Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/xJiQymItvIywmJOd_SFnlOsZGZ4.roa
File: xJiQymItvIywmJOd_SFnlOsZGZ4.roa (raw, json)
Hash identifier: 4L8N/19qHXyGmfxxT7IREUq6Xs0pTDFpqPd9wdF/juo=
Subject key identifier: C4:98:90:CA:62:2D:BC:8C:B0:98:93:9D:FD:21:67:94:EB:19:19:9E
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018439BC42CE6B60C153AF8B71CA15568406
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/xJiQymItvIywmJOd_SFnlOsZGZ4.roa
Signing time: Wed 02 Nov 2022 19:05:49 +0000
ROA not before: Wed 02 Nov 2022 19:05:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44486
IP address blocks: 109.72.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:39:bc:42:ce:6b:60:c1:53:af:8b:71:ca:15:56:84:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Nov 2 19:05:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c49890ca622dbc8cb098939dfd216794eb19199e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:72:99:b1:5c:cf:7d:c6:21:d0:cf:55:80:1a:
57:2c:ce:92:45:6e:4a:cb:46:69:de:9e:3b:2b:f6:
bb:a8:07:e6:82:12:05:89:e2:0f:a9:9a:7b:88:14:
7d:2b:5c:7f:5d:7f:b0:37:92:7a:36:9f:d5:25:50:
d3:90:7f:17:65:64:8a:a5:ad:f2:aa:b3:05:82:18:
77:ff:2d:67:ff:0b:c6:99:2a:a7:e8:18:cc:14:52:
63:e3:66:88:ae:c4:79:81:f5:e8:e7:a0:23:48:1f:
9d:8f:10:ac:5f:b0:c1:37:72:22:1e:9b:81:d1:9c:
16:87:e3:56:f9:12:2d:e3:43:0c:43:98:cc:b5:f0:
e8:6f:d7:18:32:05:a9:95:0a:ca:1c:f4:62:1c:56:
20:61:63:52:ae:a5:f6:0f:72:31:8e:95:ec:e8:79:
d3:f8:6f:d3:81:5a:80:d8:12:62:0b:7d:4c:e8:8a:
11:3f:86:aa:15:6c:45:ee:76:5d:17:6b:c0:0f:62:
d9:ba:90:e5:a2:fa:05:dd:ee:35:90:91:52:e9:21:
b9:d2:68:ef:00:01:7a:75:a0:fb:02:11:20:a7:b0:
d2:b2:78:1f:f6:e6:60:14:05:05:85:cd:89:af:18:
ba:63:45:97:dd:6e:94:9c:83:a7:d7:f1:82:cd:66:
93:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:98:90:CA:62:2D:BC:8C:B0:98:93:9D:FD:21:67:94:EB:19:19:9E
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/xJiQymItvIywmJOd_SFnlOsZGZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.123.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:78:b6:4c:73:e1:7c:ce:72:3e:7b:d4:6b:82:ad:bf:7b:3e:
fd:e7:32:ab:97:22:66:09:4d:6f:46:9f:df:ed:60:69:6e:f8:
7c:fc:21:51:1b:d7:c4:10:d0:e5:13:70:67:2b:89:d0:d5:53:
cd:62:40:ad:e7:04:f0:7a:01:02:17:d8:e7:06:71:d8:5c:32:
df:f3:83:77:48:bb:54:10:19:04:46:b2:cb:60:d2:52:c6:0d:
17:5a:01:14:fc:6b:c9:50:99:44:4f:0b:b0:e3:1a:81:7d:2a:
07:9a:9a:7a:b3:ac:d9:17:6b:ff:76:20:76:9e:61:f2:6e:f9:
23:15:02:44:25:20:4a:76:33:7e:5b:1d:23:51:90:25:d4:c9:
7e:92:9f:ed:28:1d:ab:66:7d:6a:74:90:76:65:c9:14:b6:14:
e6:be:79:f6:ab:89:b9:aa:c0:48:dc:6f:0f:98:7c:35:50:52:
53:a1:f8:2d:69:fa:19:5e:76:cc:7c:f5:1f:2c:7e:08:43:66:
c3:71:88:29:b9:39:6c:70:af:eb:12:44:5f:89:58:36:12:f6:
40:61:6b:c3:b2:b0:02:d7:5e:1c:0c:5e:54:5d:98:8a:a7:7e:
0e:5d:18:ca:86:89:9d:6b:ed:6c:55:98:5a:fa:bb:31:6f:ae:
af:c7:da:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org