Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/SWjdkxCd6jgpiCq1bONcIHUlmGk.roa
File: SWjdkxCd6jgpiCq1bONcIHUlmGk.roa (raw, json)
Hash identifier: txq7aj4km83J8hnCLfbu4XMROzJGwHvq8M4mrkwhJtg=
Subject key identifier: 49:68:DD:93:10:9D:EA:38:29:88:2A:B5:6C:E3:5C:20:75:25:98:69
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 1BA8AE6C
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/SWjdkxCd6jgpiCq1bONcIHUlmGk.roa
Signing time: Sat 01 Jan 2022 05:03:47 +0000
ROA not before: Sat 01 Jan 2022 05:03:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207743
IP address blocks: 64.43.78.0/23 maxlen: 23
109.207.134.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 464039532 (0x1ba8ae6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Jan 1 05:03:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4968dd93109dea3829882ab56ce35c2075259869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:74:de:1e:c5:3a:43:78:00:61:dd:24:68:ec:
0e:9d:69:09:02:7e:04:d5:3a:a3:53:30:76:25:fa:
a5:a7:93:43:78:7d:c8:cd:c4:81:ed:1c:5d:96:e9:
80:1f:e5:8f:00:3f:0b:aa:34:7f:3d:27:d6:5a:b8:
b5:71:b3:2b:21:53:fd:0c:83:c2:c4:1a:9b:c9:10:
23:f0:a1:9c:a6:5e:95:68:15:b2:6e:48:18:b1:cb:
66:db:8d:ec:02:dd:19:cc:e4:da:4b:f5:1c:7f:30:
3e:aa:ae:ba:a5:05:10:ca:c9:60:68:4b:78:4b:6d:
ca:05:0f:6f:8e:8c:11:d8:e1:ba:74:08:36:ff:bc:
79:53:e0:e2:eb:2c:9a:6c:4d:a2:3b:c3:ff:59:4b:
ce:e3:0f:0c:f8:17:41:79:0d:03:21:9c:0c:bf:02:
f6:2e:9d:04:85:05:a6:b4:cd:e6:c6:de:c9:04:bb:
39:0f:ab:9f:c8:cd:ec:dd:7d:03:75:a3:f8:28:9a:
7e:8c:f3:f8:a9:27:85:9a:dd:84:5a:c2:84:cc:6a:
a3:52:bb:85:9c:b2:d2:87:49:87:af:c1:e0:01:51:
c9:a5:fc:b1:07:41:0e:7b:4a:98:0b:a4:40:8f:d5:
dd:af:53:04:25:a4:5c:5a:ad:5e:0d:b8:83:e4:24:
c6:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:68:DD:93:10:9D:EA:38:29:88:2A:B5:6C:E3:5C:20:75:25:98:69
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/SWjdkxCd6jgpiCq1bONcIHUlmGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.43.78.0/23
109.207.134.0/23
Signature Algorithm: sha256WithRSAEncryption
22:e1:4a:85:ab:81:a7:fa:31:85:20:ce:c6:63:14:53:b6:b8:
98:99:ba:1f:2d:ec:b6:9c:2f:23:33:d5:be:7e:12:bc:c8:3f:
c4:12:90:7a:7c:33:19:e7:70:90:bc:05:11:70:cf:29:60:ec:
84:fe:32:dd:4f:5e:d9:80:52:2b:39:61:66:43:e3:01:b8:c8:
7a:47:3f:80:86:ad:73:37:0f:24:02:ca:74:ed:05:80:48:c7:
22:18:c1:d5:46:ff:37:00:de:30:d4:b0:24:2f:a0:d5:b9:88:
ff:18:48:a2:40:c4:af:92:4d:4d:bf:ee:8d:8b:41:d9:14:1e:
71:9e:dd:93:c6:24:c8:f8:81:b4:b6:eb:2d:29:97:93:3c:8b:
b5:ec:49:78:a9:19:06:ce:4c:aa:ec:95:b3:02:d0:1c:8b:72:
14:04:b9:d0:82:3a:5e:f7:4c:fc:6a:87:b3:2c:a3:49:e8:57:
8b:ae:11:d1:64:e9:37:31:ce:54:ad:7c:e1:05:69:e2:b7:1e:
74:c3:22:ca:76:63:bb:a2:a9:51:7f:97:26:2f:b2:39:3e:dc:
63:87:e4:95:e9:89:cd:98:b0:3b:56:e9:d9:16:53:32:9d:3a:
67:a1:76:93:48:bd:c3:e2:bf:ce:3b:c1:79:58:61:68:e8:47:
a5:c4:a0:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org