Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/1a24f6-c5a0-40bf-abb6-8da5373a6a6d/1/q6TERPjw_TXbVcaVpDIJBIRMh-Y.roa
File: q6TERPjw_TXbVcaVpDIJBIRMh-Y.roa (raw, json)
Hash identifier: Q3HsN1m7w46zvHnQXvb14wFSFh6BVW6X+7fcjaI6PNo=
Subject key identifier: AB:A4:C4:44:F8:F0:FD:35:DB:55:C6:95:A4:32:09:04:84:4C:87:E6
Certificate issuer: /CN=0331b87e91ea271046d31995e7a6c038bf1b147c
Certificate serial: 012F4B33
Authority key identifier: 03:31:B8:7E:91:EA:27:10:46:D3:19:95:E7:A6:C0:38:BF:1B:14:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AzG4fpHqJxBG0xmV56bAOL8bFHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/1a24f6-c5a0-40bf-abb6-8da5373a6a6d/1/q6TERPjw_TXbVcaVpDIJBIRMh-Y.roa
Signing time: Sat 01 Jan 2022 07:59:31 +0000
ROA not before: Sat 01 Jan 2022 07:59:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15830
IP address blocks: 109.234.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19876659 (0x12f4b33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0331b87e91ea271046d31995e7a6c038bf1b147c
Validity
Not Before: Jan 1 07:59:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aba4c444f8f0fd35db55c695a4320904844c87e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f2:78:72:0f:5a:52:8a:13:ee:ce:61:fc:a6:
52:1f:c0:19:b3:41:4f:59:06:14:ae:2f:7a:84:d2:
5e:87:35:7a:13:71:2e:46:27:a3:6b:4d:09:4c:98:
37:bf:9a:c4:ca:24:85:dd:a6:97:08:2c:e7:b2:be:
3e:d4:e1:34:9f:bf:dd:cc:dc:fc:e6:c6:e8:be:a2:
79:5e:ce:25:1d:98:ad:a5:e1:e8:1b:4d:06:20:bd:
4d:bb:d1:85:67:f4:0b:04:b0:24:40:42:39:18:cc:
a5:35:1d:ef:1f:99:5a:27:8f:0e:0b:b6:81:a2:4e:
4f:4f:8e:5e:93:46:b5:57:e3:bf:f0:60:28:d7:58:
cc:dc:a7:89:9b:59:d4:1e:29:38:cf:08:6d:ee:36:
2e:39:04:ef:a7:da:a8:94:d5:d3:65:c4:4a:d1:48:
44:51:58:2c:38:62:68:e6:a3:18:27:36:9c:2a:10:
f3:5f:7e:a5:64:5d:04:b8:b2:af:fd:db:03:e7:dc:
16:ed:8f:af:11:1b:ec:b0:9b:f0:00:53:72:72:49:
e1:58:81:16:26:99:af:32:a4:0d:eb:61:3d:b2:84:
32:cf:23:28:25:b0:5c:43:8b:90:83:24:b4:75:90:
ad:2e:a3:6d:23:6f:e7:8d:ea:07:a1:b2:72:ce:08:
e9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:A4:C4:44:F8:F0:FD:35:DB:55:C6:95:A4:32:09:04:84:4C:87:E6
X509v3 Authority Key Identifier:
keyid:03:31:B8:7E:91:EA:27:10:46:D3:19:95:E7:A6:C0:38:BF:1B:14:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AzG4fpHqJxBG0xmV56bAOL8bFHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/1a24f6-c5a0-40bf-abb6-8da5373a6a6d/1/q6TERPjw_TXbVcaVpDIJBIRMh-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/1a24f6-c5a0-40bf-abb6-8da5373a6a6d/1/AzG4fpHqJxBG0xmV56bAOL8bFHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.234.72.0/24
