Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/6f895b-7977-445d-b72c-8b5ef41d8c25/1/E-KIHZF5BDTXIjRZ9sbBBxATfoA.roa
File: E-KIHZF5BDTXIjRZ9sbBBxATfoA.roa (raw, json)
Hash identifier: 48QEH8DfOgsxTHSmJKPrCw0abOO44Hezg1eiEpC8Azo=
Subject key identifier: 13:E2:88:1D:91:79:04:34:D7:22:34:59:F6:C6:C1:07:10:13:7E:80
Certificate issuer: /CN=2236b2b8afa6036d2c8e8317736faaa72d80c4f2
Certificate serial: 0C50E87A
Authority key identifier: 22:36:B2:B8:AF:A6:03:6D:2C:8E:83:17:73:6F:AA:A7:2D:80:C4:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IjayuK-mA20sjoMXc2-qpy2AxPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/6f895b-7977-445d-b72c-8b5ef41d8c25/1/E-KIHZF5BDTXIjRZ9sbBBxATfoA.roa
Signing time: Wed 23 Mar 2022 10:03:45 +0000
ROA not before: Wed 23 Mar 2022 10:03:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24725
IP address blocks: 109.70.105.0/24 maxlen: 24
109.70.104.0/24 maxlen: 24
109.70.107.0/24 maxlen: 24
109.70.106.0/24 maxlen: 24
2001:4130:107::/48 maxlen: 48
2001:4130:50f2::/48 maxlen: 48
2001:4130::/34 maxlen: 48
2001:4130::/32 maxlen: 48
2001:4130:18::/48 maxlen: 48
2001:4130::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 206628986 (0xc50e87a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2236b2b8afa6036d2c8e8317736faaa72d80c4f2
Validity
Not Before: Mar 23 10:03:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13e2881d91790434d7223459f6c6c10710137e80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d6:26:45:41:20:1b:76:82:4b:29:35:37:57:
0d:ff:3b:92:bb:44:77:d7:52:d4:6c:c4:cc:36:88:
1b:b9:3f:de:b2:1e:91:bc:ba:2e:94:b6:64:0a:a6:
a1:57:89:da:13:68:65:ce:95:30:c9:b7:92:e5:60:
eb:5c:08:cf:dd:e9:7c:f6:6e:cf:52:ae:dc:13:86:
80:be:60:38:ca:96:5b:cf:e5:cf:55:84:60:46:7a:
28:2d:d1:39:e7:91:ef:81:b5:bf:f7:13:9e:74:74:
b6:2d:fb:5a:9a:ca:9b:31:af:1a:85:ab:8c:ca:10:
d1:18:77:34:90:8e:e4:4e:d8:c1:e2:e4:72:86:0a:
8d:2b:fd:bd:5a:f0:96:83:58:9b:8b:6d:17:83:f5:
61:34:23:76:7b:a5:cd:ee:94:6c:91:9a:a3:7b:b7:
36:75:d5:a0:d5:0b:1f:da:35:d3:31:bb:5e:73:23:
0b:8a:0e:c0:f1:b6:64:0b:f7:a5:01:ea:ce:e1:dd:
78:4b:51:fa:bc:da:e5:3d:90:16:0e:63:31:a0:39:
eb:9d:de:07:b8:cb:0d:4f:53:51:97:fc:3f:57:cd:
a0:cf:84:6b:53:bf:04:17:83:cf:b6:3b:d3:af:21:
aa:c8:4b:70:95:16:fc:72:59:a0:07:24:3c:ec:d8:
d2:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:E2:88:1D:91:79:04:34:D7:22:34:59:F6:C6:C1:07:10:13:7E:80
X509v3 Authority Key Identifier:
keyid:22:36:B2:B8:AF:A6:03:6D:2C:8E:83:17:73:6F:AA:A7:2D:80:C4:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IjayuK-mA20sjoMXc2-qpy2AxPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/6f895b-7977-445d-b72c-8b5ef41d8c25/1/E-KIHZF5BDTXIjRZ9sbBBxATfoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/6f895b-7977-445d-b72c-8b5ef41d8c25/1/IjayuK-mA20sjoMXc2-qpy2AxPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.70.104.0/22
