Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/IjcvvzGSBDdgtHFC6TGJQMpuWJQ.roa
File: IjcvvzGSBDdgtHFC6TGJQMpuWJQ.roa (raw, json)
Hash identifier: VZjFfGsY5zxIYH8aF0PS0ulSET2RG6CkM1iS+ptN22o=
Subject key identifier: 22:37:2F:BF:31:92:04:37:60:B4:71:42:E9:31:89:40:CA:6E:58:94
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 0323A0F3
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/IjcvvzGSBDdgtHFC6TGJQMpuWJQ.roa
Signing time: Mon 04 Jul 2022 10:42:25 +0000
ROA not before: Mon 04 Jul 2022 10:42:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 109.105.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52666611 (0x323a0f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Jul 4 10:42:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22372fbf3192043760b47142e9318940ca6e5894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:8b:71:87:1c:60:1a:c1:57:b1:6e:ff:7a:da:
7d:0b:d7:d6:21:47:69:d1:f3:9d:bc:80:40:48:20:
11:ba:fa:ed:83:67:21:d6:41:88:07:aa:4b:a5:4d:
0f:cc:8e:2c:82:fe:90:f7:66:9a:81:73:4f:e5:99:
53:f9:ce:78:29:37:17:ba:98:87:26:a2:4d:e2:98:
fb:75:ee:dd:ac:a6:9d:3b:18:df:d5:60:48:19:2e:
2e:e4:56:86:02:8c:f4:f3:dd:af:0c:4e:59:60:0a:
31:08:a2:0e:3e:7c:7f:12:b8:0d:c2:12:11:31:2c:
4a:1a:09:98:dd:b5:43:b2:4e:70:0d:4c:24:7a:2b:
44:da:08:7a:e7:8c:7b:5b:b1:16:28:0f:3e:1c:14:
c7:87:02:42:13:9c:ac:5c:61:a1:33:2d:80:85:01:
86:97:ef:04:cc:30:85:e1:74:db:33:12:19:b3:a2:
86:ec:92:dd:97:1a:f9:52:0d:ea:bc:15:ee:0d:84:
e0:79:32:fb:30:c0:d6:6a:6c:cd:84:6d:a3:04:e4:
8c:ec:48:cc:48:ed:53:2b:f7:bc:13:a9:ea:2d:d0:
ec:be:a1:0d:d6:fd:04:1f:96:3a:dd:e0:0c:b4:e7:
4d:e2:a3:d5:c4:45:3f:48:1f:02:55:9c:24:c5:b2:
b8:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:37:2F:BF:31:92:04:37:60:B4:71:42:E9:31:89:40:CA:6E:58:94
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/IjcvvzGSBDdgtHFC6TGJQMpuWJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.193.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:88:49:df:ec:a5:52:1f:27:54:93:b4:ba:36:49:f9:94:d4:
52:15:20:dd:9f:25:58:f3:67:de:16:f2:e6:61:a0:e5:c2:69:
ab:f0:5f:2d:6f:5d:db:2c:15:c1:e7:cd:cb:35:b3:53:1a:12:
16:61:d3:a5:58:7e:fe:d4:6a:69:a0:57:3e:30:36:ac:43:eb:
23:09:78:01:41:3e:67:f4:c9:73:48:e2:ac:21:12:e4:68:59:
a1:f7:9b:6d:63:6e:50:42:39:dc:19:9b:6b:22:90:2b:bc:d1:
cd:4d:71:bd:09:de:fb:36:90:73:54:19:a5:2e:69:49:f6:70:
60:3c:d9:33:31:0b:89:0f:d3:37:3c:e5:6a:60:e1:52:f4:73:
a6:11:ef:e1:94:be:30:7b:57:55:53:9c:20:2d:79:60:90:24:
fc:d9:0a:40:d1:b3:38:6d:1b:d3:6b:88:5a:7a:be:3a:5a:bb:
10:41:03:41:63:a9:8b:90:b8:12:d2:f6:c9:68:bf:a9:a0:22:
51:ea:92:40:5b:31:b0:ac:53:7e:0b:9f:ab:92:b0:87:ab:de:
e0:5c:52:51:d1:4d:83:b4:2a:dc:4c:a5:56:6b:e5:17:37:67:
d1:20:6e:5a:c4:43:e2:d5:79:fd:f3:66:1f:e8:ff:15:5a:c6:
39:6c:b1:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org