Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/11192d-1740-4e8e-9e04-ee379518c686/1/CKqzu6upAdjppBMa0z5HSlqVWNs.roa
File: CKqzu6upAdjppBMa0z5HSlqVWNs.roa (raw, json)
Hash identifier: Brd/zdOCT/Y6s4BgJLuNTphn8bg+H5+qH0EQuffvdak=
Subject key identifier: 08:AA:B3:BB:AB:A9:01:D8:E9:A4:13:1A:D3:3E:47:4A:5A:95:58:DB
Certificate issuer: /CN=2458f0a453b32ff3a21e66a31b74fe49d8e46a33
Certificate serial: 024A96DE
Authority key identifier: 24:58:F0:A4:53:B3:2F:F3:A2:1E:66:A3:1B:74:FE:49:D8:E4:6A:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFjwpFOzL_OiHmajG3T-SdjkajM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/11192d-1740-4e8e-9e04-ee379518c686/1/CKqzu6upAdjppBMa0z5HSlqVWNs.roa
Signing time: Sat 01 Jan 2022 04:56:35 +0000
ROA not before: Sat 01 Jan 2022 04:56:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50307
IP address blocks: 109.71.112.0/21 maxlen: 21
2a06:7c00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38442718 (0x24a96de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2458f0a453b32ff3a21e66a31b74fe49d8e46a33
Validity
Not Before: Jan 1 04:56:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08aab3bbaba901d8e9a4131ad33e474a5a9558db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e7:44:e1:b7:0b:c4:4b:9f:46:5c:2b:22:ef:
81:2b:24:33:78:a7:49:4f:19:39:8b:6b:46:96:23:
66:c9:6c:06:77:84:7a:58:95:22:64:e2:ff:e6:14:
d7:9a:80:29:fb:6f:0e:ba:5a:ec:20:0f:18:64:8e:
ed:56:6a:d7:45:76:85:1e:df:85:6b:b9:ea:dc:7c:
c2:00:b6:7d:a8:fb:8d:6a:42:3c:14:a9:af:a5:02:
45:88:fa:fd:e5:9b:3f:0d:b9:35:5a:2d:5c:43:ef:
98:dd:09:75:74:23:e3:7e:dd:27:11:8f:23:43:eb:
ac:22:80:d6:83:ac:5c:97:a6:35:89:bc:38:ce:db:
0d:38:99:6d:77:ff:89:09:c6:88:bd:55:60:72:25:
8f:e4:d0:d2:13:58:04:34:a1:d5:99:20:f3:a0:6d:
7d:71:96:72:d1:4a:bd:25:02:51:05:a0:9c:1d:3d:
a9:92:c6:b0:8c:fd:72:83:6c:ad:4c:62:c2:fe:68:
63:5f:1a:42:db:ae:b2:c7:d3:38:25:e9:17:c7:75:
9a:b6:9a:e3:c9:5e:ea:e1:66:14:41:20:05:29:00:
22:05:2f:3e:cd:5a:a7:a7:16:63:d3:46:c2:58:ce:
04:d8:fc:ed:e4:d6:e6:ab:87:2a:0f:4e:a7:38:f2:
24:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:AA:B3:BB:AB:A9:01:D8:E9:A4:13:1A:D3:3E:47:4A:5A:95:58:DB
X509v3 Authority Key Identifier:
keyid:24:58:F0:A4:53:B3:2F:F3:A2:1E:66:A3:1B:74:FE:49:D8:E4:6A:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFjwpFOzL_OiHmajG3T-SdjkajM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/11192d-1740-4e8e-9e04-ee379518c686/1/CKqzu6upAdjppBMa0z5HSlqVWNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/11192d-1740-4e8e-9e04-ee379518c686/1/JFjwpFOzL_OiHmajG3T-SdjkajM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.71.112.0/21
IPv6:
2a06:7c00::/29
Signature Algorithm: sha256WithRSAEncryption
5b:c3:ce:aa:a4:e4:05:0a:4e:d9:05:6b:13:e0:b8:3f:34:49:
3d:f0:8f:3f:66:71:ab:7e:2e:13:ab:24:27:65:76:54:99:b7:
fc:5e:ca:c8:ba:2c:3d:ee:7b:1f:04:32:65:3f:6b:38:10:a2:
1f:a7:5a:64:d0:f1:21:c8:8d:0b:66:50:21:1e:30:a6:41:5e:
6c:d1:50:8e:40:88:4f:8f:aa:e2:51:4b:20:74:d0:cb:5a:c9:
36:09:b6:d7:c0:87:7e:6f:9c:14:4d:d2:39:b4:0e:fe:50:73:
60:c2:e9:52:8a:5e:dc:e9:d9:63:dc:58:14:ab:d2:ef:e9:8f:
ea:56:fa:22:66:9a:3c:e9:fa:21:3c:35:b8:87:f7:ea:ef:7c:
4b:d3:de:7b:69:70:09:28:44:e8:af:98:da:ba:6e:26:f5:e7:
56:26:20:f5:12:27:0b:f9:1d:50:54:d1:13:d0:89:ba:2e:d1:
03:db:82:d3:3b:8f:1b:09:f7:0a:c7:f6:1b:50:e2:7d:2c:e5:
f9:6c:a2:d6:a2:5d:8e:93:12:75:08:3c:e9:35:ba:5c:31:2b:
21:43:34:9f:1c:a6:f1:9c:7e:6c:14:08:9e:2d:8c:82:01:e1:
b6:99:e6:35:74:07:a0:bf:da:30:a2:f6:91:7d:5b:b4:c8:5f:
12:89:7e:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:40 2023 by rpki-client on console-fra.rpki-client.org