Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/Cp8xZxo2I4j6ih9wq52z67moWHc.roa
File: Cp8xZxo2I4j6ih9wq52z67moWHc.roa (raw, json)
Hash identifier: Xu8fotM1lVZFt94xaQAWFK6fTjazhxZOnqYEZNm9gm0=
Subject key identifier: 0A:9F:31:67:1A:36:23:88:FA:8A:1F:70:AB:9D:B3:EB:B9:A8:58:77
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 031217F8
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/Cp8xZxo2I4j6ih9wq52z67moWHc.roa
Signing time: Tue 28 Jun 2022 20:02:02 +0000
ROA not before: Tue 28 Jun 2022 20:02:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 109.105.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51517432 (0x31217f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Jun 28 20:02:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a9f31671a362388fa8a1f70ab9db3ebb9a85877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:02:bf:b4:a8:17:e2:f8:e2:94:39:b9:f2:23:
e3:f6:ff:5c:70:26:ed:ce:bd:12:26:a2:5a:90:26:
c8:8e:7c:d6:78:40:77:30:fd:e2:9e:97:03:2e:21:
54:41:fd:fb:9b:35:3b:5a:91:e6:bc:b9:a9:ae:5f:
38:54:89:3b:f1:73:59:a7:44:f1:f5:9f:61:83:19:
66:61:30:b5:70:86:99:b7:25:5a:20:d5:90:29:57:
0a:a0:a8:d9:06:1f:6c:f8:5d:0d:87:dd:00:8a:eb:
8e:9d:9b:e1:d6:64:44:0d:0f:85:f0:46:bf:0f:d7:
1e:80:8b:66:4d:2d:89:fe:e6:e1:8c:00:cd:62:04:
ea:50:02:aa:dc:77:c5:39:1f:46:f6:41:e9:56:c1:
b7:ba:6b:5f:b4:19:d6:00:65:90:e6:dd:35:8b:62:
a0:5b:3b:56:48:d3:a7:45:19:5f:ea:3d:03:94:d4:
6c:04:dc:ec:c3:e6:df:21:a8:98:d6:6a:c5:94:5b:
48:b8:fc:10:88:88:53:b2:34:d0:6d:4a:03:5b:85:
e8:1c:99:66:89:a1:ca:8e:26:6e:69:d3:9c:ba:a0:
32:31:78:98:84:83:3d:b3:75:a4:5b:35:f5:6d:0d:
89:68:18:f2:9f:22:bb:20:84:8b:08:67:56:5f:cb:
99:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:9F:31:67:1A:36:23:88:FA:8A:1F:70:AB:9D:B3:EB:B9:A8:58:77
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/Cp8xZxo2I4j6ih9wq52z67moWHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.196.0/24
Signature Algorithm: sha256WithRSAEncryption
36:21:2e:a5:07:49:d1:5e:00:37:4c:16:ee:e4:6d:2b:c1:f4:
23:38:8c:af:fc:0d:ed:47:4d:0c:9b:f9:76:af:6b:b4:16:38:
7e:bf:eb:f8:d6:0e:78:21:36:61:64:4c:99:a3:93:b7:a7:8d:
35:01:0f:9e:67:f8:b1:ff:84:82:57:ce:e2:eb:b2:ea:24:9e:
bf:26:cc:53:e6:ac:28:c0:a3:39:8b:59:b8:fe:af:e9:32:68:
ab:88:73:6b:9a:ed:14:7e:f2:93:a4:db:a3:a9:de:a8:61:86:
fb:a6:28:d3:b1:a2:2e:fd:a1:d7:71:a3:a3:09:ba:99:8c:a4:
bc:90:2d:46:d0:48:6c:02:5e:da:8d:c1:71:22:db:6c:46:c0:
a8:15:23:73:ee:b2:ec:c9:4f:de:a2:b1:b7:0f:68:89:00:43:
e7:b3:55:40:7a:20:4a:97:67:a6:52:96:ce:fa:eb:1f:99:7f:
27:80:a5:a4:02:ec:0e:f2:c1:40:59:68:db:6c:29:3f:61:1c:
1b:68:2c:fd:72:b8:5b:ff:7b:a7:88:5c:f2:0f:d7:9e:f7:81:
77:2c:32:5e:44:74:a9:be:45:39:48:68:d5:c9:fe:a0:2a:56:
4b:c5:d6:d2:43:cc:44:88:12:41:26:a3:fd:6c:35:f1:54:a4:
50:5e:88:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org