Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/augIv1I6Nx0H4MsNCNlM6yUCKg4.roa
File: augIv1I6Nx0H4MsNCNlM6yUCKg4.roa (raw, json)
Hash identifier: ulgOpBOq2fCjRCIzzTdtAZawMioEZmaXcuUuM154qmg=
Subject key identifier: 6A:E8:08:BF:52:3A:37:1D:07:E0:CB:0D:08:D9:4C:EB:25:02:2A:0E
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 01FE390E
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/augIv1I6Nx0H4MsNCNlM6yUCKg4.roa
Signing time: Fri 04 Mar 2022 12:51:53 +0000
ROA not before: Fri 04 Mar 2022 12:51:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 109.105.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33437966 (0x1fe390e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Mar 4 12:51:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ae808bf523a371d07e0cb0d08d94ceb25022a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:2b:50:41:f6:2c:0b:65:84:70:3f:f0:c9:ae:
05:7b:63:45:aa:b6:b4:3a:fb:47:ed:68:27:ad:b1:
78:ad:ff:f1:da:b8:39:3d:ad:88:ef:ed:36:be:70:
ba:e5:79:2a:32:f9:3b:38:ba:2b:c1:60:ef:07:16:
da:fa:19:84:a2:e1:66:76:de:43:40:11:fe:14:a5:
93:0a:d7:5b:9a:d1:fe:42:64:98:6a:98:53:64:a9:
5c:71:85:98:64:59:ff:88:a8:30:25:3f:22:9f:24:
fd:21:d1:dd:38:79:a5:a2:53:b2:89:e6:91:61:26:
40:6e:88:fa:73:2c:ed:e5:88:d3:51:b0:6d:57:21:
bf:e4:91:c7:bb:99:bb:8e:b5:d4:12:0b:27:4a:a4:
ee:d2:e4:1f:7a:6e:51:d8:83:53:05:35:3a:ba:26:
df:71:52:45:54:e1:77:b5:b2:62:89:f8:30:47:bd:
aa:26:ee:b6:70:1f:3e:ac:a6:a5:6b:ac:46:63:52:
12:73:3f:c5:9a:81:c9:ba:e7:3f:99:be:27:dc:e0:
3b:29:dd:2e:cf:b9:89:f9:95:60:5e:4d:55:35:46:
48:5b:7c:d3:90:0b:55:41:8b:2f:97:0f:6f:0d:b2:
7b:06:59:e0:bb:d5:1e:9b:e9:23:fc:db:cf:c2:bf:
43:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:E8:08:BF:52:3A:37:1D:07:E0:CB:0D:08:D9:4C:EB:25:02:2A:0E
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/augIv1I6Nx0H4MsNCNlM6yUCKg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.194.0/24
Signature Algorithm: sha256WithRSAEncryption
95:95:7e:98:92:22:e0:f3:d1:a6:9c:e5:c5:17:bf:69:60:6c:
42:38:29:0c:37:40:51:6d:2c:e4:8a:14:6f:0d:ac:64:bb:d7:
23:62:47:18:e3:d0:48:cb:0f:37:6f:1b:6c:61:93:ed:ac:9a:
78:31:10:07:7b:1e:a0:23:72:6b:9b:83:a7:c1:49:dd:3f:65:
c0:17:7b:51:55:69:c3:5e:10:01:29:41:a2:aa:2e:33:8a:b0:
73:dd:b2:b8:95:d0:6b:24:6d:fb:12:86:74:16:2e:5d:46:b2:
58:86:86:94:c1:0f:64:2e:97:f7:fe:98:31:eb:92:7c:31:d4:
d7:ff:05:50:fa:44:82:cc:96:76:d3:76:c7:fb:6f:ec:73:2a:
5d:dd:b2:3f:03:e0:ba:07:39:51:ad:1c:b2:ac:68:98:86:58:
10:c0:e7:20:3c:ea:cd:8f:b9:9c:0b:a7:30:40:85:12:ac:1a:
ae:81:84:c7:f3:b4:2a:32:4a:b5:93:0f:e4:b1:1a:89:6c:74:
b0:0f:7a:2e:6c:e1:d3:01:6f:17:9e:8b:b3:4f:fc:b1:98:5f:
24:56:a8:bf:55:f9:6b:6c:ab:52:53:95:3a:33:c4:1e:a4:f0:
e5:e2:03:f3:53:47:13:ac:c5:87:7b:4a:37:74:38:1d:ae:59:
35:a5:98:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:10 2023 by rpki-client on console-ams.rpki-client.org