Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/615164-6d96-488a-96ba-d6e1e347f9c7/1/uARMSFfyWMagGRCpuwewB4qFJLk.roa
File: uARMSFfyWMagGRCpuwewB4qFJLk.roa (raw, json)
Hash identifier: 5e1rHyngkVSu+ZilIWHl51JWRmaemYbsAyUDd1AWTyw=
Subject key identifier: B8:04:4C:48:57:F2:58:C6:A0:19:10:A9:BB:07:B0:07:8A:85:24:B9
Certificate issuer: /CN=0af61798dd18965c027afa7f93ae030ff5e1d76e
Certificate serial: 0393E5A6
Authority key identifier: 0A:F6:17:98:DD:18:96:5C:02:7A:FA:7F:93:AE:03:0F:F5:E1:D7:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CvYXmN0YllwCevp_k64DD_Xh124.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/615164-6d96-488a-96ba-d6e1e347f9c7/1/uARMSFfyWMagGRCpuwewB4qFJLk.roa
Signing time: Sat 01 Jan 2022 11:01:58 +0000
ROA not before: Sat 01 Jan 2022 11:01:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5606
IP address blocks: 109.205.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60024230 (0x393e5a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0af61798dd18965c027afa7f93ae030ff5e1d76e
Validity
Not Before: Jan 1 11:01:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8044c4857f258c6a01910a9bb07b0078a8524b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f6:3a:28:99:87:64:66:39:ef:fb:a7:1c:ac:
0e:8f:07:f0:cf:42:37:23:84:8e:44:38:5a:d6:5b:
15:5b:96:dd:3a:1c:85:5a:dc:28:8c:b6:31:c3:e9:
31:94:f5:dd:6a:10:1a:bc:8f:01:da:64:55:3e:05:
e3:06:9d:29:64:f5:8d:ff:30:a4:0b:ef:ac:67:c0:
b5:0f:66:f7:67:99:92:fa:0e:51:19:4b:a0:13:f3:
3f:06:0d:bb:29:36:6d:a7:ee:81:c1:0d:b0:d9:7c:
54:5f:cf:3b:06:47:7d:8e:d8:1b:1f:4a:f0:9b:fa:
14:bf:d9:92:9c:32:39:32:b5:a4:43:49:7c:cf:7e:
ba:8d:1d:f4:f4:3e:be:9b:1f:52:25:7a:64:95:c1:
26:aa:a4:f0:82:38:bf:39:2f:34:23:27:7d:12:80:
27:fb:d6:00:bc:f1:5b:75:b5:0a:7a:bb:80:76:b9:
84:02:f5:42:aa:6a:0b:ee:ca:06:59:20:24:e6:a7:
6e:4f:94:49:ee:79:99:65:aa:67:df:e4:29:93:11:
f4:57:ab:3a:75:20:4c:f8:4f:39:30:bd:e1:4c:7e:
1b:33:d4:25:e6:27:80:a7:50:c9:2b:58:1f:c7:73:
bd:81:70:40:5a:4b:5c:09:cd:2d:a9:cd:ec:f4:7c:
ee:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:04:4C:48:57:F2:58:C6:A0:19:10:A9:BB:07:B0:07:8A:85:24:B9
X509v3 Authority Key Identifier:
keyid:0A:F6:17:98:DD:18:96:5C:02:7A:FA:7F:93:AE:03:0F:F5:E1:D7:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CvYXmN0YllwCevp_k64DD_Xh124.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/615164-6d96-488a-96ba-d6e1e347f9c7/1/uARMSFfyWMagGRCpuwewB4qFJLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/615164-6d96-488a-96ba-d6e1e347f9c7/1/CvYXmN0YllwCevp_k64DD_Xh124.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.91.0/24
Signature Algorithm: sha256WithRSAEncryption
71:70:6f:d1:ab:e0:de:9c:fe:bc:87:e0:06:e8:32:89:5c:67:
5d:0e:fc:81:ce:36:3d:3e:e8:b6:f0:80:35:b2:2b:ef:07:10:
63:50:40:45:0c:fd:d2:72:a7:23:fc:6b:da:83:59:bb:8b:2c:
94:2f:16:e1:f1:b1:b8:46:94:ab:27:64:bb:1c:83:6e:c3:26:
c3:ed:ce:b1:0a:bf:eb:52:ac:93:fb:45:33:83:09:e9:21:1c:
1c:90:6b:b2:59:49:1e:37:53:d0:98:73:10:ad:ad:f4:83:9e:
7a:01:89:eb:41:d9:0c:d6:48:58:7d:50:f3:b8:86:c5:f1:6d:
b9:aa:07:03:02:54:fe:e1:62:4e:6f:6d:43:86:d3:7b:c4:d2:
dc:8a:a2:7a:7d:71:7e:e5:f9:22:76:4f:2c:19:cb:0f:e0:a1:
05:a2:7e:f5:0a:ec:3e:06:f7:3b:37:c0:33:a8:62:82:80:6d:
5a:d9:bd:1e:5d:03:5f:64:d5:6d:3b:66:1f:88:e4:3e:26:ef:
1f:fc:39:2e:95:a5:fe:ac:a6:17:b4:72:80:a4:cd:b0:a4:bb:
f5:50:4f:97:67:48:d0:52:57:98:c4:2e:36:5b:13:98:27:49:
4a:3b:cd:b0:3b:79:8c:48:85:b5:ba:36:4b:aa:9b:ac:44:fa:
78:46:73:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:46 2025 by rpki-client