Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/fRc3EqISsjMggQmR9RW0v2Kel88.roa
File: fRc3EqISsjMggQmR9RW0v2Kel88.roa (raw, json)
Hash identifier: E4lQp7ofcTgRgRRAWuMDHOv8+fdm7oF1jSwaF0gKO1A=
Subject key identifier: 7D:17:37:12:A2:12:B2:33:20:81:09:91:F5:15:B4:BF:62:9E:97:CF
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 01BA5374
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/fRc3EqISsjMggQmR9RW0v2Kel88.roa
Signing time: Wed 09 Feb 2022 10:58:57 +0000
ROA not before: Wed 09 Feb 2022 10:58:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60588
IP address blocks: 109.105.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28988276 (0x1ba5374)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Feb 9 10:58:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d173712a212b23320810991f515b4bf629e97cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:02:ff:e2:77:52:49:5e:77:6a:3d:b0:96:a9:
a1:e3:f6:28:6e:85:e4:ec:28:08:40:f4:ce:7f:80:
95:27:c6:c3:a9:03:5c:bf:90:b9:aa:15:9e:14:69:
02:b3:da:2d:71:63:e1:74:20:54:69:f2:93:dd:32:
dd:50:85:45:91:d1:39:66:d3:5f:db:c4:0d:d6:93:
01:49:33:47:16:30:c4:f0:52:00:78:4a:c6:0c:7e:
aa:b7:01:26:1e:48:f0:84:80:86:30:c5:56:89:d5:
db:0e:c9:43:7e:c8:ff:e6:36:2a:13:3f:09:68:ba:
e4:48:56:4f:2c:c4:e4:cd:bb:d3:fd:58:4c:fa:a4:
d1:bf:d2:1d:c3:f5:09:24:55:bf:1a:40:fa:03:e3:
3e:48:e2:78:b6:35:aa:c0:8e:e2:a5:12:af:3d:92:
4b:fd:b4:cc:3a:b7:f5:3b:d5:72:e5:10:fa:1f:4a:
ad:1b:75:50:0e:8f:c8:26:28:d5:81:55:c3:8c:7f:
d4:6c:76:c2:b0:0b:3d:a0:f8:26:85:3c:5a:04:2d:
09:b4:67:29:8b:b0:1e:2e:10:c6:24:0b:23:c4:3f:
11:b2:e8:b6:e0:b5:07:44:07:c1:23:7b:02:95:65:
43:36:76:44:fc:46:e6:a9:60:1e:ae:21:f8:66:1c:
51:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:17:37:12:A2:12:B2:33:20:81:09:91:F5:15:B4:BF:62:9E:97:CF
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/fRc3EqISsjMggQmR9RW0v2Kel88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.192.0/24
Signature Algorithm: sha256WithRSAEncryption
19:42:64:02:2f:cb:c1:4b:27:dd:47:18:40:38:76:de:4a:f9:
a3:c0:2b:ca:ee:d9:8b:23:44:1b:39:3f:f2:62:33:53:eb:5c:
6c:6a:0a:b1:b6:fc:93:b8:c9:93:b0:e5:50:76:eb:d4:0a:69:
c1:c7:0d:1c:1c:dd:62:e4:9f:f3:fb:4d:f3:92:a6:77:82:b8:
6a:09:d4:5d:bc:5d:d0:f3:41:cc:ac:da:c7:5b:0d:38:e4:3a:
1f:9b:0b:4a:5f:ad:5b:98:93:38:bd:f1:97:51:8c:24:64:d3:
ed:2c:40:4a:47:97:64:ce:dc:7b:97:25:85:54:76:06:42:9f:
18:d0:bc:05:9a:52:31:58:13:c9:c7:fc:d3:91:90:89:37:7c:
39:94:d2:e4:ba:39:3f:6c:94:eb:84:a1:f2:e4:3b:28:9e:37:
b1:7c:3e:35:7a:e2:4c:91:7e:fe:07:96:a4:cb:59:63:42:66:
f3:05:97:db:88:f9:89:04:35:be:ef:7f:b0:3d:b3:a6:1c:dc:
60:26:b7:ff:ef:8c:24:2a:97:71:89:d0:b6:f6:38:1f:40:e3:
c2:34:37:1a:19:d0:44:37:60:26:69:99:8c:0c:b5:a1:4d:67:
c7:56:20:88:f1:26:fb:50:c1:ae:e8:a9:06:6b:f0:1c:5c:47:
c9:44:3e:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org