Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/d282be-7ca5-400f-be84-cfab10d30693/1/_93JX-ByQU1aVF_RkzfyUcqa58Y.roa
File: _93JX-ByQU1aVF_RkzfyUcqa58Y.roa (raw, json)
Hash identifier: fs8GRHM9oLUwiXCUk065WzY9qOAu34hrlqJkf+jYSlM=
Subject key identifier: FF:DD:C9:5F:E0:72:41:4D:5A:54:5F:D1:93:37:F2:51:CA:9A:E7:C6
Certificate issuer: /CN=b5344218a4880b500c033321e76bd78b4f3c1658
Certificate serial: 06CD630F
Authority key identifier: B5:34:42:18:A4:88:0B:50:0C:03:33:21:E7:6B:D7:8B:4F:3C:16:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tTRCGKSIC1AMAzMh52vXi088Flg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/d282be-7ca5-400f-be84-cfab10d30693/1/_93JX-ByQU1aVF_RkzfyUcqa58Y.roa
Signing time: Sat 01 Jan 2022 05:04:33 +0000
ROA not before: Sat 01 Jan 2022 05:04:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34615
IP address blocks: 192.109.30.0/24 maxlen: 24
192.109.37.0/24 maxlen: 24
192.109.38.0/24 maxlen: 24
2a0f:6c40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114123535 (0x6cd630f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5344218a4880b500c033321e76bd78b4f3c1658
Validity
Not Before: Jan 1 05:04:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ffddc95fe072414d5a545fd19337f251ca9ae7c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:08:a0:b0:81:46:89:f8:2b:52:41:37:24:22:
24:b4:73:0d:30:d9:be:23:a7:91:d3:dd:17:92:aa:
f6:90:00:15:28:2b:d1:97:e8:f3:58:ef:2d:e3:00:
3e:c3:49:c8:f2:34:c1:47:32:9e:52:3c:f8:6d:2a:
0c:4f:cf:97:44:b7:fe:46:5c:14:3e:16:62:bf:91:
97:a1:6f:c4:73:45:94:4a:c1:6b:d7:6d:e0:e7:c3:
60:13:08:36:6f:ed:f0:00:e9:73:46:6f:2f:5f:f9:
40:7f:58:2f:f2:0c:d5:31:76:ac:d0:52:a5:84:1d:
2b:07:38:7f:0c:1e:39:6d:b6:70:c6:5e:8c:13:5e:
d4:66:be:23:d7:cf:38:51:a4:96:54:04:99:7a:bf:
55:17:4a:93:a1:44:bf:e4:71:c4:59:37:4a:39:86:
21:e4:d4:ff:62:5d:d0:14:df:d3:06:dd:61:d5:2b:
8d:00:16:0e:b4:83:10:a4:75:f0:06:66:f5:7c:d7:
b5:c9:a5:c8:fa:0f:8c:b5:19:ac:56:28:78:01:54:
af:08:7d:15:e8:14:7a:b5:f0:72:1e:e1:03:87:66:
43:fe:b2:db:45:a9:99:61:42:ec:cc:bb:9c:7a:ee:
e6:b8:c0:9f:6b:49:5f:86:ee:d9:62:d4:03:42:d2:
70:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:DD:C9:5F:E0:72:41:4D:5A:54:5F:D1:93:37:F2:51:CA:9A:E7:C6
X509v3 Authority Key Identifier:
keyid:B5:34:42:18:A4:88:0B:50:0C:03:33:21:E7:6B:D7:8B:4F:3C:16:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tTRCGKSIC1AMAzMh52vXi088Flg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/d282be-7ca5-400f-be84-cfab10d30693/1/_93JX-ByQU1aVF_RkzfyUcqa58Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/d282be-7ca5-400f-be84-cfab10d30693/1/tTRCGKSIC1AMAzMh52vXi088Flg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.109.30.0/24
192.109.37.0-192.109.38.255
IPv6:
2a0f:6c40::/29
Signature Algorithm: sha256WithRSAEncryption
05:84:1d:3e:74:a2:e7:ef:ff:dd:49:46:8a:0a:a4:4f:81:79:
d3:cb:b0:50:dc:83:c0:12:4d:a2:85:3e:ee:e7:73:fc:79:cc:
f2:55:82:20:2e:2c:bd:75:75:2e:78:2a:d6:fe:fe:57:9b:cb:
cd:71:51:dd:aa:e5:f1:4d:20:0e:df:98:9d:70:05:e1:ba:26:
83:c5:b9:18:d9:77:ff:79:5e:89:fa:bc:85:c5:40:14:9b:a8:
54:ae:a2:d1:b1:e4:14:23:2c:dc:dc:aa:90:7f:9f:23:ab:6d:
5a:31:bf:f6:a9:83:b2:c7:08:34:d8:2d:e2:36:9b:56:9e:a0:
e3:5a:f0:ba:7d:79:ff:b8:84:00:4e:0f:36:27:8e:3f:1f:24:
9d:05:90:48:ef:f5:95:66:32:e0:89:33:3e:4b:87:ca:26:a7:
ff:4c:e7:50:45:d4:6b:e5:48:ea:46:ee:6e:d3:05:65:36:2d:
31:db:2e:e1:f7:a5:1a:48:83:e4:1b:36:b0:dd:e6:9d:41:59:
45:96:77:a6:95:d7:03:44:52:b8:53:66:12:c4:34:d4:d4:e6:
7e:cb:a2:b9:a3:89:c5:51:02:7c:82:29:12:de:74:ff:50:3b:
c9:4a:aa:55:da:43:c8:d4:d6:0c:ff:5c:22:0c:bd:d8:9f:e7:
f1:18:d4:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:57 2024 by rpki-client on console-ams.rpki-client.org