Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/P47GbsQ2N7qMcIX0mJUlAh5nnOA.roa
File: P47GbsQ2N7qMcIX0mJUlAh5nnOA.roa (raw, json)
Hash identifier: ZU1FbPt8F1V21Pt7Gd3wizbLwbS5I/026IPokQ78HOo=
Subject key identifier: 3F:8E:C6:6E:C4:36:37:BA:8C:70:85:F4:98:95:25:02:1E:67:9C:E0
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 1D4557C3
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/P47GbsQ2N7qMcIX0mJUlAh5nnOA.roa
Signing time: Tue 31 May 2022 07:04:14 +0000
ROA not before: Tue 31 May 2022 07:04:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 109.72.112.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 491083715 (0x1d4557c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: May 31 07:04:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f8ec66ec43637ba8c7085f4989525021e679ce0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ac:e3:0a:9c:27:2a:47:5d:4d:33:7f:24:82:
d4:60:08:1e:9a:8a:3f:50:a4:14:6f:bf:6a:02:b4:
08:46:67:6e:78:24:96:ad:bd:bd:04:b3:c0:e2:1e:
2a:01:60:dd:81:81:18:12:3d:d5:4a:1f:7a:84:08:
32:71:c6:62:0d:94:a2:17:9f:2f:6d:02:bd:51:16:
e9:a9:06:32:ed:a6:df:4e:1f:bf:ad:61:b9:0f:a7:
db:2e:97:32:bf:01:78:63:6d:ed:0c:8c:83:07:f1:
8a:a2:65:18:54:9f:bc:84:15:1f:2d:28:95:7e:74:
0c:3e:34:aa:e5:00:69:61:e7:03:f6:c0:96:47:be:
5d:d8:04:4b:0a:31:5f:b7:8e:78:84:0e:3e:fd:7e:
68:74:97:d6:87:83:6a:0b:da:c6:5e:cd:fe:b6:19:
0e:48:2b:36:87:bb:88:4d:e7:13:78:9a:84:53:81:
90:58:28:bb:53:21:d9:b3:6a:ff:eb:18:81:ff:5e:
36:ff:b2:e9:3f:e1:6b:4c:3e:0f:05:6c:12:66:b9:
ae:45:bb:a9:d1:93:d6:d7:f0:b9:5d:1f:83:9f:cc:
63:86:4d:77:81:88:58:89:6d:05:aa:b6:9c:ea:88:
b8:1a:73:c4:49:59:49:f5:93:2e:5d:72:a2:e8:3d:
cc:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:8E:C6:6E:C4:36:37:BA:8C:70:85:F4:98:95:25:02:1E:67:9C:E0
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/P47GbsQ2N7qMcIX0mJUlAh5nnOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.112.0/21
Signature Algorithm: sha256WithRSAEncryption
8e:a9:44:64:56:39:b0:27:e1:51:58:d2:61:b4:06:69:09:e0:
21:02:bf:7b:4d:11:1c:a9:25:42:4e:16:95:9f:47:26:26:59:
7d:6a:2f:bb:3a:a8:0d:60:fc:43:f2:e0:9d:b0:40:6e:11:ee:
d9:bc:ad:b0:6d:da:53:cb:db:47:c0:ae:db:d3:70:1e:ce:c7:
b9:5e:69:70:5d:0c:50:39:1f:56:ad:6a:ce:71:ca:d8:f7:7a:
b0:a1:2c:47:7c:68:6f:59:a6:47:d3:40:72:1b:a4:8c:e2:dd:
c4:70:ec:e9:9c:d0:15:c5:c1:a5:dc:92:6c:fd:d9:58:fd:bd:
f8:23:a1:84:3d:bf:17:0e:30:bb:57:10:99:53:81:58:f8:07:
bc:a5:79:e3:6d:90:1a:cd:ba:e3:2f:a4:70:22:a4:2c:e1:60:
aa:79:41:bb:95:98:f1:b9:f4:ab:7e:66:24:dc:2c:45:21:73:
fb:e7:79:18:9b:e6:b5:25:c3:64:06:1f:cd:0f:e7:a0:57:f9:
23:e0:db:d6:cf:8c:04:a5:dc:45:1d:7d:e5:e7:fd:3d:0f:a4:
e4:1a:89:44:07:0f:16:c0:83:2b:f8:b5:ab:09:35:29:a3:58:
dc:81:96:0d:0b:63:c7:4b:b6:c0:d0:88:2e:6c:52:74:3d:c9:
0a:92:21:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org