Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/v1QRdpziFw42J5e5qBdJOlREoEo.roa
File: v1QRdpziFw42J5e5qBdJOlREoEo.roa (raw, json)
Hash identifier: zlSZIPbRYEDJLr3f/a9WiqvtELmIAmf50i97nPXJzK4=
Subject key identifier: BF:54:11:76:9C:E2:17:0E:36:27:97:B9:A8:17:49:3A:54:44:A0:4A
Certificate issuer: /CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Certificate serial: 018463490DC1AC528702E9854302D001FFF5
Authority key identifier: 52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/v1QRdpziFw42J5e5qBdJOlREoEo.roa
Signing time: Thu 10 Nov 2022 20:44:02 +0000
ROA not before: Thu 10 Nov 2022 20:44:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44259
IP address blocks: 109.235.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:63:49:0d:c1:ac:52:87:02:e9:85:43:02:d0:01:ff:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Validity
Not Before: Nov 10 20:44:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf5411769ce2170e362797b9a817493a5444a04a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:62:e3:68:fd:b3:c4:8c:1e:86:82:40:4b:e8:
b9:95:e0:1c:8e:50:73:82:5b:d9:f4:a8:95:00:16:
c0:bf:d4:77:b8:77:bd:7e:ae:e8:b7:23:19:d3:a5:
9a:1a:dc:f1:48:e6:e8:f9:27:cc:cf:8b:43:70:fe:
c9:a1:6f:1c:3a:cb:88:b8:7f:be:7a:fc:93:0b:ed:
9d:b5:0e:c5:6d:0e:3a:46:6c:7b:63:ea:9b:c8:20:
b5:72:29:88:49:51:fa:dd:9a:b2:22:e5:cb:e8:56:
ae:2f:96:e9:ef:77:6a:f9:3a:83:cc:93:72:71:c3:
59:03:38:03:5d:66:a8:9c:a8:18:cb:2f:eb:48:96:
37:45:16:22:61:fe:4e:78:34:6b:3c:95:bb:f7:ef:
c2:76:e9:27:50:00:aa:00:79:9b:c1:c5:71:9d:47:
65:0e:86:c5:c1:2e:85:50:4a:d3:ac:8d:25:02:16:
a8:fa:65:56:a2:51:14:5d:2e:84:ab:38:b8:03:75:
ee:26:7c:f7:a3:f6:84:00:50:95:6a:1d:34:41:51:
38:1e:36:a6:13:38:87:f1:cf:8d:25:9d:41:21:56:
58:00:2e:e0:de:fb:f3:93:15:3d:85:b2:81:8b:47:
8e:50:95:12:3a:dd:ed:11:a0:f8:8e:68:8e:40:74:
f2:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:54:11:76:9C:E2:17:0E:36:27:97:B9:A8:17:49:3A:54:44:A0:4A
X509v3 Authority Key Identifier:
keyid:52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/v1QRdpziFw42J5e5qBdJOlREoEo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.235.55.0/24
Signature Algorithm: sha256WithRSAEncryption
12:f3:e7:5a:64:38:26:d7:8a:82:34:be:5c:f9:19:a0:09:12:
2a:41:0e:e5:71:44:7f:ae:c3:61:57:46:14:26:55:a0:4e:8d:
d1:f1:ae:1c:dd:09:72:bb:38:90:bf:69:5b:0f:2a:89:cd:fd:
b8:28:db:3b:48:b4:80:b0:06:e7:5a:96:73:84:a1:b4:68:67:
af:04:30:69:c1:ad:0d:76:e3:ad:73:09:aa:ab:45:f9:63:2f:
c8:3b:71:ee:6f:44:13:f2:8b:09:42:a1:20:e9:6a:85:f6:0c:
f0:16:de:82:26:9d:ec:8a:e5:24:fa:7a:5b:d9:8c:2e:da:2f:
c4:e5:94:b2:1b:7a:39:e3:b4:a5:01:d7:ca:03:cb:52:ad:4e:
fd:6a:b4:88:b4:1f:e1:3e:49:36:07:97:db:d1:52:72:f9:61:
1f:7b:1f:bf:7e:01:be:4b:0c:97:e5:87:6d:b7:e5:6d:08:2c:
fe:26:22:4c:b8:eb:fd:0b:bc:7c:bd:37:6d:7d:f0:7d:e6:a7:
ca:d7:17:83:3e:97:65:93:22:dd:34:99:53:2f:3b:c8:e4:e3:
a8:54:a5:f0:01:20:f3:25:5d:ee:f4:8b:a4:fd:3b:80:a2:67:
fa:af:93:5b:c9:3c:17:eb:8a:ca:9a:38:fd:a5:92:da:29:75:
b6:3d:11:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:40 2024 by rpki-client on console-fra.rpki-client.org