODTeoSDu_gS4T341ft7Ri8U-WtU.roa
Signing time: Thu 16 Nov 2023 16:28:21 +0000
ROA not before: Thu 16 Nov 2023 16:28:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7342
IP address blocks: 217.30.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d8:f6:4a:5d:68:d4:08:d2:16:b0:02:4b:20:c3:ae:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 16 16:28:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3834dea120eefe04b84f7e357eded18bc53e5ad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:39:3b:48:21:f7:b3:88:d9:4e:03:1e:af:94:
98:f4:49:7a:53:c3:7f:8e:3b:2b:fd:06:fb:0b:a2:
3f:c3:4b:f5:c9:b9:a5:41:b7:97:24:8b:ff:4a:aa:
1d:23:9d:04:5b:87:76:6c:21:68:fa:36:87:54:30:
7e:80:ba:e6:43:41:52:d9:90:3a:6a:da:2a:c4:d2:
b8:b4:67:d6:5e:a7:5c:08:9c:50:12:d8:93:2d:36:
31:e4:98:4d:d0:2a:9c:43:f7:ea:04:76:6d:a1:bd:
37:67:f9:c3:52:60:9b:cb:79:c3:be:a2:5a:0c:e8:
b7:fe:77:81:66:fa:0b:f5:63:c2:73:ca:1f:32:33:
98:31:79:32:8b:6f:71:0d:92:63:96:96:c7:06:c3:
b1:38:21:e6:d9:5a:95:4e:a1:83:e3:ef:67:4f:2c:
4b:a9:c1:66:fb:1c:af:86:0f:41:a9:65:ff:fb:6c:
1a:b2:26:87:41:0b:d3:81:29:e1:0f:cc:c6:16:a5:
e7:3a:c5:5c:59:c1:88:2d:7f:89:65:64:85:45:90:
57:15:dc:cd:96:e7:3a:d6:ae:a6:b3:21:0a:82:bc:
b9:41:9a:b3:d9:df:41:c1:5c:d4:b1:9d:84:ac:9c:
ff:af:61:bf:61:6f:f6:f0:83:bc:a1:cd:0b:c6:f9:
a6:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:34:DE:A1:20:EE:FE:04:B8:4F:7E:35:7E:DE:D1:8B:C5:3E:5A:D5
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/ODTeoSDu_gS4T341ft7Ri8U-WtU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.30.87.0/24
Signature Algorithm: sha256WithRSAEncryption
90:02:c9:50:5c:86:94:6e:5e:9f:6a:3d:7f:ce:8b:bb:66:0e:
31:4f:37:a7:b9:50:2a:4d:03:81:71:b1:82:ef:80:29:59:1e:
27:8a:55:e1:4f:21:38:6d:c2:25:3c:4d:56:b0:54:71:36:e5:
79:60:96:d6:32:4d:d2:09:4f:33:24:ed:c9:3d:6b:7e:e8:d9:
8c:89:cf:08:38:eb:8f:da:82:c5:29:ee:66:c4:ce:b9:9e:5f:
e5:5a:c7:b5:19:17:c3:65:5c:8e:cc:1b:60:1d:8e:58:d8:0a:
6e:ed:0e:9d:68:8d:90:2f:55:50:2a:7f:8e:0d:ec:be:f1:f5:
40:96:b0:49:91:72:97:35:81:cc:6b:15:54:27:13:4a:74:06:
4c:e3:58:db:9b:35:b0:4e:ce:ea:e1:4d:38:a9:76:cf:85:82:
f6:c5:5c:fe:47:7c:53:9e:f3:45:72:8c:a4:ea:6d:48:90:e5:
7b:28:e4:7b:24:2c:5b:b5:83:08:da:51:7f:bc:3e:03:ae:4f:
b1:78:e2:64:6c:60:64:fa:a3:b8:d0:1c:02:bc:5f:93:f0:f2:
ae:5a:e8:1f:cf:d8:98:6f:07:6b:9f:ea:9c:e4:5a:28:24:3f:
f8:3a:19:e2:d0:62:11:82:09:84:01:fb:ad:78:7e:28:48:bd:
9d:21:07:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:20:08 2025 by rpki-client