Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/I1cRmG8Kj-jGnYgILeBzdJr8p-U.roa
File: I1cRmG8Kj-jGnYgILeBzdJr8p-U.roa (raw, json)
Hash identifier: 3rKDExXmcn+di9pBhHFC5/vYj6Njp8BoG1LCrCaMscs=
Subject key identifier: 23:57:11:98:6F:0A:8F:E8:C6:9D:88:08:2D:E0:73:74:9A:FC:A7:E5
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 1BA96871
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/I1cRmG8Kj-jGnYgILeBzdJr8p-U.roa
Signing time: Sat 01 Jan 2022 05:03:47 +0000
ROA not before: Sat 01 Jan 2022 05:03:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210878
IP address blocks: 109.207.140.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 464087153 (0x1ba96871)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Jan 1 05:03:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=235711986f0a8fe8c69d88082de073749afca7e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:1e:6f:4d:bc:41:94:a5:fe:1d:03:55:49:b2:
03:7e:6c:95:19:89:be:3e:8a:c5:fc:9c:a7:4b:de:
cd:0d:ed:87:04:cf:0e:6b:38:6b:4b:75:2b:bf:e2:
16:c8:0a:87:5f:f7:eb:d0:6e:e7:34:39:b0:80:c6:
d7:8a:02:2e:00:26:ec:bd:1b:cd:f1:1b:71:a0:02:
18:8c:cf:a0:85:59:3b:9c:5b:8b:3a:79:dd:e6:32:
bc:1a:f7:96:d0:92:53:5e:20:3b:27:a5:62:b2:f5:
2a:60:b0:12:70:8b:3f:0c:4e:0e:db:47:62:c5:b2:
3b:1c:b0:ac:28:49:ae:85:94:10:6d:24:9d:32:11:
99:3d:f0:ae:1e:1a:22:bd:41:88:fa:4b:dc:2c:b3:
ea:84:21:30:be:d7:86:23:bc:78:3a:21:60:34:67:
7c:45:03:c5:62:04:ba:59:5a:2e:19:f4:88:f1:b4:
16:67:83:7e:26:86:e4:3a:38:b2:52:2f:24:65:fc:
53:79:42:79:4d:a8:b3:65:e2:e5:6b:ff:5e:99:ba:
03:2f:73:dd:4d:4e:37:05:65:86:12:bc:52:c8:bc:
c9:10:fa:1c:4a:43:e8:1b:79:1c:6d:a3:6b:eb:f7:
07:95:54:d5:88:89:8c:60:f5:5d:34:c9:9d:be:1e:
8f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:57:11:98:6F:0A:8F:E8:C6:9D:88:08:2D:E0:73:74:9A:FC:A7:E5
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/I1cRmG8Kj-jGnYgILeBzdJr8p-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.207.140.0/23
Signature Algorithm: sha256WithRSAEncryption
7c:58:0a:6d:e0:e7:db:a1:ef:c9:5d:30:46:ec:9d:63:c6:6b:
9d:d9:f1:c2:81:76:d5:b9:23:c4:1f:d7:4e:b0:d4:a3:7e:db:
28:d9:45:c8:fb:f5:54:a4:0b:60:de:d7:d3:93:f4:ee:cb:76:
0c:f8:2c:43:49:ea:df:51:8d:4f:d5:38:6b:c6:a3:35:f5:bb:
7c:55:9a:dc:fd:88:08:e0:52:01:e1:27:a5:2f:41:0c:13:6e:
03:6b:d6:1e:28:b1:8d:67:da:c2:c8:27:44:79:20:ea:65:c6:
ab:89:7c:64:a0:bd:f2:3d:6f:c8:8f:bb:0e:4a:52:b5:8c:37:
33:76:b3:a9:f6:c2:b8:6f:70:5f:f2:c2:5c:5d:c8:e1:b3:1c:
15:f7:35:88:c0:1f:41:b9:86:6b:e9:c3:ca:c2:f1:e0:c6:75:
d3:06:fc:f2:d2:78:3e:14:ae:f2:28:79:b2:3c:3b:19:ba:79:
47:9e:1e:8d:f6:a3:bf:5b:dd:86:34:ec:49:92:a8:17:7f:80:
6a:55:aa:76:c6:1d:83:84:74:3b:96:46:fa:32:8a:44:f0:93:
0d:d1:e9:de:ff:82:c6:7b:19:61:0e:1b:55:08:81:68:3d:75:
ac:e4:3d:d5:fc:4e:45:11:37:64:a9:b8:8d:7c:31:10:65:39:
bb:c3:a6:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:48 2024 by rpki-client on console-ams.rpki-client.org