Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/5_N9U4-4oD30Pulrf4YObZL9z5Q.roa
File: 5_N9U4-4oD30Pulrf4YObZL9z5Q.roa (raw, json)
Hash identifier: WD950hJjBYfdHAZdfNBR/jxWvknoGCvGx1RJfWakPZo=
Subject key identifier: E7:F3:7D:53:8F:B8:A0:3D:F4:3E:E9:6B:7F:86:0E:6D:92:FD:CF:94
Certificate issuer: /CN=33c342c06aacc359d39439ff58defa8ea1875748
Certificate serial: 0E41EE49
Authority key identifier: 33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/5_N9U4-4oD30Pulrf4YObZL9z5Q.roa
Signing time: Wed 20 Apr 2022 06:37:56 +0000
ROA not before: Wed 20 Apr 2022 06:37:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198960
IP address blocks: 109.236.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 239201865 (0xe41ee49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33c342c06aacc359d39439ff58defa8ea1875748
Validity
Not Before: Apr 20 06:37:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7f37d538fb8a03df43ee96b7f860e6d92fdcf94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:3f:60:76:32:77:53:61:d7:08:b6:60:d4:a6:
3d:cd:18:db:15:73:05:b0:e3:26:e5:d4:f7:b4:1c:
8f:2e:4b:56:9b:13:de:ab:7d:01:56:7d:1a:7c:b9:
aa:12:8a:ec:b6:b3:57:01:46:59:48:c3:d8:e8:10:
ea:c9:84:6f:41:f1:f9:2e:ac:f8:9e:a1:2b:8d:2c:
df:c7:2c:47:d9:45:3c:b7:24:22:8f:a8:13:c3:2a:
92:7f:90:3a:79:c1:ba:e5:2b:1b:2d:6d:d4:16:a5:
a7:7b:50:91:36:ad:d0:25:1b:d6:02:15:da:41:5f:
63:fe:86:e3:c6:5e:a7:4e:a6:02:f0:e3:24:e7:c7:
98:c2:60:8a:c3:d8:39:aa:74:b8:6a:e2:45:a0:a7:
d7:1a:ba:e4:44:ac:11:07:cc:37:6e:2d:08:f3:60:
e9:d5:33:a0:8c:ad:df:5d:c7:1d:25:20:1e:62:49:
5e:d0:49:e1:6a:b3:da:28:36:c5:96:9c:95:e1:80:
7e:21:2d:6b:ca:1d:dc:71:d1:4c:33:a1:d7:8e:9b:
52:29:5f:39:07:66:bf:01:1f:b6:04:9c:50:eb:6e:
50:29:a4:b4:e9:f4:2c:7e:32:27:a8:82:c2:f4:1b:
e7:d3:6a:f5:ef:1e:98:bf:01:dd:7f:28:5c:81:7e:
e1:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:F3:7D:53:8F:B8:A0:3D:F4:3E:E9:6B:7F:86:0E:6D:92:FD:CF:94
X509v3 Authority Key Identifier:
keyid:33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/5_N9U4-4oD30Pulrf4YObZL9z5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/M8NCwGqsw1nTlDn_WN76jqGHV0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.236.246.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:29:13:6b:d4:f5:c1:34:02:97:47:71:2c:3f:c2:eb:f2:06:
24:b0:af:f1:64:f5:1f:0e:1c:13:2a:34:7c:88:f9:7a:2a:64:
6c:98:7f:fb:07:1f:77:cd:19:65:44:87:93:de:92:2e:7f:c3:
b7:f6:99:aa:2b:a8:6f:33:3a:35:a5:0f:0d:27:e4:3e:a1:3f:
cd:65:f7:50:3e:51:ec:b3:42:5a:0b:5b:bc:c5:e2:6d:eb:3c:
de:22:5e:44:1c:b0:58:d8:fc:b0:06:19:31:7d:13:19:ec:5e:
3d:e5:c7:99:03:c7:51:3d:d9:2e:79:99:1c:54:f8:96:0e:0f:
fd:57:2a:5a:15:4b:f3:6f:b0:12:0c:87:55:33:d8:0b:0a:e8:
86:62:30:85:74:3b:02:bd:29:df:f8:c8:9f:10:8d:e1:fb:02:
46:4f:9c:e5:46:e2:8d:37:d0:43:00:a5:4e:da:b5:ce:41:7d:
33:0e:b7:9b:b8:3f:bf:63:14:51:4c:70:cd:18:db:a2:3c:ba:
6b:23:45:ee:fc:bc:dc:cc:fd:5c:b7:b7:05:63:00:51:8a:9c:
8b:66:73:05:3f:08:c4:b1:5d:16:5a:ff:e7:39:40:fb:fe:f0:
71:64:f0:a4:c4:1e:1b:3e:25:9a:3c:8f:f0:67:a6:c4:84:43:
0e:f4:fb:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:28 2024 by rpki-client on console-ams.rpki-client.org