Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/699292-3da0-4772-af82-8334e362236d/1/m-JmfoAJABfaNE1d7gj29s4kQaM.roa
File: m-JmfoAJABfaNE1d7gj29s4kQaM.roa (raw, json)
Hash identifier: reCAlX3m2foq9+PX+EaPycJqQAQdDR1F8ZUUXfRAMJc=
Subject key identifier: 9B:E2:66:7E:80:09:00:17:DA:34:4D:5D:EE:08:F6:F6:CE:24:41:A3
Certificate issuer: /CN=8ceb23e2c5d9f2c734488904505835ef2809fb3b
Certificate serial: 11819816
Authority key identifier: 8C:EB:23:E2:C5:D9:F2:C7:34:48:89:04:50:58:35:EF:28:09:FB:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jOsj4sXZ8sc0SIkEUFg17ygJ-zs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/699292-3da0-4772-af82-8334e362236d/1/m-JmfoAJABfaNE1d7gj29s4kQaM.roa
Signing time: Sat 01 Jan 2022 10:59:44 +0000
ROA not before: Sat 01 Jan 2022 10:59:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57231
IP address blocks: 109.105.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 293705750 (0x11819816)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ceb23e2c5d9f2c734488904505835ef2809fb3b
Validity
Not Before: Jan 1 10:59:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9be2667e80090017da344d5dee08f6f6ce2441a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a5:c8:e3:74:ec:70:20:38:57:ec:36:e3:d3:
22:4e:bd:92:50:27:72:fc:d5:6f:e8:8f:00:56:3c:
8d:73:c2:cc:14:97:0f:51:82:16:10:5b:3e:be:f3:
df:55:77:c5:69:e2:cf:8f:6f:00:28:83:17:78:2b:
5e:62:2f:22:ed:71:49:9b:cc:b2:1f:79:c1:aa:fe:
74:8d:42:00:77:bc:61:50:c2:42:e5:d1:18:07:18:
ac:08:3a:f7:a8:2b:17:d3:ab:5e:e5:54:35:aa:f8:
a7:ef:53:02:e8:e5:c9:ff:86:f2:72:d7:c9:b3:9e:
81:2a:cb:5a:15:95:f2:0f:75:2e:24:69:70:39:d8:
49:7a:5b:b7:cb:1d:0d:dc:bb:5f:46:9f:56:9f:5d:
17:5e:12:f1:29:04:7a:3c:a3:da:8e:93:0d:31:da:
ee:a7:d1:bc:7d:9e:3b:b2:cf:2c:95:0a:ea:55:8a:
40:92:2b:ed:59:18:a7:e7:c3:af:3c:30:b5:b6:8a:
3f:a8:ce:26:d8:4b:a7:69:9b:1f:44:4d:11:95:fc:
b6:5e:de:a0:48:11:0a:5b:53:7e:85:2f:88:79:40:
1c:d8:3b:18:2f:bc:85:e6:b0:2f:03:8b:57:81:b9:
86:0d:0c:0d:93:5e:0d:6a:14:73:6a:15:ee:69:e2:
ed:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:E2:66:7E:80:09:00:17:DA:34:4D:5D:EE:08:F6:F6:CE:24:41:A3
X509v3 Authority Key Identifier:
keyid:8C:EB:23:E2:C5:D9:F2:C7:34:48:89:04:50:58:35:EF:28:09:FB:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jOsj4sXZ8sc0SIkEUFg17ygJ-zs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/699292-3da0-4772-af82-8334e362236d/1/m-JmfoAJABfaNE1d7gj29s4kQaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/699292-3da0-4772-af82-8334e362236d/1/jOsj4sXZ8sc0SIkEUFg17ygJ-zs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.159.0/24
Signature Algorithm: sha256WithRSAEncryption
99:80:d5:46:31:ce:c5:cd:d2:e9:53:a1:55:3d:ab:a6:7c:70:
e3:24:65:e1:cc:04:41:08:61:5f:78:af:a1:af:6b:fd:ed:6d:
6f:00:68:68:25:4f:ba:aa:15:cc:48:e3:38:e9:f5:54:1d:79:
11:56:7e:57:43:11:97:89:8e:9b:4c:7d:6b:61:ec:e1:60:17:
08:cc:3b:18:37:e3:1b:32:d1:4f:a5:e5:7d:03:4b:d4:fd:5c:
0b:ed:b5:d8:5a:a7:a4:89:82:66:55:8a:51:71:c5:0a:00:15:
b5:4d:bd:62:eb:57:43:40:3f:57:0a:fe:5d:91:bc:4f:69:f9:
e0:f9:84:78:02:73:27:6c:12:90:d5:10:89:c2:9e:6b:e7:4a:
a8:19:92:e3:ad:a5:25:af:b6:78:64:de:01:ea:d4:3a:79:41:
a9:7b:41:95:fd:34:0d:56:f9:a7:f8:5d:b0:54:97:20:94:66:
cc:b0:11:54:fd:45:6d:e4:0c:89:c3:e4:81:be:25:f7:f0:eb:
2f:f8:c2:4f:e8:41:2e:f7:3b:ff:c1:75:e4:a2:8c:17:cc:eb:
67:ba:23:d0:9a:90:fe:64:69:d4:0a:c9:f4:78:ea:44:bd:cd:
be:f0:a6:e5:39:44:a3:68:27:51:f9:5f:00:e8:1d:0a:c3:3b:
c8:9a:9e:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:32 2024 by rpki-client on console-fra.rpki-client.org