Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/USZGsQjRRLCbiFdS7vNCnsTO6DY.roa
File: USZGsQjRRLCbiFdS7vNCnsTO6DY.roa (raw, json)
Hash identifier: NgRQseSTJlST7QbgiBszDKnDCSKOF1wJ1HFbNOt851I=
Subject key identifier: 51:26:46:B1:08:D1:44:B0:9B:88:57:52:EE:F3:42:9E:C4:CE:E8:36
Certificate issuer: /CN=307d887c02e07c9e474d1f8e21049caa6ce3fbd3
Certificate serial: 0DB82CC4
Authority key identifier: 30:7D:88:7C:02:E0:7C:9E:47:4D:1F:8E:21:04:9C:AA:6C:E3:FB:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH2IfALgfJ5HTR-OIQScqmzj-9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/USZGsQjRRLCbiFdS7vNCnsTO6DY.roa
Signing time: Wed 09 Mar 2022 15:25:15 +0000
ROA not before: Wed 09 Mar 2022 15:25:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206874
IP address blocks: 109.74.82.0/23 maxlen: 23
109.74.82.0/24 maxlen: 24
109.74.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 230173892 (0xdb82cc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307d887c02e07c9e474d1f8e21049caa6ce3fbd3
Validity
Not Before: Mar 9 15:25:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=512646b108d144b09b885752eef3429ec4cee836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ba:fa:a5:62:93:76:5f:02:19:2f:90:e8:c4:
a9:1c:85:ac:4c:4f:b3:2d:93:6f:a5:ca:3d:b2:fa:
fb:55:46:18:e5:18:1c:45:ab:a7:59:b3:cc:be:84:
2c:3b:ec:98:3a:c7:40:9a:49:83:63:f4:7e:f9:04:
29:f6:77:78:15:84:52:90:01:b0:be:f1:46:0b:75:
ee:75:26:c3:b2:4f:7b:4b:8f:b1:31:27:f2:6e:80:
90:cf:6f:1a:3a:8f:b0:14:6e:28:6a:7b:0e:d4:dd:
3f:70:6b:89:93:8a:9d:bb:d1:08:be:05:47:0e:43:
76:1b:91:bb:87:ff:ff:10:b8:7b:83:a8:45:b5:02:
62:c8:62:23:54:3e:7e:a2:18:70:9b:9a:67:fd:73:
75:36:ae:b7:3e:2f:f8:f5:c1:72:85:6d:2e:a2:63:
6d:da:e6:00:17:d2:ef:05:a0:b9:64:7e:a7:f4:15:
52:29:92:96:7d:1d:a1:68:ba:ed:e3:b1:82:7b:6e:
eb:c1:48:04:fa:3f:a0:0d:29:f1:81:64:69:c7:dd:
b6:72:a7:8c:d4:43:84:59:b7:83:bd:6d:61:11:9c:
f3:40:6e:f9:6a:17:5d:2a:02:52:a2:55:cc:2a:1e:
d7:37:66:a0:d9:cf:1a:1c:1e:b8:09:de:a3:7b:ff:
38:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:26:46:B1:08:D1:44:B0:9B:88:57:52:EE:F3:42:9E:C4:CE:E8:36
X509v3 Authority Key Identifier:
keyid:30:7D:88:7C:02:E0:7C:9E:47:4D:1F:8E:21:04:9C:AA:6C:E3:FB:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH2IfALgfJ5HTR-OIQScqmzj-9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/USZGsQjRRLCbiFdS7vNCnsTO6DY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/MH2IfALgfJ5HTR-OIQScqmzj-9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.74.82.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:92:0a:ca:eb:92:a0:55:15:12:6a:c5:93:c2:3e:00:b1:63:
d9:84:79:8b:81:75:7c:c2:72:b7:e9:4e:d1:17:71:ab:84:91:
cc:2c:30:41:f8:de:57:c5:cc:fb:aa:dd:a0:88:8f:57:b0:6a:
77:b9:78:8b:42:5d:c8:74:f2:29:68:11:11:b3:9f:ee:ac:79:
af:ab:18:d2:92:7a:ec:7a:24:27:ef:7f:66:08:d5:46:ea:39:
ec:5f:ce:a5:e1:12:b4:f9:63:c6:e0:32:7d:cc:18:87:9b:33:
87:05:96:c1:41:3a:88:cb:ff:0f:83:df:fc:e3:69:8c:d8:48:
c1:7c:6c:eb:70:7e:47:cd:c4:ce:28:4e:81:a9:94:f0:41:23:
ec:05:a2:d1:47:54:01:bb:1f:61:84:fc:fd:56:96:d4:0c:28:
7e:e5:15:01:fa:72:58:ca:7d:ce:7a:84:42:57:85:81:89:9c:
26:a2:db:12:e8:8d:51:e3:70:2e:48:76:d2:1c:b7:ce:72:5d:
97:69:af:fc:01:14:d7:6c:38:a6:db:30:6d:c5:cd:fe:79:2b:
ad:8d:ad:6c:f4:a3:00:73:a2:fc:c9:fd:b2:0b:f1:ab:5b:1f:
41:fb:d4:7f:6f:fc:9a:25:b8:68:24:6e:e8:13:ec:f8:6e:09:
c7:37:bc:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:35 2024 by rpki-client on console-fra.rpki-client.org