Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/6esSNeSaXHxeYjHBQHqoQqvWUG4.roa
File: 6esSNeSaXHxeYjHBQHqoQqvWUG4.roa (raw, json)
Hash identifier: GVpTfdBa2rHWW82xIsL/NrHUXNMFazg/TS2qQJrhfmI=
Subject key identifier: E9:EB:12:35:E4:9A:5C:7C:5E:62:31:C1:40:7A:A8:42:AB:D6:50:6E
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018321153CFB996F7708ABECCBFD1E6042C1
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/6esSNeSaXHxeYjHBQHqoQqvWUG4.roa
Signing time: Fri 09 Sep 2022 07:09:43 +0000
ROA not before: Fri 09 Sep 2022 07:09:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 109.72.124.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:15:3c:fb:99:6f:77:08:ab:ec:cb:fd:1e:60:42:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Sep 9 07:09:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9eb1235e49a5c7c5e6231c1407aa842abd6506e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:e4:b4:1c:b7:39:62:0f:c3:cc:4e:dc:c8:37:
75:5f:6d:77:49:f8:91:9c:60:a2:6c:96:3f:3a:cf:
e1:1b:37:2f:4f:39:66:f3:ab:67:57:ba:43:a8:97:
4a:53:7a:9c:9b:94:a2:f6:26:a0:a3:a1:ca:96:6b:
fe:f4:a2:63:97:8b:36:92:f2:52:f1:2c:c8:7f:67:
3c:56:d4:7f:3b:a7:04:4a:87:cc:10:20:b5:c3:b1:
00:c9:25:a9:44:4f:6d:65:b4:65:62:c4:9d:b9:71:
51:81:f3:15:ff:9c:42:f0:f2:b8:2c:01:42:b5:20:
e5:8f:fe:62:fc:a8:07:21:8c:fc:ac:2a:fd:6e:f0:
bc:dc:09:72:ba:70:f0:7c:34:ef:53:e0:79:a9:5b:
aa:5f:d2:c7:8d:80:c4:43:86:fc:51:d4:04:06:f2:
bf:33:40:6f:9d:95:d6:d3:b9:27:53:48:10:39:1a:
8d:ec:2a:b5:be:1b:df:2f:05:98:73:14:d3:ed:21:
77:44:30:3d:77:de:05:62:0e:ad:ea:e8:78:28:b0:
ef:d8:18:30:c4:ba:c8:3e:74:dc:8a:2c:65:90:a5:
e9:bb:3e:d3:49:09:61:61:42:2b:5e:c3:10:fc:43:
58:93:2e:ea:84:5d:97:3c:31:65:f8:ba:1f:04:8a:
be:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:EB:12:35:E4:9A:5C:7C:5E:62:31:C1:40:7A:A8:42:AB:D6:50:6E
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/6esSNeSaXHxeYjHBQHqoQqvWUG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.124.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:6b:e5:55:80:78:c0:6f:d4:d6:73:e3:43:e6:c9:12:8a:d2:
ef:33:1b:e1:97:c9:52:aa:2c:a7:85:c7:dc:63:66:f6:53:a3:
9a:57:8e:13:cd:a8:f3:74:7d:5b:ac:a9:42:14:ed:f2:85:bf:
1d:49:78:29:2b:3b:70:5c:19:f8:cf:8a:c6:b3:97:52:ee:f1:
5d:84:a6:a8:df:5a:35:9d:1c:80:15:a7:f7:f6:34:bf:e3:71:
67:7b:86:51:47:de:ab:f1:e9:1a:cd:52:3d:62:32:75:59:41:
11:91:0a:9f:05:90:75:bc:5c:c5:9c:6d:f5:17:87:75:81:2c:
36:e6:89:cc:b2:ea:6b:b7:5d:c3:38:8c:b6:ac:b8:f4:98:3f:
b9:a4:68:68:a8:3d:99:a0:f6:01:5b:fb:5a:c4:6f:fd:5d:aa:
24:8d:17:5b:3e:59:20:64:88:c6:a0:34:46:42:fc:97:ce:5d:
0d:ee:72:9d:56:f3:b3:c5:17:16:10:c8:c7:69:4d:3d:5d:4b:
7d:76:cc:92:24:0c:f6:27:77:94:e5:6c:5f:0e:72:ee:de:c0:
80:00:d9:5a:40:f4:8d:20:30:34:fe:12:34:e9:5b:76:b7:f2:
09:e5:fa:11:92:81:f0:b9:fb:1f:f6:91:e9:2a:88:e5:85:d5:
21:77:65:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:45 2024 by rpki-client on console-ams.rpki-client.org