Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/aVHebad9LwhFSED6WUc_FUAYjvk.roa
File: aVHebad9LwhFSED6WUc_FUAYjvk.roa (raw, json)
Hash identifier: mO2D5U5qF6UJJWqfyM/WBJqXCx52XNUCuLVbLSCu2/k=
Subject key identifier: 69:51:DE:6D:A7:7D:2F:08:45:48:40:FA:59:47:3F:15:40:18:8E:F9
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 01051B0F
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/aVHebad9LwhFSED6WUc_FUAYjvk.roa
Signing time: Mon 07 Feb 2022 16:44:22 +0000
ROA not before: Mon 07 Feb 2022 16:44:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212027
IP address blocks: 109.107.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17111823 (0x1051b0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: Feb 7 16:44:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6951de6da77d2f08454840fa59473f1540188ef9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:91:c5:eb:f7:df:ee:8f:98:8a:53:79:9a:ab:
c4:03:e5:bf:45:64:3b:c8:81:3c:85:12:61:5a:08:
9a:ff:cf:80:aa:5f:e9:7a:8a:e0:81:c3:93:0e:b6:
71:a6:03:68:7c:07:ea:d3:6f:1f:9e:4c:80:56:18:
7e:77:63:12:c9:34:4d:3e:6d:dd:12:79:a9:4e:6d:
9c:ef:7d:63:eb:5a:98:8c:04:64:60:d7:4a:9d:d3:
88:6f:25:ae:70:ff:54:3e:76:0a:3b:76:0c:de:1a:
06:e8:8b:95:ad:b1:44:4c:37:3e:78:ec:92:55:e2:
83:1a:c2:c0:99:33:85:71:e4:f0:d0:90:e8:44:43:
d6:3c:4e:1e:56:6e:10:b8:21:64:4e:1d:18:e7:56:
e5:e0:ec:8f:66:4f:b6:fc:1a:0c:2c:4d:65:d3:54:
c9:88:0d:d7:6b:94:81:f4:23:bc:49:51:14:9d:f7:
39:36:cc:34:1f:3b:93:1e:01:a5:b4:28:bd:f1:5e:
1a:84:2a:ec:1a:80:03:71:ae:b0:bf:d0:38:a3:cd:
b4:82:1e:25:9d:40:3c:28:4c:04:de:2a:84:6a:a0:
c5:8d:b0:90:74:9b:fd:19:75:3f:59:54:0f:44:06:
47:0e:24:81:74:0d:d6:27:b0:8e:7d:8c:a9:05:26:
61:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:51:DE:6D:A7:7D:2F:08:45:48:40:FA:59:47:3F:15:40:18:8E:F9
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/aVHebad9LwhFSED6WUc_FUAYjvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.107.132.0/24
Signature Algorithm: sha256WithRSAEncryption
04:9c:91:5e:db:5c:48:87:93:ae:1e:78:ef:36:48:b2:cb:6f:
06:95:90:c1:d2:5e:10:f1:13:65:82:95:42:5c:16:3d:18:74:
2f:28:81:f9:42:2e:57:48:47:db:c1:93:7d:d8:3f:12:06:b2:
50:ed:45:29:f1:fa:91:a5:da:13:ee:74:90:6c:6a:72:6b:dd:
43:f2:fe:ba:54:a5:96:be:9b:3f:b7:ed:63:db:96:8f:13:a2:
f2:69:a0:dc:bb:26:a5:f5:59:35:2d:98:f8:41:ca:00:af:a3:
7d:59:07:95:69:95:22:95:25:d9:b5:c4:f1:68:05:78:25:64:
c7:2a:20:86:fa:db:86:69:7e:90:fd:de:bb:2b:06:21:9f:ce:
61:9d:6d:ce:9d:fc:1d:65:0c:0e:71:2b:61:21:bf:b7:85:1d:
43:d4:85:b0:3e:e0:56:bc:66:4a:ba:3c:27:26:aa:7f:52:56:
b3:7d:be:73:ef:fd:7c:85:3c:4f:46:91:eb:77:60:8d:00:9f:
33:c6:49:48:8b:54:38:80:6f:18:96:95:31:e2:c2:53:e7:cc:
54:a1:b6:4d:b2:a7:60:39:6c:e6:21:a8:66:22:4c:fd:b1:49:
3d:86:fd:4b:27:4d:44:11:7e:23:3e:c1:be:48:69:d9:03:24:
42:f6:f4:16
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAQUbDzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MzYzYmI2NTg5NWYzYTU0YTRiMzI0YTEwYzc5YWM5OGVmZTJhMWNhMB4XDTIyMDIw
NzE2NDQyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjk1MWRlNmRhNzdk
MmYwODQ1NDg0MGZhNTk0NzNmMTU0MDE4OGVmOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKORxev33+6PmIpTeZqrxAPlv0VkO8iBPIUSYVoImv/PgKpf
6XqK4IHDkw62caYDaHwH6tNvH55MgFYYfndjEsk0TT5t3RJ5qU5tnO99Y+tamIwE
ZGDXSp3TiG8lrnD/VD52Cjt2DN4aBuiLla2xREw3PnjsklXigxrCwJkzhXHk8NCQ
6ERD1jxOHlZuELghZE4dGOdW5eDsj2ZPtvwaDCxNZdNUyYgN12uUgfQjvElRFJ33
OTbMNB87kx4BpbQovfFeGoQq7BqAA3GusL/QOKPNtIIeJZ1APChMBN4qhGqgxY2w
kHSb/Rl1P1lUD0QGRw4kgXQN1iewjn2MqQUmYYsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRpUd5tp30vCEVIQPpZRz8VQBiO+TAfBgNVHSMEGDAWgBRjY7tliV86VKSz
JKEMeayY7+KhyjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kyTzdaWWxmT2xTa3N5U2hESG1zbU9faW9jby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTcvZGI5YmYxLWUwMTktNDVhNC04NjYzLWE2Y2E0NTRkYjJkNy8x
L2FWSGViYWQ5THdoRlNFRDZXVWNfRlVBWWp2ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTcv
ZGI5YmYxLWUwMTktNDVhNC04NjYzLWE2Y2E0NTRkYjJkNy8xL1kyTzdaWWxmT2xT
a3N5U2hESG1zbU9faW9jby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG1rhDANBgkqhkiG9w0BAQsFAAOC
AQEABJyRXttcSIeTrh547zZIsstvBpWQwdJeEPETZYKVQlwWPRh0LyiB+UIuV0hH
28GTfdg/EgayUO1FKfH6kaXaE+50kGxqcmvdQ/L+ulSllr6bP7ftY9uWjxOi8mmg
3LsmpfVZNS2Y+EHKAK+jfVkHlWmVIpUl2bXE8WgFeCVkxyoghvrbhml+kP3euysG
IZ/OYZ1tzp38HWUMDnErYSG/t4UdQ9SFsD7gVrxmSro8Jyaqf1JWs32+c+/9fIU8
T0aR63dgjQCfM8ZJSItUOIBvGJaVMeLCU+fMVKG2TbKnYDls5iGoZiJM/bFJPYb9
SydNRBF+Iz7Bvkhp2QMkQvb0Fg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:45 2024 by rpki-client on console-fra.rpki-client.org