Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/PtDbLovSPubT3YFfQ4axGS7AyHg.roa
File: PtDbLovSPubT3YFfQ4axGS7AyHg.roa (raw, json)
Hash identifier: mRDLKNEkYKurJiy8VJ9a32G6qlMfrCuCSOqcp6HNqd4=
Subject key identifier: 3E:D0:DB:2E:8B:D2:3E:E6:D3:DD:81:5F:43:86:B1:19:2E:C0:C8:78
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 010F6608
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/PtDbLovSPubT3YFfQ4axGS7AyHg.roa
Signing time: Fri 11 Feb 2022 08:37:54 +0000
ROA not before: Fri 11 Feb 2022 08:37:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 109.107.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17786376 (0x10f6608)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: Feb 11 08:37:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ed0db2e8bd23ee6d3dd815f4386b1192ec0c878
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:86:55:80:d1:68:04:c8:1e:87:91:06:6d:b2:
cd:9f:94:aa:a3:4e:fc:9f:da:7f:68:5e:0f:d2:9b:
3c:35:b3:68:61:89:0d:86:b0:41:3c:23:84:b2:b0:
55:fc:a7:06:12:13:fe:0f:92:ee:a8:82:3c:60:7d:
2a:db:1f:6f:2b:45:e8:c9:4c:ac:c0:0d:ca:91:62:
2f:12:42:2a:0c:a5:f5:9d:f5:c9:81:31:53:6a:71:
e9:24:f7:b2:be:1f:28:52:70:53:e4:3b:b3:d5:50:
0b:8f:c1:c1:cc:f2:c1:de:97:54:87:48:7d:c4:95:
a6:ca:b4:20:ed:62:bb:f7:04:ff:56:60:d8:10:c5:
88:37:46:dd:ab:1f:c9:9c:db:43:ad:88:a0:06:23:
3a:82:03:bf:ce:fd:10:bf:46:be:ab:2f:fb:36:73:
4c:2c:9b:5b:8c:2e:7a:e2:1c:41:23:8d:2c:05:85:
65:64:06:b9:71:93:96:73:38:78:28:3d:b2:07:e3:
68:93:e4:0d:d9:a4:1d:8c:fb:b4:5b:5e:a8:47:20:
b6:1e:37:3e:59:e1:e7:b6:f8:75:0d:93:bf:f7:a8:
06:c7:07:87:d0:aa:93:8b:60:88:a3:29:f3:a9:85:
10:31:e3:b9:c3:c5:49:36:c0:2e:ab:0e:17:b4:e9:
96:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:D0:DB:2E:8B:D2:3E:E6:D3:DD:81:5F:43:86:B1:19:2E:C0:C8:78
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/PtDbLovSPubT3YFfQ4axGS7AyHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.107.132.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:a8:4e:37:4b:c4:d9:9c:fd:b6:8b:2d:cd:34:e9:c3:6d:05:
fc:3a:c1:f9:20:d9:3d:65:c1:8d:80:29:1a:d0:91:8b:80:81:
1e:b4:9a:85:17:02:ab:42:15:45:c2:f2:a9:f1:26:29:5d:2c:
9a:85:af:6a:5e:6e:f6:c1:36:e1:36:0c:72:02:be:e1:35:60:
39:51:35:9f:62:46:e3:11:2b:b6:ef:57:d7:c1:e7:31:6b:67:
46:de:3e:ce:30:b2:10:60:9a:0a:92:52:16:ed:53:59:05:88:
21:e8:2c:c4:d4:6e:17:dc:fe:0e:e9:f5:44:02:f9:46:4d:e5:
d7:92:54:d8:fe:82:8f:dc:19:ec:06:c8:1c:4d:c8:9b:7f:57:
72:b2:33:9f:38:da:f5:48:84:8a:f1:10:7b:dd:93:1e:86:73:
96:7d:b8:68:57:08:10:e4:33:1e:d9:3a:fc:5f:75:3c:77:a9:
69:8f:79:13:61:e2:ce:43:19:f7:54:da:7b:9b:f5:3b:0f:95:
16:c5:fa:7d:92:37:7c:f7:be:5e:38:d8:0a:9f:8c:3c:2a:30:
22:ec:04:c1:36:10:a3:90:6e:58:1d:ef:35:54:3a:56:be:2d:
e7:66:cc:12:9c:e2:df:e2:14:18:16:dc:01:7b:e8:13:a7:6e:
21:e7:7b:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:45 2024 by rpki-client on console-fra.rpki-client.org