Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/fadb3f-dc96-4902-86eb-19df5b4d1014/1/Xo9mNljCctiPQry27XXxgwtMjc4.roa
File: Xo9mNljCctiPQry27XXxgwtMjc4.roa (raw, json)
Hash identifier: kPd6pb5VBZYXgRVZRPhl3/5KPvncCXgPHgAHi3n7y+E=
Subject key identifier: 5E:8F:66:36:58:C2:72:D8:8F:42:BC:B6:ED:75:F1:83:0B:4C:8D:CE
Certificate issuer: /CN=e783b62ab8aea520770c57404be7771f679ec0b5
Certificate serial: 0A18985C
Authority key identifier: E7:83:B6:2A:B8:AE:A5:20:77:0C:57:40:4B:E7:77:1F:67:9E:C0:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/54O2KriupSB3DFdAS-d3H2eewLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/fadb3f-dc96-4902-86eb-19df5b4d1014/1/Xo9mNljCctiPQry27XXxgwtMjc4.roa
Signing time: Sat 01 Jan 2022 16:10:59 +0000
ROA not before: Sat 01 Jan 2022 16:10:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 109.95.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169384028 (0xa18985c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e783b62ab8aea520770c57404be7771f679ec0b5
Validity
Not Before: Jan 1 16:10:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e8f663658c272d88f42bcb6ed75f1830b4c8dce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:06:33:56:05:78:b8:6b:86:21:8e:30:29:59:
6a:6b:08:1d:40:22:e9:af:bc:cb:0b:98:7c:d2:3d:
78:84:f4:a2:80:9a:94:a5:a0:5d:34:09:c4:a1:42:
9e:02:d5:32:32:fb:cf:13:2d:a5:04:e4:4d:e5:ad:
9e:ce:3f:3e:4f:4a:55:64:7e:31:85:86:42:69:3e:
b3:6e:d6:cd:f7:2c:27:88:ba:ee:34:b6:fc:0a:18:
0f:ee:14:a1:b1:43:0f:47:3c:11:8a:a5:01:6a:6d:
af:dc:b5:b2:ab:6d:94:ae:55:a8:2f:02:60:1d:41:
0c:f6:9b:df:a8:d5:e3:30:5d:f3:68:cc:14:a4:82:
78:5f:45:00:f5:be:ce:c2:3b:0d:36:49:ab:81:7f:
ff:2e:1a:8d:b6:81:a3:17:65:25:5d:50:1d:e1:12:
fc:3b:ea:d3:eb:a8:33:71:02:8f:c8:41:3d:79:ae:
38:6e:d0:d4:ef:93:c0:1e:b5:a8:9a:d3:da:d0:cc:
14:ee:f5:dc:02:2a:52:18:dc:23:8f:1b:26:af:f9:
50:58:07:03:b5:03:19:ae:96:0a:67:b2:5e:e0:89:
4f:f9:4e:e0:17:b5:33:72:0d:cc:47:fe:d8:3a:cc:
3a:34:73:2a:7e:1c:c7:1b:83:e3:7d:9e:b9:e7:a5:
7c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:8F:66:36:58:C2:72:D8:8F:42:BC:B6:ED:75:F1:83:0B:4C:8D:CE
X509v3 Authority Key Identifier:
keyid:E7:83:B6:2A:B8:AE:A5:20:77:0C:57:40:4B:E7:77:1F:67:9E:C0:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/54O2KriupSB3DFdAS-d3H2eewLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/fadb3f-dc96-4902-86eb-19df5b4d1014/1/Xo9mNljCctiPQry27XXxgwtMjc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/fadb3f-dc96-4902-86eb-19df5b4d1014/1/54O2KriupSB3DFdAS-d3H2eewLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.95.191.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:8b:c5:08:d8:b9:ad:0e:d5:83:f9:21:85:c9:78:1b:39:df:
4d:ef:27:36:8d:94:45:0c:99:bf:d8:a8:c7:37:70:e1:b9:39:
c3:f1:ff:a9:a2:d4:ad:71:3e:9a:2e:2f:2e:50:0d:7c:ce:84:
6b:ca:b6:0b:a7:b5:b3:74:78:1b:2c:f4:7c:e3:6f:31:6b:76:
e5:19:33:64:09:dc:0a:eb:2e:13:6a:c7:7c:a0:18:89:d5:5c:
f6:fd:34:66:04:a4:18:73:e5:48:98:f3:0f:1b:d9:5e:54:b1:
08:70:16:14:6b:06:d3:5a:0a:9d:ae:53:b8:e8:6d:28:fd:0a:
22:91:eb:8f:01:e1:a3:fe:39:cd:9e:e7:11:1e:22:79:d7:88:
67:ea:72:c6:62:68:0e:82:d3:ad:f9:38:99:4b:a7:8a:61:e9:
04:17:93:35:39:ea:3e:48:9f:97:5a:22:f8:5c:ce:67:8b:72:
2c:39:e6:d1:a5:06:e6:f7:0e:61:37:55:31:0b:0a:cc:66:95:
4c:97:4d:ed:c5:0d:d1:57:ff:9c:7a:4c:7c:59:68:5c:6a:27:
ed:e7:cc:68:10:df:a9:b8:9c:ef:c9:1c:2d:f4:a0:09:df:43:
65:1d:f9:ac:53:ad:38:96:27:de:42:c2:4c:a8:18:50:19:66:
79:2c:37:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:24 2024 by rpki-client on console-fra.rpki-client.org