Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mIC8pQd36WLw7vqNAHvkuOsADeA.roa
File: mIC8pQd36WLw7vqNAHvkuOsADeA.roa (raw, json)
Hash identifier: BNC0UCs2/ILFOj2Wct3Omi4cxLqgX+4lko4j97yyqZ0=
Subject key identifier: 98:80:BC:A5:07:77:E9:62:F0:EE:FA:8D:00:7B:E4:B8:EB:00:0D:E0
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 1CFB732B
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mIC8pQd36WLw7vqNAHvkuOsADeA.roa
Signing time: Mon 02 May 2022 08:06:00 +0000
ROA not before: Mon 02 May 2022 08:06:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 109.72.124.0/22 maxlen: 22
109.72.120.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 486241067 (0x1cfb732b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: May 2 08:06:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9880bca50777e962f0eefa8d007be4b8eb000de0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:58:91:6b:43:8f:d6:4a:05:3a:81:6c:c5:e0:
dd:72:8b:6a:5b:b7:f6:2e:21:b0:42:94:10:ab:61:
fb:41:8b:f0:e0:8b:d4:f0:55:cf:e6:24:c6:40:f4:
76:2a:0e:79:da:bc:3f:f4:6d:59:bf:5d:ec:4c:17:
94:00:32:f5:0c:49:58:d3:5d:61:24:da:e2:9a:c8:
bd:8a:88:3e:80:e3:dc:7a:f4:8a:f0:63:5e:88:01:
d8:1e:7c:a0:16:02:cd:08:f7:33:43:9b:8e:d8:8f:
19:23:ff:29:a0:0d:9c:59:09:3a:f7:d3:1b:5d:da:
58:60:38:fd:d1:85:ab:8a:de:2b:eb:aa:df:cd:0a:
16:7b:c4:f2:d1:f7:0b:3a:12:f1:5e:0b:8a:e0:30:
ad:63:04:ce:1b:60:77:d2:16:13:fd:4d:dc:88:ff:
fb:6a:53:ef:4e:02:85:4a:07:2e:f7:04:30:cb:1f:
64:a8:ba:e7:ca:95:72:48:5d:17:4c:1a:23:b2:04:
3b:1b:2f:cd:26:51:2a:fd:9c:e3:53:6d:58:28:06:
27:4a:3c:bb:c8:3e:55:33:3c:e8:44:ed:5a:51:04:
97:a9:0d:e9:e5:12:42:6c:c9:51:16:d7:e5:eb:e7:
26:5c:77:fa:76:1d:d8:a5:17:9a:12:be:df:85:46:
39:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:80:BC:A5:07:77:E9:62:F0:EE:FA:8D:00:7B:E4:B8:EB:00:0D:E0
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mIC8pQd36WLw7vqNAHvkuOsADeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.120.0/23
109.72.124.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:7f:04:2d:c6:7c:94:14:97:98:d0:92:83:3f:74:2c:84:f1:
77:56:70:c9:06:bf:6d:4b:c3:12:2c:7b:2a:70:3d:5a:bb:aa:
be:a4:0a:8e:af:61:dd:5b:3e:cf:c9:a4:79:35:f0:5a:65:79:
c1:e7:83:4a:12:7b:ad:56:04:e4:13:4b:7d:a0:d0:a8:45:cb:
df:3e:b4:54:81:e0:e5:e2:0e:16:c0:10:ff:83:03:35:d4:be:
ef:a2:ba:3b:5c:03:47:22:82:bf:95:c2:c8:e3:53:1a:be:ad:
0e:f3:c5:e1:42:b6:13:46:9b:a0:e6:5b:03:28:c6:80:fb:fd:
a4:5e:e2:90:e0:d0:1a:d6:08:a4:e4:d9:d8:64:c6:85:5b:4d:
75:10:1a:ab:3a:69:a5:b8:16:42:ce:19:3e:9f:73:28:18:6a:
c3:3b:c2:2f:60:d8:fd:db:5b:83:cf:42:12:14:5f:ba:1d:c6:
20:11:f0:f0:a2:51:bb:eb:fe:2d:51:33:07:45:12:8c:0c:f8:
7e:63:cd:29:1d:a8:a4:c5:31:cd:78:12:c0:a7:23:b5:1e:24:
dd:d8:f8:00:51:f3:47:b4:e1:14:27:0f:fe:88:a7:f1:4e:5f:
25:7b:4d:8e:d3:8a:e7:9f:0e:7b:7d:4c:5c:08:40:43:17:84:
1a:82:ee:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org