Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/JLYNuDrkIo_03AZ0mKvydgWryag.roa
File: JLYNuDrkIo_03AZ0mKvydgWryag.roa (raw, json)
Hash identifier: FE6emmrPp/A0L5tqkpMmzy+TnelxlRtBo3nPzDC8V68=
Subject key identifier: 24:B6:0D:B8:3A:E4:22:8F:F4:DC:06:74:98:AB:F2:76:05:AB:C9:A8
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 02BE630B
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/JLYNuDrkIo_03AZ0mKvydgWryag.roa
Signing time: Tue 24 May 2022 22:43:14 +0000
ROA not before: Tue 24 May 2022 22:43:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 109.105.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46031627 (0x2be630b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: May 24 22:43:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24b60db83ae4228ff4dc067498abf27605abc9a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:36:76:01:63:cb:5e:4b:dc:0d:7f:95:1a:44:
b6:e1:7f:57:10:e4:88:7c:37:9d:0c:ad:93:85:19:
5e:be:c2:35:b2:cd:e1:34:d0:e6:25:57:93:e8:70:
6e:23:25:a6:c7:61:9e:b2:80:47:cc:1f:37:14:77:
06:60:fc:42:64:58:82:cf:f5:5e:96:aa:b7:af:1d:
b3:a7:4a:7e:00:f0:fa:85:ba:41:42:88:1b:f4:82:
44:95:65:7e:91:04:af:a5:7e:4d:dc:b8:4f:55:f4:
5c:50:90:da:84:48:80:42:5a:26:9a:c0:dd:a3:e1:
3e:98:ea:61:3b:31:1b:87:97:23:9e:0d:24:75:03:
65:08:d1:b3:7b:db:d5:60:31:61:d1:4c:1b:bf:de:
dc:c2:fd:55:79:fe:5e:39:a2:23:bc:44:10:aa:67:
40:61:60:c7:5d:77:bf:41:2a:89:e0:e8:c4:1b:42:
82:24:ff:9f:5e:ed:0d:6d:5e:17:da:7b:fa:1e:6a:
9f:97:35:67:3d:da:9a:85:e3:4a:45:9b:d3:df:6b:
6e:a3:3a:6e:98:d0:bd:f4:49:75:d0:85:ef:34:ea:
2f:8d:d8:e5:c8:7f:36:fb:ee:d9:c4:4f:be:52:07:
39:78:cd:07:2e:9d:3f:68:5a:f9:6f:2a:7d:d2:3a:
54:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:B6:0D:B8:3A:E4:22:8F:F4:DC:06:74:98:AB:F2:76:05:AB:C9:A8
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/JLYNuDrkIo_03AZ0mKvydgWryag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.196.0/24
Signature Algorithm: sha256WithRSAEncryption
23:b4:49:f2:0b:e1:b1:c0:73:b6:92:b2:f4:d7:59:13:cc:34:
dc:ec:6b:ad:bf:70:2b:82:52:e7:17:1a:4b:29:3e:0b:75:10:
9d:ee:c9:7e:d6:35:5c:b4:98:7f:38:f4:4a:46:e2:df:d5:91:
e0:36:9f:55:57:af:27:33:73:a4:5c:23:a0:b3:ab:c4:a3:d3:
f2:33:87:a7:0b:61:bf:b4:cd:1f:7e:1b:03:f9:2b:8d:c8:1b:
64:18:cb:f4:29:10:b3:48:9b:05:98:d1:8f:af:09:1a:28:02:
30:3b:cd:69:f9:7e:41:5e:a1:02:bd:e9:7d:93:45:51:75:0d:
b9:4f:b2:cb:ab:2c:cd:c2:a9:cb:b7:b5:3a:2c:16:92:6b:a2:
75:58:87:80:76:40:be:ee:fa:f5:35:ef:0c:e5:02:e3:34:24:
0f:19:df:1b:d2:d6:2b:47:2d:dd:0d:5c:88:67:89:3b:4e:72:
1d:d2:fa:8a:fc:fb:ca:73:57:f7:e6:d3:50:6f:87:55:8e:67:
c9:01:88:f4:15:69:da:ab:aa:f2:53:28:7d:03:79:fa:97:12:
83:15:89:c1:f9:52:a5:65:0e:ee:23:f4:c8:cb:e7:e4:8b:94:
e4:bc:59:c2:ec:8a:16:f4:81:3c:b3:e4:93:f0:fd:59:c1:22:
50:3d:6f:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:10 2023 by rpki-client on console-ams.rpki-client.org