Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/Zza02BKlTUyTWctV_gHCXr4aU9Y.roa
File: Zza02BKlTUyTWctV_gHCXr4aU9Y.roa (raw, json)
Hash identifier: ISxDMrzoN1OwX/TtKscMXujXDdKknw7v2/Cvyog3gjs=
Subject key identifier: 67:36:B4:D8:12:A5:4D:4C:93:59:CB:55:FE:01:C2:5E:BE:1A:53:D6
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 0182F9A1BC52CCA64657638E9C2C1BF09093
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/Zza02BKlTUyTWctV_gHCXr4aU9Y.roa
Signing time: Thu 01 Sep 2022 15:18:22 +0000
ROA not before: Thu 01 Sep 2022 15:18:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 109.105.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f9:a1:bc:52:cc:a6:46:57:63:8e:9c:2c:1b:f0:90:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Sep 1 15:18:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6736b4d812a54d4c9359cb55fe01c25ebe1a53d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:97:0f:dc:b7:28:93:72:3c:71:98:41:af:d2:
30:e9:64:a1:27:ac:c2:d3:ce:40:9c:92:3f:09:cf:
7a:57:1d:9e:0b:e3:6c:fb:2f:22:0d:3c:70:24:24:
8d:c8:16:16:7b:df:34:5c:4b:21:94:d2:c7:93:94:
04:46:54:36:07:78:8f:6f:86:37:b1:2e:19:91:76:
6c:47:df:8b:73:ca:3a:e7:a8:76:da:2b:a1:e3:f9:
e7:6a:0e:bc:b8:30:91:30:a3:9c:5c:67:a5:24:de:
4e:db:49:75:f1:bf:9a:40:d2:a3:16:f6:89:bf:a6:
4a:20:99:e5:ac:91:3f:e3:64:4a:cd:d0:99:b9:78:
ef:c6:f0:be:58:72:83:a3:74:f3:29:1d:37:a7:f3:
76:08:bb:d0:2e:8e:bb:fb:dc:a3:e1:58:bd:65:f7:
97:bd:47:63:a5:ac:88:b2:ec:00:1a:1e:a3:bf:49:
28:b5:83:63:74:43:71:06:29:8c:e8:36:2d:84:49:
51:c8:00:52:42:46:49:db:0b:c4:af:3f:1d:12:3b:
ea:d1:da:52:0f:29:f7:17:04:31:e0:ee:e1:97:b5:
19:d8:57:67:ef:d9:94:6b:e2:2f:89:ab:ee:c3:a2:
8d:66:a0:1c:9f:cf:20:1b:84:c1:32:f4:c5:f2:55:
c2:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:36:B4:D8:12:A5:4D:4C:93:59:CB:55:FE:01:C2:5E:BE:1A:53:D6
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/Zza02BKlTUyTWctV_gHCXr4aU9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.199.0/24
Signature Algorithm: sha256WithRSAEncryption
68:ca:83:1b:e1:0e:9a:03:6d:ca:e7:dd:f1:3c:14:99:54:e4:
54:12:bd:25:1a:00:e1:9a:a5:c6:7b:66:22:08:a9:6d:a1:fc:
f3:0c:8e:b6:5d:fa:5c:54:71:f2:6c:cc:cf:74:ce:d5:8d:10:
41:fd:72:67:e6:29:25:de:97:8b:c7:39:e3:b0:b6:04:3f:62:
dd:3d:67:e7:20:73:07:bc:18:77:1f:1a:a0:88:87:0d:b9:3e:
72:d3:78:1f:79:12:de:fc:ab:84:8b:09:a1:81:c0:14:63:30:
45:f7:8c:1b:85:9c:71:70:b3:37:38:42:8f:a0:e8:92:33:12:
94:a2:52:67:6f:0d:b1:7f:1d:39:b8:7e:f1:01:d1:30:39:23:
ed:38:f6:38:8d:85:51:7a:5b:d7:46:df:ac:34:32:b1:cf:6a:
60:46:5e:5c:b0:7f:b2:d8:8d:06:83:ae:92:ee:36:ce:e6:7a:
ac:63:0a:75:7b:81:74:6d:c5:63:22:b5:43:6a:7e:11:55:ba:
7b:be:0d:69:89:d4:c5:22:69:2a:3a:1e:68:fe:79:fb:0a:b6:
78:18:4e:78:9c:12:42:71:82:a0:69:e6:f3:97:fd:7f:61:c4:
cd:97:76:d2:11:e5:9a:10:11:0c:fb:1c:63:5a:c5:af:7f:63:
ea:ad:12:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org