Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/fjPQzvKCerJW2G-6TyuqYLGgrYg.roa
File: fjPQzvKCerJW2G-6TyuqYLGgrYg.roa (raw, json)
Hash identifier: Lyx86IURiVjf16Vak056kjadLVvL8z1NzShsEPgKKAI=
Subject key identifier: 7E:33:D0:CE:F2:82:7A:B2:56:D8:6F:BA:4F:2B:AA:60:B1:A0:AD:88
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 02CDBFEB
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/fjPQzvKCerJW2G-6TyuqYLGgrYg.roa
Signing time: Tue 31 May 2022 07:28:08 +0000
ROA not before: Tue 31 May 2022 07:28:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211338
IP address blocks: 109.105.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47038443 (0x2cdbfeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: May 31 07:28:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e33d0cef2827ab256d86fba4f2baa60b1a0ad88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:95:15:1b:74:d5:a2:95:64:e2:5f:ed:f0:6c:
18:13:16:e9:4c:5c:a9:39:04:7c:2f:02:44:57:4c:
19:f9:f8:fa:00:f8:2e:b9:ec:b0:92:c6:71:17:d6:
45:7e:1d:d0:31:cc:8a:33:d0:e3:a2:8d:20:7a:9d:
77:d1:6f:16:4c:0f:17:d4:74:a6:df:27:c7:75:39:
cf:03:c8:91:72:42:c2:3d:bb:44:36:2b:2f:e9:ac:
8b:d0:4d:06:47:11:ae:19:17:e7:6d:66:94:f2:ef:
19:13:41:98:82:d9:a2:d7:c6:68:fe:9a:f6:4e:b4:
51:5b:51:f9:52:32:16:43:0c:88:64:8c:a5:fc:00:
16:16:bd:bc:cb:e2:5f:1c:e5:cd:14:26:eb:e1:49:
fc:9b:95:52:cd:b0:13:49:1e:9a:a8:ae:6d:10:36:
ab:47:d1:83:a3:d6:58:13:d4:02:d0:d4:e1:1c:fa:
05:76:45:e3:d9:b6:10:3b:bc:bd:4e:f9:2a:e4:5c:
42:43:1d:e5:44:67:2a:41:60:de:fa:b1:e7:f2:dc:
ad:8c:b8:52:63:ff:24:48:01:62:95:d9:5f:1f:de:
9a:80:37:d3:67:e6:0c:0a:d4:03:36:e6:56:20:e3:
68:a9:31:d6:7f:0a:b7:ec:67:ca:45:7c:71:fb:23:
a4:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:33:D0:CE:F2:82:7A:B2:56:D8:6F:BA:4F:2B:AA:60:B1:A0:AD:88
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/fjPQzvKCerJW2G-6TyuqYLGgrYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.198.0/24
Signature Algorithm: sha256WithRSAEncryption
24:c9:03:d6:e5:ff:85:fa:2e:ce:62:59:e1:ad:f4:09:dc:23:
30:22:ea:ac:09:b2:cc:95:f9:59:05:d6:f6:56:dc:cb:35:4d:
e0:7a:f3:0f:20:72:ba:85:cc:8e:04:3d:6b:c1:90:d3:38:21:
af:2b:83:71:d2:64:f2:2e:55:2a:61:5f:c2:c2:07:41:1a:cc:
fa:00:35:ce:52:c4:18:1d:d0:96:c3:d2:3f:45:3e:18:58:3f:
36:7d:9a:4a:87:82:53:64:6f:5b:b4:bf:aa:63:d2:97:4c:b4:
1e:39:de:bb:17:3c:be:4d:48:11:4f:47:96:65:35:b3:62:57:
20:54:9d:35:3c:8e:5a:d3:c0:46:20:33:6f:43:61:5a:c3:20:
31:bb:90:2b:ab:0c:9b:6e:b7:d0:97:a2:a2:27:1b:56:68:15:
13:57:67:52:55:ca:38:0b:b2:33:54:48:7a:30:ce:e1:81:ff:
02:f1:52:d0:09:69:04:b1:c3:5f:64:b9:69:c1:4e:3c:f6:79:
d7:c0:09:7b:55:67:57:d2:46:17:c9:3a:b9:29:bb:7c:3a:db:
ca:c2:99:b0:e5:7f:0e:8c:69:21:1b:be:02:74:3f:b4:59:ad:
15:a2:10:70:39:01:7f:fb:b0:ac:10:29:ba:a8:d5:61:64:c5:
9c:86:cc:27
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAs2/6zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
OGM2MGEwZDJkNzBhOTMzN2QwYmRhNTZkMWFkNTk2YWMxZjY5Y2RhMB4XDTIyMDUz
MTA3MjgwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2UzM2QwY2VmMjgy
N2FiMjU2ZDg2ZmJhNGYyYmFhNjBiMWEwYWQ4ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKmVFRt01aKVZOJf7fBsGBMW6UxcqTkEfC8CRFdMGfn4+gD4
LrnssJLGcRfWRX4d0DHMijPQ46KNIHqdd9FvFkwPF9R0pt8nx3U5zwPIkXJCwj27
RDYrL+msi9BNBkcRrhkX521mlPLvGRNBmILZotfGaP6a9k60UVtR+VIyFkMMiGSM
pfwAFha9vMviXxzlzRQm6+FJ/JuVUs2wE0kemqiubRA2q0fRg6PWWBPUAtDU4Rz6
BXZF49m2EDu8vU75KuRcQkMd5URnKkFg3vqx5/LcrYy4UmP/JEgBYpXZXx/emoA3
02fmDArUAzbmViDjaKkx1n8Kt+xnykV8cfsjpPcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR+M9DO8oJ6slbYb7pPK6pgsaCtiDAfBgNVHSMEGDAWgBTYxgoNLXCpM30L
2lbRrVlqwfac2jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzJNWUtEUzF3cVROOUM5cFcwYTFaYXNIMm5Oby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvYjUxYTg1LWY5OWYtNDIzZi05ZmFlLWRkMjk0YzM3OGY2Yy8x
L2ZqUFF6dktDZXJKVzJHLTZUeXVxWUxHZ3JZZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
YjUxYTg1LWY5OWYtNDIzZi05ZmFlLWRkMjk0YzM3OGY2Yy8xLzJNWUtEUzF3cVRO
OUM5cFcwYTFaYXNIMm5Oby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG1pxjANBgkqhkiG9w0BAQsFAAOC
AQEAJMkD1uX/hfouzmJZ4a30CdwjMCLqrAmyzJX5WQXW9lbcyzVN4HrzDyByuoXM
jgQ9a8GQ0zghryuDcdJk8i5VKmFfwsIHQRrM+gA1zlLEGB3QlsPSP0U+GFg/Nn2a
SoeCU2RvW7S/qmPSl0y0Hjneuxc8vk1IEU9HlmU1s2JXIFSdNTyOWtPARiAzb0Nh
WsMgMbuQK6sMm2630JeioicbVmgVE1dnUlXKOAuyM1RIejDO4YH/AvFS0AlpBLHD
X2S5acFOPPZ518AJe1VnV9JGF8k6uSm7fDrbysKZsOV/DoxpIRu+AnQ/tFmtFaIQ
cDkBf/uwrBApuqjVYWTFnIbMJw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org