IPv6:
2001:4130::/32
Signature Algorithm: sha256WithRSAEncryption
03:9c:14:6a:64:8e:69:a7:d3:d3:3a:e5:5e:7e:51:3a:2c:9f:
76:29:f4:68:74:e2:fa:95:c4:6e:9b:9c:f8:23:ef:35:5f:c0:
38:84:5c:0b:a9:f0:b2:85:b9:5b:7a:86:63:25:aa:92:f2:65:
62:67:85:f2:49:21:de:86:2a:f2:03:c3:ca:90:aa:89:11:b9:
a6:b7:19:d1:2a:8d:0e:09:e5:16:0b:44:ce:26:53:94:76:23:
66:42:6c:9f:56:04:b9:67:fe:15:aa:a7:02:de:66:09:40:bc:
d6:a9:39:dd:00:04:85:9c:db:f4:1c:1c:8e:7e:cc:b6:1c:de:
fc:e2:87:73:5e:69:87:52:9e:05:9e:a0:0c:5f:3c:91:7e:8c:
a0:7e:d0:1e:fc:97:2e:79:d9:fd:84:95:c1:9d:85:67:42:41:
b1:11:1d:f2:ea:aa:1c:8e:40:51:fc:47:c8:ea:99:11:8c:f0:
6d:7e:7b:76:b0:bf:05:18:99:20:77:1c:d9:de:05:9b:50:40:
2a:1a:40:a0:0a:67:9e:f5:92:74:ec:fb:1f:76:08:12:5c:f4:
05:b9:da:cf:71:51:78:1e:23:aa:03:27:65:26:c0:58:50:68:
6a:3f:d8:50:ab:4c:f1:f6:a5:4e:34:b5:8d:2e:20:f9:5b:87:
76:97:90:67
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEDFDoejANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MjM2YjJiOGFmYTYwMzZkMmM4ZTgzMTc3MzZmYWFhNzJkODBjNGYyMB4XDTIyMDMy
MzEwMDM0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTNlMjg4MWQ5MTc5
MDQzNGQ3MjIzNDU5ZjZjNmMxMDcxMDEzN2U4MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALDWJkVBIBt2gkspNTdXDf87krtEd9dS1GzEzDaIG7k/3rIe
kby6LpS2ZAqmoVeJ2hNoZc6VMMm3kuVg61wIz93pfPZuz1Ku3BOGgL5gOMqWW8/l
z1WEYEZ6KC3ROeeR74G1v/cTnnR0ti37WprKmzGvGoWrjMoQ0Rh3NJCO5E7YweLk
coYKjSv9vVrwloNYm4ttF4P1YTQjdnulze6UbJGao3u3NnXVoNULH9o10zG7XnMj
C4oOwPG2ZAv3pQHqzuHdeEtR+rza5T2QFg5jMaA5653eB7jLDU9TUZf8P1fNoM+E
a1O/BBeDz7Y7068hqshLcJUW/HJZoAckPOzY0jkCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQT4ogdkXkENNciNFn2xsEHEBN+gDAfBgNVHSMEGDAWgBQiNrK4r6YDbSyO
gxdzb6qnLYDE8jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lqYXl1Sy1tQTIwc2pvTVhjMi1xcHkyQXhQSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTYvNmY4OTViLTc5NzctNDQ1ZC1iNzJjLThiNWVmNDFkOGMyNS8x
L0UtS0lIWkY1QkRUWElqUlo5c2JCQnhBVGZvQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTYv
NmY4OTViLTc5NzctNDQ1ZC1iNzJjLThiNWVmNDFkOGMyNS8xL0lqYXl1Sy1tQTIw
c2pvTVhjMi1xcHkyQXhQSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAm1GaDANBAIAAjAHAwUAIAFBMDAN
BgkqhkiG9w0BAQsFAAOCAQEAA5wUamSOaafT0zrlXn5ROiyfdin0aHTi+pXEbpuc
+CPvNV/AOIRcC6nwsoW5W3qGYyWqkvJlYmeF8kkh3oYq8gPDypCqiRG5prcZ0SqN
DgnlFgtEziZTlHYjZkJsn1YEuWf+FaqnAt5mCUC81qk53QAEhZzb9Bwcjn7Mthze
/OKHc15ph1KeBZ6gDF88kX6MoH7QHvyXLnnZ/YSVwZ2FZ0JBsREd8uqqHI5AUfxH
yOqZEYzwbX57drC/BRiZIHcc2d4Fm1BAKhpAoApnnvWSdOz7H3YIElz0Bbnaz3FR
eB4jqgMnZSbAWFBoaj/YUKtM8falTjS1jS4g+VuHdpeQZw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:32 2024 by rpki-client on console-fra.rpki-client.org