Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/545b06-8572-412f-a80f-3979ef0d32db/1/fPDHGrYCaZFjRvM-IJDmmdLbkIs.roa
File: fPDHGrYCaZFjRvM-IJDmmdLbkIs.roa (raw, json)
Hash identifier: NOL0mZtXiOZhD2fbnQQLUa4eSM3lk2zBLMUggwWAF0k=
Subject key identifier: 7C:F0:C7:1A:B6:02:69:91:63:46:F3:3E:20:90:E6:99:D2:DB:90:8B
Certificate issuer: /CN=498fd453f5e35f9c77d1d706e565138adf82256a
Certificate serial: 130D9C80
Authority key identifier: 49:8F:D4:53:F5:E3:5F:9C:77:D1:D7:06:E5:65:13:8A:DF:82:25:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SY_UU_XjX5x30dcG5WUTit-CJWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/545b06-8572-412f-a80f-3979ef0d32db/1/fPDHGrYCaZFjRvM-IJDmmdLbkIs.roa
Signing time: Sat 01 Jan 2022 06:53:18 +0000
ROA not before: Sat 01 Jan 2022 06:53:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203931
IP address blocks: 217.29.240.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 319659136 (0x130d9c80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=498fd453f5e35f9c77d1d706e565138adf82256a
Validity
Not Before: Jan 1 06:53:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7cf0c71ab60269916346f33e2090e699d2db908b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:99:bc:bb:54:a1:74:80:4a:d2:fb:15:a0:fe:
a1:be:fb:ff:9e:f0:55:a4:b8:ab:14:47:d0:a7:cc:
be:70:48:e8:32:f9:0b:db:c6:09:05:2a:c9:de:bb:
41:a3:7b:54:9d:bb:5c:ee:49:a6:5c:49:bf:24:ac:
24:7b:47:55:82:f4:ad:20:ec:0e:c2:fa:b7:d5:5c:
0e:03:6d:eb:a4:6d:a0:53:94:ad:66:71:f0:4e:d7:
3a:4e:4a:f8:d1:a3:07:1d:52:41:22:50:80:7d:a6:
2c:b1:4e:96:0c:50:2f:82:7f:1c:d5:43:b6:81:75:
70:1c:78:ed:6e:1a:2b:17:86:04:2e:0e:f6:c6:21:
8c:40:3b:86:31:cb:3c:7f:bd:21:d8:b3:67:e7:51:
14:39:96:b0:83:68:27:01:8a:16:9f:4d:19:98:e0:
ac:39:cc:55:41:22:c1:73:19:92:cd:65:13:70:45:
fe:eb:bd:e0:c3:90:73:0e:ed:0b:f3:d8:b3:b8:74:
4d:1b:89:2f:9f:1f:97:e0:da:06:e2:90:c8:9a:33:
c5:b1:94:ef:f1:7d:95:5c:9d:96:70:2a:b0:32:e3:
63:11:83:69:af:11:f8:ec:e4:b0:0d:54:91:5b:23:
65:ee:ba:3a:7d:2a:12:d3:2b:2b:ad:2a:a9:7b:14:
4b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:F0:C7:1A:B6:02:69:91:63:46:F3:3E:20:90:E6:99:D2:DB:90:8B
X509v3 Authority Key Identifier:
keyid:49:8F:D4:53:F5:E3:5F:9C:77:D1:D7:06:E5:65:13:8A:DF:82:25:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SY_UU_XjX5x30dcG5WUTit-CJWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/545b06-8572-412f-a80f-3979ef0d32db/1/fPDHGrYCaZFjRvM-IJDmmdLbkIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/545b06-8572-412f-a80f-3979ef0d32db/1/SY_UU_XjX5x30dcG5WUTit-CJWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.29.240.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:8c:3e:2e:a1:ab:63:21:99:fd:09:97:a5:16:17:bf:8e:79:
d0:ab:dd:89:ca:92:c5:b8:3f:a6:5b:4e:c8:1a:1b:2b:22:fe:
6e:e2:7a:23:12:a2:b3:d6:e0:4a:68:ce:ab:42:2f:04:98:99:
8a:08:0a:74:2f:d8:3c:b6:13:a0:ba:2b:e8:5c:98:e4:85:87:
d3:06:71:c6:80:72:c5:e7:3e:63:57:93:b5:8b:99:96:16:68:
43:ba:68:13:d6:89:65:43:6f:1f:aa:52:c0:c2:46:3e:b5:d5:
2e:63:47:e3:ab:f1:75:80:45:54:d9:ab:65:00:26:f9:60:2c:
0f:87:e6:de:12:2c:54:cc:8f:60:ee:27:2c:85:92:b9:fd:8b:
f0:24:03:51:9d:9b:42:14:3b:6f:f9:b4:d6:2a:cc:cf:9b:37:
15:04:74:1c:84:a2:b4:75:35:c8:ce:50:90:56:55:86:64:46:
a2:da:eb:03:08:6a:db:3e:d6:c8:27:e9:f4:4e:cf:4c:87:1a:
a3:33:f9:3b:5c:93:3c:8d:6d:9c:f3:5e:07:60:84:6b:ba:55:
04:88:0f:0c:2c:18:7a:77:b0:85:c4:10:7e:61:4b:ab:2c:65:
6f:56:be:fc:20:1e:9b:d8:ed:5e:00:1e:93:b2:b8:f8:3d:8a:
dc:82:66:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:46 2024 by rpki-client on console-ams.rpki-client.org