Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/SS-9ZHCNj_f6_i11-qLNer5jzzk.roa
File: SS-9ZHCNj_f6_i11-qLNer5jzzk.roa (raw, json)
Hash identifier: Hf72XN+frGwmvTZ9yhL8k8E/cYHzczz4Nhh5SUhc9fI=
Subject key identifier: 49:2F:BD:64:70:8D:8F:F7:FA:FE:2D:75:FA:A2:CD:7A:BE:63:CF:39
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 01848A2F731872474BBEC6A5986E8A5BAB6E
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/SS-9ZHCNj_f6_i11-qLNer5jzzk.roa
Signing time: Fri 18 Nov 2022 10:01:16 +0000
ROA not before: Fri 18 Nov 2022 10:01:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35758
IP address blocks: 109.122.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8a:2f:73:18:72:47:4b:be:c6:a5:98:6e:8a:5b:ab:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Nov 18 10:01:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=492fbd64708d8ff7fafe2d75faa2cd7abe63cf39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:27:9a:e8:17:9e:aa:f3:7f:12:48:62:36:69:
47:3a:ba:f4:cc:e5:29:78:f0:c7:5c:06:f9:5e:d6:
9a:96:b9:7e:2d:74:96:2c:f9:77:d4:c9:69:c8:c1:
00:ab:a8:ea:a5:35:4b:9a:5b:0a:a8:7e:e0:50:a0:
5b:dc:08:1a:d6:2c:e1:76:9e:70:0e:a9:62:3f:8b:
e1:e8:eb:83:75:17:e2:16:a2:e5:27:36:e6:bb:6c:
f1:3e:2d:c8:62:90:6e:6f:eb:4a:f9:e4:e7:71:c3:
71:51:30:5f:d1:1e:cc:19:92:dc:eb:1a:bc:29:b9:
5d:c1:41:d9:76:48:25:4b:08:f5:94:59:af:13:3e:
d7:70:46:16:a7:9d:ed:2b:25:fc:b9:31:d9:42:2e:
e1:19:fe:0a:9f:2b:44:7b:f2:d2:5a:42:83:31:ef:
74:da:e9:c5:21:88:d8:78:df:1d:ba:5f:02:9c:c1:
7f:cb:9d:3a:42:72:68:e4:cb:43:c9:0a:99:ea:bd:
91:e6:2c:0d:1c:48:3d:f8:a4:f6:0d:c4:07:99:76:
90:fe:c3:a0:1e:bd:16:50:b7:e2:e8:78:cf:2a:1f:
c9:a2:db:fe:d6:fe:ab:8d:4f:41:70:20:3d:7d:bc:
62:2d:78:49:a7:50:29:70:90:fb:15:95:54:4d:21:
f9:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:2F:BD:64:70:8D:8F:F7:FA:FE:2D:75:FA:A2:CD:7A:BE:63:CF:39
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/SS-9ZHCNj_f6_i11-qLNer5jzzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.40.0/24
Signature Algorithm: sha256WithRSAEncryption
90:b0:b7:7c:4b:54:d3:34:aa:4a:75:d5:e8:e5:4c:14:d2:67:
d9:a8:b6:13:f6:56:63:98:25:28:6d:20:2d:2f:9f:dd:01:84:
e1:26:9a:14:27:72:3e:31:89:46:7f:e3:f7:c7:0a:fe:a2:17:
6f:55:6f:73:82:54:5e:f9:3e:cf:b1:40:b8:0e:e5:a6:71:50:
67:5f:4e:6b:63:38:37:ac:bf:69:a6:36:5c:c3:b0:f1:e2:68:
ca:8c:24:56:5c:63:b5:32:53:9a:3a:7f:14:a5:dc:06:48:bc:
bd:d3:93:5b:c1:3c:1f:7b:91:89:e1:c0:a1:71:51:91:95:d4:
8c:46:da:df:db:94:e5:e9:96:e3:bd:c3:9d:08:b7:27:9f:63:
4c:2c:0d:7d:0e:1d:d7:ac:b6:12:b4:65:24:ba:7f:ef:66:00:
a5:d3:a3:7f:8d:15:e8:67:83:88:d0:ac:e0:66:bf:fd:9b:13:
b8:78:41:35:4d:72:91:4c:2e:fb:4f:10:23:d4:dc:1a:c5:2a:
ed:03:44:3f:6e:0c:ab:23:67:d4:3e:2b:6f:ba:c5:d2:c9:ea:
c0:5a:03:bb:73:fa:1d:d2:c9:d2:5e:3a:95:ee:44:30:f4:bd:
22:fe:f6:98:57:3e:16:9f:c4:a2:b7:42:12:77:90:3c:33:cf:
e9:7e:e0:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org