Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/9D9jR3BIDYmSuLrtEXVIhi4G26g.roa
File: 9D9jR3BIDYmSuLrtEXVIhi4G26g.roa (raw, json)
Hash identifier: NNx4k1j4/Sf/DTlf6T88JkRpIeUjd+XVVHc5lbX6UoE=
Subject key identifier: F4:3F:63:47:70:48:0D:89:92:B8:BA:ED:11:75:48:86:2E:06:DB:A8
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 0181E19A27CA2183CCFDA2AB08813D51F7C0
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/9D9jR3BIDYmSuLrtEXVIhi4G26g.roa
Signing time: Sat 09 Jul 2022 06:16:25 +0000
ROA not before: Sat 09 Jul 2022 06:16:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 109.107.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:e1:9a:27:ca:21:83:cc:fd:a2:ab:08:81:3d:51:f7:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: Jul 9 06:16:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f43f634770480d8992b8baed117548862e06dba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:08:85:a4:86:0c:cc:16:56:df:d0:5a:8c:85:
71:c4:ea:c8:53:c9:95:d0:5c:70:38:98:82:ee:ee:
a0:65:52:5d:47:e7:5f:13:19:40:7c:06:2e:d4:0c:
5e:6a:b5:c8:56:0d:18:5e:ee:f0:f2:24:2c:25:76:
2d:6c:f4:3e:82:5c:99:15:a4:5d:28:5f:22:e3:40:
36:af:5f:7b:99:b8:5c:12:cd:2f:df:69:45:eb:10:
13:f0:5f:a9:7e:f1:12:10:c1:a1:c2:b2:7a:f5:db:
b4:49:32:d4:c0:eb:09:a9:3e:3a:64:15:01:25:5f:
75:7a:ab:d5:60:18:42:5a:ab:a0:2d:f4:d5:b2:be:
79:b3:18:92:dc:a6:41:1f:ae:df:18:24:9e:be:4f:
57:af:65:ba:05:a7:c3:b2:27:be:11:dc:23:aa:51:
68:1e:65:b7:64:c1:80:d5:b0:97:13:4d:50:d2:16:
11:7c:ee:0c:e3:7f:4c:b6:89:ee:19:c6:5c:44:f2:
40:2f:73:68:87:6c:cf:88:89:4f:ee:c6:bc:3d:5f:
62:00:a6:4e:a0:57:9b:f7:20:7a:28:f7:ab:ee:20:
18:d7:95:5e:d1:81:e0:88:05:b3:ac:fa:ed:4f:b7:
6d:23:d8:58:2e:3f:8b:ed:e6:16:32:0a:36:bb:b2:
fd:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:3F:63:47:70:48:0D:89:92:B8:BA:ED:11:75:48:86:2E:06:DB:A8
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/9D9jR3BIDYmSuLrtEXVIhi4G26g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.107.132.0/24
Signature Algorithm: sha256WithRSAEncryption
91:13:14:ac:49:76:ec:cd:7f:67:d6:69:f2:17:02:f2:08:b8:
49:1d:52:b5:06:c5:7e:39:6c:4e:9e:05:f8:20:fc:60:60:15:
b8:66:5e:90:d0:2b:32:72:89:39:8a:e1:32:74:3d:5c:8a:26:
fa:fc:b1:e5:f1:f8:7c:fa:19:0b:07:c2:fd:f6:29:a2:98:74:
13:ad:e0:77:c0:3c:1c:08:ac:d3:17:2b:b6:63:7a:b9:e9:35:
8a:b6:38:71:2f:1a:c3:70:56:83:98:d8:82:bf:e2:10:61:57:
fa:e8:a6:5d:ec:78:9e:33:09:48:be:dd:5e:17:62:fe:3a:ed:
4c:9a:e3:78:d9:bf:85:3f:b1:26:eb:68:fe:9b:30:5e:66:69:
91:88:5e:af:b8:5f:f3:ee:fd:25:a0:36:f0:97:87:3b:f8:0a:
c9:12:9e:d8:48:1a:2b:d2:ce:13:9a:61:6e:f7:df:f2:6a:1f:
05:9e:d8:06:4a:3f:a1:7a:c8:54:a9:c5:e7:c2:b2:e7:9c:c4:
45:b8:fa:fc:aa:1c:b5:3e:91:cd:ba:ca:ed:24:e0:25:26:96:
1f:67:e5:c2:02:5c:09:ab:7a:4c:64:a9:44:eb:e2:e0:d6:fe:
f4:97:83:80:be:5c:f1:ec:0f:93:22:1f:14:6b:78:23:21:55:
26:c6:27:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:38 2024 by rpki-client on console-ams.rpki-client.org