Signature Algorithm: sha256WithRSAEncryption
43:aa:ed:6e:28:0c:73:cd:0a:c3:1b:ff:fb:2b:84:c6:65:7f:
78:98:16:ae:df:86:76:c2:ca:ac:62:02:7c:0c:0a:af:60:ce:
71:8e:23:33:4e:76:2c:d0:1e:aa:2d:cc:ce:e4:4e:4c:00:51:
36:4b:3a:82:6c:24:7c:c2:86:53:ef:e3:c9:9f:da:be:fd:7f:
19:ff:98:23:07:b5:60:f9:b4:6c:40:e0:c7:eb:cb:5b:e3:bd:
76:98:fd:80:ff:9d:cb:75:bd:b5:9d:2e:ae:0f:e8:88:47:57:
2a:a8:e8:2d:55:5b:e2:40:44:35:fa:9b:31:47:5c:07:3d:94:
c6:90:9b:90:ac:eb:8d:98:a9:2a:71:25:46:38:bb:cb:12:75:
67:d2:a7:6c:54:b6:ad:c3:27:c1:42:6a:ca:db:a3:4a:d1:f0:
f7:97:7f:a8:94:8a:48:11:d9:30:df:cd:bf:e8:57:e4:6c:e4:
91:7e:98:61:43:d7:3b:ad:3d:e5:5f:7e:e7:d3:49:23:cd:d7:
45:21:a9:d3:e8:ec:70:e2:bf:d2:63:f3:7f:e3:de:08:8e:af:
fc:52:99:12:1f:15:07:ca:dd:e6:71:39:36:9f:d9:c1:d0:60:
5d:14:05:4b:b5:d8:5b:e0:ca:3e:c2:96:98:e5:c8:5a:ee:b4:
68:13:73:49
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAS9LMzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MzMxYjg3ZTkxZWEyNzEwNDZkMzE5OTVlN2E2YzAzOGJmMWIxNDdjMB4XDTIyMDEw
MTA3NTkzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWJhNGM0NDRmOGYw
ZmQzNWRiNTVjNjk1YTQzMjA5MDQ4NDRjODdlNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALPyeHIPWlKKE+7OYfymUh/AGbNBT1kGFK4veoTSXoc1ehNx
LkYno2tNCUyYN7+axMokhd2mlwgs57K+PtThNJ+/3czc/ObG6L6ieV7OJR2YraXh
6BtNBiC9TbvRhWf0CwSwJEBCORjMpTUd7x+ZWiePDgu2gaJOT0+OXpNGtVfjv/Bg
KNdYzNyniZtZ1B4pOM8Ibe42LjkE76faqJTV02XEStFIRFFYLDhiaOajGCc2nCoQ
819+pWRdBLiyr/3bA+fcFu2PrxEb7LCb8ABTcnJJ4ViBFiaZrzKkDethPbKEMs8j
KCWwXEOLkIMktHWQrS6jbSNv543qB6Gycs4I6dkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSrpMRE+PD9NdtVxpWkMgkEhEyH5jAfBgNVHSMEGDAWgBQDMbh+keonEEbT
GZXnpsA4vxsUfDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0F6RzRmcEhxSnhCRzB4bVY1NmJBT0w4YkZIdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDkvMWEyNGY2LWM1YTAtNDBiZi1hYmI2LThkYTUzNzNhNmE2ZC8x
L3E2VEVSUGp3X1RYYlZjYVZwRElKQklSTWgtWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkv
MWEyNGY2LWM1YTAtNDBiZi1hYmI2LThkYTUzNzNhNmE2ZC8xL0F6RzRmcEhxSnhC
RzB4bVY1NmJBT0w4YkZIdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG3qSDANBgkqhkiG9w0BAQsFAAOC
AQEAQ6rtbigMc80Kwxv/+yuExmV/eJgWrt+GdsLKrGICfAwKr2DOcY4jM052LNAe
qi3MzuROTABRNks6gmwkfMKGU+/jyZ/avv1/Gf+YIwe1YPm0bEDgx+vLW+O9dpj9
gP+dy3W9tZ0urg/oiEdXKqjoLVVb4kBENfqbMUdcBz2UxpCbkKzrjZipKnElRji7
yxJ1Z9KnbFS2rcMnwUJqytujStHw95d/qJSKSBHZMN/Nv+hX5GzkkX6YYUPXO609
5V9+59NJI83XRSGp0+jscOK/0mPzf+PeCI6v/FKZEh8VB8rd5nE5Np/ZwdBgXRQF
S7XYW+DKPsKWmOXIWu60aBNzSQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:04 2024 by rpki-client on console-fra.rpki-client.org