Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/evbDNODenlj9pLRHjr2tgVUOEtg.roa
File: evbDNODenlj9pLRHjr2tgVUOEtg.roa (raw, json)
Hash identifier: +vTdHjma8P5XYu54pTIsJGLWYGXJ7hLwuTB8bRLVJ6o=
Subject key identifier: 7A:F6:C3:34:E0:DE:9E:58:FD:A4:B4:47:8E:BD:AD:81:55:0E:12:D8
Certificate issuer: /CN=56e3353d5f423ad4271c3261caa543140530bddb
Certificate serial: 01825AB58C140965E6599D3CD2C3817D3E0B
Authority key identifier: 56:E3:35:3D:5F:42:3A:D4:27:1C:32:61:CA:A5:43:14:05:30:BD:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VuM1PV9COtQnHDJhyqVDFAUwvds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/evbDNODenlj9pLRHjr2tgVUOEtg.roa
Signing time: Mon 01 Aug 2022 18:40:23 +0000
ROA not before: Mon 01 Aug 2022 18:40:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40995
IP address blocks: 109.111.160.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5a:b5:8c:14:09:65:e6:59:9d:3c:d2:c3:81:7d:3e:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56e3353d5f423ad4271c3261caa543140530bddb
Validity
Not Before: Aug 1 18:40:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7af6c334e0de9e58fda4b4478ebdad81550e12d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:27:ec:1e:06:2b:76:00:c8:1d:40:ab:1a:87:
a0:f4:11:4c:3a:7f:14:55:5e:7e:91:0a:00:40:3c:
9f:41:2e:96:04:52:9b:b9:40:77:92:e2:f8:89:a6:
fc:87:e2:4e:c8:dc:de:44:e9:2b:22:ec:a5:10:1e:
65:e4:a1:83:21:aa:5f:27:a5:d9:40:cf:4e:12:1a:
ff:5b:c6:d8:03:f7:51:42:2d:6d:76:4e:22:1e:03:
0c:1f:e4:66:d3:67:37:04:57:bb:23:77:6f:6a:29:
e7:84:73:77:3b:4e:29:5b:57:4d:f8:fd:e3:75:a5:
e4:b8:28:2e:cd:ab:03:01:03:56:07:ec:15:2f:78:
ae:31:b3:fa:e2:ad:1d:e7:43:e7:8f:2f:b2:59:3f:
8b:23:49:e5:1e:b7:60:f1:fe:26:44:25:7e:7c:7d:
79:48:33:f1:32:10:1b:e0:3c:b7:48:a2:c7:41:fe:
84:05:33:c6:3a:bd:6e:d7:35:f9:9d:37:27:7d:37:
ca:ba:47:fd:49:5f:82:9c:c6:68:1d:8d:a9:6e:3c:
5f:2f:14:c3:64:cf:ff:9c:85:cb:66:82:d0:43:06:
2f:9e:88:2f:9d:78:61:c9:f1:61:27:6d:77:96:aa:
43:4f:88:fe:9e:43:d0:46:75:9f:0d:4c:29:a2:f8:
3e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:F6:C3:34:E0:DE:9E:58:FD:A4:B4:47:8E:BD:AD:81:55:0E:12:D8
X509v3 Authority Key Identifier:
keyid:56:E3:35:3D:5F:42:3A:D4:27:1C:32:61:CA:A5:43:14:05:30:BD:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VuM1PV9COtQnHDJhyqVDFAUwvds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/evbDNODenlj9pLRHjr2tgVUOEtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/VuM1PV9COtQnHDJhyqVDFAUwvds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.111.160.0/20
Signature Algorithm: sha256WithRSAEncryption
39:66:92:f5:12:a8:61:41:de:a8:d3:1f:43:e4:77:5d:5f:ad:
6d:79:08:f6:6f:f8:30:5a:7b:8c:cf:5c:29:1f:c2:32:2a:89:
11:e4:e1:b3:3f:03:62:a7:2a:47:ce:4c:31:67:9b:95:4e:03:
4d:e5:c3:f9:98:d0:5b:57:0a:6b:26:04:1e:9a:bd:53:83:6b:
18:29:3a:bf:b6:eb:2c:8c:35:d6:c3:71:8a:7b:8e:81:a2:c7:
8a:b1:d0:78:57:89:d3:67:3c:e5:2c:62:6b:c3:85:e1:74:52:
ac:ed:83:cf:c3:cc:bf:ff:31:d0:38:05:c0:fc:99:82:d5:d5:
d8:33:13:f8:12:91:bc:15:e7:bf:65:e0:34:9f:ac:da:4d:c7:
75:0f:27:a8:e1:b6:51:29:c2:3b:7d:a5:e6:6d:9d:f7:41:ba:
83:0c:85:cd:f9:be:fe:f0:c7:de:f8:23:bd:59:79:c3:c2:b1:
dc:a1:38:ef:b8:c2:fd:45:42:cc:59:fb:3d:87:da:6b:08:cc:
8b:9e:8c:26:14:ed:ce:54:de:4c:96:4e:cd:4b:67:c2:97:e6:
47:a3:ba:6b:a3:ef:a5:8a:39:62:8c:9b:dc:8e:37:3d:9b:a2:
e1:6e:ca:58:44:62:68:19:10:fb:26:1b:08:67:69:42:8d:41:
62:68:d2:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:11 2024 by rpki-client on console-fra.rpki-client.org