Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/Z9TAppJ-QLTwWHTsNJOkmPrn8mM.roa
File: Z9TAppJ-QLTwWHTsNJOkmPrn8mM.roa (raw, json)
Hash identifier: nwKBP4s1PZmrow8Qo4cDFl43xr/dErDJHgPdogVUKSE=
Subject key identifier: 67:D4:C0:A6:92:7E:40:B4:F0:58:74:EC:34:93:A4:98:FA:E7:F2:63
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 030206C6
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/Z9TAppJ-QLTwWHTsNJOkmPrn8mM.roa
Signing time: Wed 22 Jun 2022 14:29:32 +0000
ROA not before: Wed 22 Jun 2022 14:29:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211936
IP address blocks: 109.105.192.0/24 maxlen: 24
109.105.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50464454 (0x30206c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Jun 22 14:29:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67d4c0a6927e40b4f05874ec3493a498fae7f263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ef:5c:8b:69:ad:df:9a:8b:03:db:5f:47:2c:
12:17:93:29:fa:a4:90:df:c3:ed:0f:3c:28:0d:1e:
c0:ec:3a:64:c5:82:cf:81:11:d8:a2:66:c2:11:7e:
b6:04:a4:8a:cf:dc:17:4e:22:68:6a:3c:fe:a4:28:
75:d9:32:92:45:8c:e5:ff:ff:c0:72:00:94:72:2c:
3e:84:ee:2e:e3:15:47:04:d2:2a:ec:df:a7:6a:f3:
23:16:12:40:eb:b2:58:7d:9b:e5:21:b4:16:64:56:
31:69:4e:20:2f:fc:e7:40:34:e9:9e:71:6c:96:63:
b8:4f:2a:15:8e:99:4d:52:37:39:7e:e3:8c:eb:27:
d1:f2:84:f8:69:96:dc:e3:55:54:70:52:13:d7:40:
b6:f6:95:5e:34:b9:9f:b0:ee:9f:08:b0:70:d8:53:
92:75:97:74:91:ae:af:68:c2:61:cf:a4:33:97:10:
d0:9d:7d:3e:1f:12:83:00:90:44:5e:d0:66:2a:a2:
bf:49:4d:db:15:29:99:51:75:03:4c:a6:48:f5:1d:
b1:f5:07:b6:82:06:ab:2a:c8:69:bb:35:93:a1:6f:
9f:1f:2d:db:81:4d:7b:11:dc:8d:5f:5e:8e:20:7d:
0d:1a:b7:40:09:24:8d:4a:a2:f0:ec:88:ec:aa:b8:
8b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:D4:C0:A6:92:7E:40:B4:F0:58:74:EC:34:93:A4:98:FA:E7:F2:63
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/Z9TAppJ-QLTwWHTsNJOkmPrn8mM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.192.0/24
109.105.197.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:0f:c5:37:93:b5:a9:2f:06:47:da:be:47:2a:56:d7:91:80:
25:de:cd:30:e4:42:70:a0:96:26:76:a5:cd:16:46:23:4d:54:
57:97:e5:ae:8b:e7:ff:7a:d5:29:10:cc:fd:5d:40:37:65:a4:
e4:10:a4:8c:f0:13:d8:bb:7c:e4:5b:92:b4:fa:02:6f:d2:de:
e0:b3:bc:90:b7:71:5d:90:d2:a0:fd:01:f3:92:f4:38:28:e1:
97:5c:59:a1:a4:f8:cd:66:39:78:38:63:7f:75:ad:ea:0f:97:
36:aa:6c:cd:be:53:5b:9f:31:ee:b7:39:8c:33:39:26:57:29:
f0:28:ef:56:95:37:a1:1f:81:eb:b1:28:73:ba:2a:7d:0e:1e:
8c:d5:04:8b:34:21:74:07:f7:d7:b5:b2:2d:8c:f7:55:17:e2:
4f:10:cf:1c:9a:39:60:4f:ea:fa:fc:c7:fb:45:db:70:ad:a4:
4c:92:e6:c6:cc:cf:54:c3:14:4d:f4:25:12:ca:ad:6d:af:a0:
76:eb:95:8e:5d:5b:c6:10:66:e4:06:4d:f0:b6:fc:e1:8c:46:
fa:f1:4d:0a:be:8b:a4:71:39:1a:b0:c2:ae:97:7b:bc:c6:ec:
73:89:2f:88:21:76:32:fe:1b:b1:36:0f:2e:df:65:5f:65:ca:
86:6e:6c:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org