Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/3kTTBWghBE0LyjaxwR8El23bUak.roa
File: 3kTTBWghBE0LyjaxwR8El23bUak.roa (raw, json)
Hash identifier: 4JeYbNH+wtE0V2qzer0hu0DFq0chlFzIq9j3NH25j8g=
Subject key identifier: DE:44:D3:05:68:21:04:4D:0B:CA:36:B1:C1:1F:04:97:6D:DB:51:A9
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 01836522E117853A4F3460570D7640C8C4DD
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/3kTTBWghBE0LyjaxwR8El23bUak.roa
Signing time: Thu 22 Sep 2022 12:18:48 +0000
ROA not before: Thu 22 Sep 2022 12:18:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5089
IP address blocks: 109.206.250.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:65:22:e1:17:85:3a:4f:34:60:57:0d:76:40:c8:c4:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Sep 22 12:18:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de44d3056821044d0bca36b1c11f04976ddb51a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:62:a8:8b:ac:b9:a1:83:f4:9b:b4:fa:31:48:
f1:7a:14:43:4b:8b:62:7d:ec:fb:66:85:7a:e7:29:
6a:74:25:3f:0e:1c:6e:04:76:88:aa:2d:e2:af:8f:
aa:fd:ec:3b:80:50:7a:6b:6d:bf:de:bf:a8:71:5e:
47:12:ea:42:5e:58:8b:41:88:1f:15:39:a5:45:da:
75:21:82:19:ae:af:5e:0d:16:1c:3e:ac:91:21:98:
aa:69:ef:ca:4e:59:2e:e0:69:fc:ed:05:f1:d4:79:
49:85:fb:f4:cb:30:48:c7:5b:91:a0:16:6d:ce:03:
11:c4:df:21:ff:cb:89:dd:c5:84:a1:ab:47:c5:6e:
8d:7b:94:23:48:65:e6:ff:9a:ec:e4:ef:46:a8:18:
5c:f0:06:b9:98:5b:df:f9:4d:4f:b0:26:49:b6:5b:
9e:ea:c2:9d:b7:45:3a:66:fa:e1:c9:c8:a8:f9:ca:
1f:a9:30:3e:c3:67:b8:37:7a:b3:0d:0e:bf:f3:f8:
44:1f:c7:a0:a6:7b:2d:b5:60:c0:45:53:40:69:3f:
78:86:55:ed:99:cd:7e:a8:d6:ef:78:3d:33:27:5b:
32:d5:e7:64:e4:bc:4b:20:b9:7b:19:e2:3e:3b:15:
45:29:75:7a:a4:d0:8f:ae:3c:ad:75:c8:62:3f:2a:
60:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:44:D3:05:68:21:04:4D:0B:CA:36:B1:C1:1F:04:97:6D:DB:51:A9
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/3kTTBWghBE0LyjaxwR8El23bUak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.206.250.0/23
Signature Algorithm: sha256WithRSAEncryption
66:ee:95:63:3a:be:b3:45:23:bb:ba:2a:2a:3c:47:6c:56:99:
18:d9:67:90:e5:4a:6e:ed:79:23:6c:44:d8:c0:7e:05:73:01:
e6:c2:56:49:74:e5:ba:c7:5d:db:ff:71:7b:ce:43:df:4c:8f:
74:2a:68:d3:b6:1f:cb:27:a7:b6:4b:78:59:13:16:36:72:26:
cc:a3:d9:4b:e3:14:b8:0f:d7:86:53:af:ce:71:e3:ac:2a:f1:
ae:f1:5b:40:fd:19:ef:fa:64:54:77:dd:6d:f0:f7:3f:dc:b6:
3d:21:9f:8e:50:68:15:04:0a:fd:77:c2:77:68:3e:df:83:c7:
1c:6f:e4:2f:0a:cc:31:3a:c3:b8:06:e1:8e:e8:e1:cc:c0:c0:
d8:19:f3:57:d6:99:a1:db:f5:ae:92:3b:8d:20:14:c4:19:ae:
1d:56:15:84:95:ba:2a:02:79:9b:44:7f:14:44:71:8d:03:76:
30:2e:67:a0:9f:29:e8:9b:5b:2c:e6:3c:aa:e8:0f:03:ca:7b:
d6:8e:27:36:62:c2:3b:0b:80:6f:be:53:f0:27:b2:ce:5f:5c:
62:ab:33:93:bf:59:3d:ce:eb:29:7d:f3:2a:31:40:e9:45:25:
cb:59:ef:a0:92:62:e1:96:fa:4d:6b:8f:10:5b:80:da:96:dc:
24:fc:f1:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org