Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/c3d220-4985-4d19-8200-608097f18d83/1/ro-HXLGdxD6P4UZglg0rsAxNJKA.roa
File: ro-HXLGdxD6P4UZglg0rsAxNJKA.roa (raw, json)
Hash identifier: pfn00PB3IJp0r09euuLtgP60MZOpgasNsWbCESo0Ago=
Subject key identifier: AE:8F:87:5C:B1:9D:C4:3E:8F:E1:46:60:96:0D:2B:B0:0C:4D:24:A0
Certificate issuer: /CN=734c3511cbff092816418be477cb553d66b5b84f
Certificate serial: 04E5398C
Authority key identifier: 73:4C:35:11:CB:FF:09:28:16:41:8B:E4:77:CB:55:3D:66:B5:B8:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c0w1Ecv_CSgWQYvkd8tVPWa1uE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/c3d220-4985-4d19-8200-608097f18d83/1/ro-HXLGdxD6P4UZglg0rsAxNJKA.roa
Signing time: Sat 01 Jan 2022 07:58:55 +0000
ROA not before: Sat 01 Jan 2022 07:58:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31463
IP address blocks: 109.71.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82131340 (0x4e5398c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=734c3511cbff092816418be477cb553d66b5b84f
Validity
Not Before: Jan 1 07:58:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae8f875cb19dc43e8fe14660960d2bb00c4d24a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f3:89:a5:a2:f2:22:55:94:7c:04:48:ac:88:
e7:2b:bb:47:a7:2e:ce:ed:3f:f8:23:bc:16:f1:41:
6a:e5:2a:f7:09:55:9a:84:fe:6f:9c:24:4e:f5:8e:
08:e6:9f:97:cf:cf:6c:1d:be:a1:42:ec:65:fd:34:
c5:ad:b2:2a:a0:84:95:fc:8b:90:8b:61:21:e2:dc:
e6:b9:c4:8a:64:3e:01:dd:2b:8e:ae:45:35:aa:7b:
07:76:52:fc:62:3c:e8:55:db:fb:6d:5c:db:ab:9d:
fc:d3:5b:4b:82:6e:a1:9d:19:4b:23:23:53:6d:9a:
c5:33:82:6f:2a:7e:5e:fb:03:47:3f:f0:e1:2a:9f:
f5:70:fe:09:20:3b:60:66:d2:04:20:5b:da:de:7c:
86:33:94:a5:9c:f7:7c:eb:45:d3:9c:43:4f:7b:d9:
ab:f6:f1:0a:c3:20:50:5e:de:57:ab:2f:bc:b0:7a:
09:83:88:fa:a3:27:3d:da:4f:0e:6d:75:25:a2:ed:
a9:d0:86:67:9f:c5:d4:b1:79:64:ec:6b:a7:38:fa:
95:ad:36:7b:e1:9b:9e:5b:36:cd:d2:f2:0c:76:91:
5a:4f:c3:9b:0f:70:a9:87:fb:9d:53:3e:1f:2c:36:
9f:bd:1b:c7:e8:fb:fd:5c:6a:9a:c2:53:d7:00:56:
eb:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:8F:87:5C:B1:9D:C4:3E:8F:E1:46:60:96:0D:2B:B0:0C:4D:24:A0
X509v3 Authority Key Identifier:
keyid:73:4C:35:11:CB:FF:09:28:16:41:8B:E4:77:CB:55:3D:66:B5:B8:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0w1Ecv_CSgWQYvkd8tVPWa1uE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c3d220-4985-4d19-8200-608097f18d83/1/ro-HXLGdxD6P4UZglg0rsAxNJKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c3d220-4985-4d19-8200-608097f18d83/1/c0w1Ecv_CSgWQYvkd8tVPWa1uE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.71.78.0/24
Signature Algorithm: sha256WithRSAEncryption
00:43:da:37:07:2f:b7:ab:97:65:f6:d5:a0:27:36:e1:60:b5:
9f:0c:47:17:f7:91:23:23:40:47:c9:94:f1:c8:8f:4b:83:69:
e5:b2:21:2e:1c:56:10:89:d5:f9:5d:16:a7:5a:64:ba:b5:2d:
ab:9f:8d:17:d2:8f:c1:fe:f4:cd:15:78:07:5c:fc:52:40:4c:
5a:08:1e:89:cd:b1:1a:66:c0:7c:3a:ed:7e:5c:55:be:29:55:
f7:4f:29:c6:ad:f7:a7:d3:b7:b5:af:69:aa:c5:bf:78:3b:6c:
b4:8d:ae:17:39:55:ee:d6:36:d8:fa:7c:c0:cc:a0:02:2f:94:
15:36:33:8a:13:eb:21:d6:81:23:dc:6c:5f:32:4f:7b:02:83:
24:bc:bb:93:e8:fd:ed:e6:dd:3f:a9:b5:e5:15:43:1d:94:a6:
cb:98:f4:e1:56:9b:31:5b:86:ca:1b:74:6c:73:87:7b:c2:ff:
fd:da:13:7d:10:f0:a8:df:74:45:64:c0:4d:96:e3:82:b8:94:
79:2b:59:59:8a:c7:e2:31:43:98:76:f2:db:11:56:a5:57:df:
28:e6:b8:69:f3:b3:22:b7:c1:11:2a:c7:07:30:14:f5:4a:ee:
52:f5:74:40:79:9e:e7:88:00:f8:b3:c9:f9:05:fb:74:a0:bc:
45:88:2a:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:54 2024 by rpki-client on console-fra.rpki-client.org