Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/19ZCiVofTAbhFSvwaPGmguYY-6w.roa
File: 19ZCiVofTAbhFSvwaPGmguYY-6w.roa (raw, json)
Hash identifier: 9GprrsbOtXP9zgN0E3/L6dpJMFkvt4KHRfAcEAzrutk=
Subject key identifier: D7:D6:42:89:5A:1F:4C:06:E1:15:2B:F0:68:F1:A6:82:E6:18:FB:AC
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 01842D15255568BE89BBD91E544608539B51
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/19ZCiVofTAbhFSvwaPGmguYY-6w.roa
Signing time: Mon 31 Oct 2022 08:07:51 +0000
ROA not before: Mon 31 Oct 2022 08:07:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61320
IP address blocks: 109.121.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2d:15:25:55:68:be:89:bb:d9:1e:54:46:08:53:9b:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Oct 31 08:07:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7d642895a1f4c06e1152bf068f1a682e618fbac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:62:81:34:56:b1:b1:51:d5:ac:60:d6:08:d5:
02:85:e0:b7:5a:8d:0b:2b:32:14:2a:76:48:01:01:
ba:32:e7:07:3c:0f:03:a8:41:54:7b:83:99:f7:49:
36:35:f7:c0:a9:77:80:4f:ef:45:41:3f:f5:62:ee:
fd:77:fc:9d:86:a0:47:8f:a3:8f:26:0c:66:24:98:
2d:d9:5f:9e:3d:3e:10:2f:b4:57:e3:db:c0:e1:12:
02:a5:9d:54:14:b9:63:fc:31:8c:76:e3:d9:2d:85:
73:43:db:12:49:66:d0:44:b0:76:57:58:7c:01:c2:
3e:9c:2b:95:64:45:91:48:96:ba:51:fd:38:dd:4d:
f2:69:da:d1:cd:48:5a:16:78:39:68:e1:66:76:14:
ac:49:47:18:bd:23:fd:bf:c9:35:2d:0e:4f:4f:a0:
02:35:f6:f9:3f:2c:05:1c:63:59:e7:47:4b:6e:1b:
8c:4c:cd:41:7e:91:3a:53:95:47:ef:76:d5:06:6b:
be:20:c7:73:8e:7e:aa:d8:20:0e:ec:f3:c5:49:51:
93:1f:8a:6c:2b:1f:f7:28:20:c2:18:bb:dc:b7:ba:
ab:ab:0f:d7:7f:7f:cd:1e:2f:9e:e7:80:1c:15:0b:
b4:50:34:60:33:18:9c:bd:28:2b:b3:11:81:37:fd:
73:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D6:42:89:5A:1F:4C:06:E1:15:2B:F0:68:F1:A6:82:E6:18:FB:AC
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/19ZCiVofTAbhFSvwaPGmguYY-6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.121.34.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:7a:19:8c:84:14:5d:21:f7:a8:ac:2d:bf:a0:dd:03:de:32:
4f:00:e4:af:8e:4b:30:c1:5c:74:9d:17:9c:0c:86:9a:87:c8:
da:a5:a5:56:47:56:6a:ad:93:28:42:1f:ad:e0:12:ae:90:92:
56:f3:24:9c:84:53:73:f5:62:16:17:2c:83:23:67:fc:e6:49:
7a:23:fe:54:e6:53:74:0e:46:15:79:99:9f:ba:50:43:58:a3:
d3:55:9d:c8:54:6c:9f:5b:f6:82:1d:89:ba:0d:08:0f:c1:99:
d6:4c:54:d1:cb:73:56:43:1d:b3:49:3b:6d:13:97:f9:b1:e1:
f9:c4:4e:cb:b7:70:39:45:81:cd:f4:68:26:40:93:cf:d4:45:
f5:61:9c:1f:6c:b6:67:fe:3d:51:f4:f9:6a:3f:44:ef:e2:c7:
cf:cc:fa:0a:7b:fe:13:99:10:30:67:d5:6c:50:00:88:98:6a:
52:eb:94:41:f6:5c:09:19:4e:f1:40:dc:37:21:30:27:f9:7f:
c4:bb:b0:2d:d3:1d:d1:43:e3:e8:e6:33:9f:f0:d5:d5:35:d1:
db:bf:31:d8:db:38:00:00:12:08:bc:04:26:8f:76:e2:1a:43:
85:db:cb:a0:98:2d:26:95:72:cf:e2:11:51:68:ce:1e:c2:ca:
21:e1:12:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:25 2024 by rpki-client on console-fra.rpki-client.org