Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/Ua4x1vywzy6vIFX18moTFlmF7r4.roa
File: Ua4x1vywzy6vIFX18moTFlmF7r4.roa (raw, json)
Hash identifier: /Ay9sxBuDdm1Ex4Z9JBZ54uis6ZbHayFNSkfvrEb2YU=
Subject key identifier: 51:AE:31:D6:FC:B0:CF:2E:AF:20:55:F5:F2:6A:13:16:59:85:EE:BE
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 01852FA120F87730FBAAB48DF551CDEDB8A3
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/Ua4x1vywzy6vIFX18moTFlmF7r4.roa
Signing time: Tue 20 Dec 2022 13:02:46 +0000
ROA not before: Tue 20 Dec 2022 13:02:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211373
IP address blocks: 109.72.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2f:a1:20:f8:77:30:fb:aa:b4:8d:f5:51:cd:ed:b8:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Dec 20 13:02:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51ae31d6fcb0cf2eaf2055f5f26a13165985eebe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1a:23:e6:08:1b:97:11:d1:ee:ed:2c:f7:63:
84:98:c7:f1:24:2c:f2:5c:34:3b:58:86:c1:e0:c6:
6e:06:b7:35:ba:17:e8:e6:9d:d5:9a:83:5b:75:8e:
fe:4a:74:2d:49:fe:75:96:39:f7:af:fc:8b:09:35:
f1:b3:58:7e:07:5f:ad:80:e8:f6:6b:c5:11:2d:6e:
67:cb:40:07:d0:cb:77:f4:cf:ff:bf:e0:59:63:b4:
93:b8:e8:03:88:74:cf:51:0f:c2:a0:3d:e1:7a:5e:
e4:69:29:37:c1:92:ff:8a:d4:60:25:38:1f:3a:7f:
e1:06:f4:7d:72:65:d6:4b:6d:39:99:49:72:fa:2b:
97:03:6d:58:05:10:d4:1d:78:3e:3b:47:21:13:d6:
cb:af:6c:62:56:55:2e:e6:2d:3d:61:33:c8:96:67:
4a:92:fa:8d:39:9f:2f:0b:da:07:b0:de:cc:d9:a8:
18:27:96:98:02:94:24:f3:6c:27:5b:d2:2c:77:13:
75:1a:d1:6e:80:81:15:c0:4d:87:8c:57:ee:4e:a2:
99:b6:ba:d4:bc:f4:e0:27:51:89:04:c1:ce:44:ee:
7f:56:d6:1b:4f:7e:60:54:10:b0:37:11:d3:f1:f8:
15:5a:ec:9e:e6:49:ac:70:83:2d:72:a8:2e:d8:4f:
d0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:AE:31:D6:FC:B0:CF:2E:AF:20:55:F5:F2:6A:13:16:59:85:EE:BE
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/Ua4x1vywzy6vIFX18moTFlmF7r4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.120.0/24
Signature Algorithm: sha256WithRSAEncryption
11:ea:ba:4d:66:90:dd:7e:47:0c:2a:a6:53:8a:b3:8b:86:8a:
e7:03:c6:e8:32:61:b1:c8:23:4f:1e:44:75:29:ee:77:56:57:
67:02:de:d1:4a:f9:c7:1b:70:39:4c:69:66:a6:8c:18:1e:fa:
9a:fc:53:0e:23:82:d1:9a:93:8d:53:b6:2f:6d:5c:09:99:de:
3a:42:ff:28:75:4c:14:21:a4:91:f0:c7:99:fc:0e:da:8e:20:
fa:4b:c0:aa:92:30:b7:8f:42:e6:1f:14:63:33:49:ec:4f:ea:
b3:3a:6d:00:7d:56:82:44:15:bd:50:07:0f:0e:20:c1:62:c1:
d1:bd:f6:14:ec:a1:e3:d9:6a:55:4c:55:f9:97:93:f1:4e:32:
29:2b:e0:31:70:15:4d:a5:17:27:d2:ea:cb:92:7c:84:e4:ab:
a9:9e:17:21:73:8f:72:d8:bc:47:40:2e:09:6c:6c:6c:37:e8:
00:89:16:ff:08:fe:56:db:32:8f:88:27:49:f4:19:a0:aa:6c:
8f:74:dc:b3:ac:ec:25:67:20:90:ab:d9:80:cc:d2:e3:43:6d:
f2:03:22:49:b8:e5:20:67:5c:5e:5d:8f:9e:77:1c:82:2b:54:
97:0e:3e:e4:0e:f4:0f:55:49:d4:63:96:a3:6e:49:71:b4:98:
ca:93:fb:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org