Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/73j9JefIZrUWcFMPB5WZYjGLi3M.roa
File: 73j9JefIZrUWcFMPB5WZYjGLi3M.roa (raw, json)
Hash identifier: VZ5Aoh1zUg47ybt8nKwYxlnlLmrdqA5BvIv9CDXsG8Q=
Subject key identifier: EF:78:FD:25:E7:C8:66:B5:16:70:53:0F:07:95:99:62:31:8B:8B:73
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 0183E2B85E219BA87E20F15EF9B49FDA1A6F
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/73j9JefIZrUWcFMPB5WZYjGLi3M.roa
Signing time: Sun 16 Oct 2022 21:34:36 +0000
ROA not before: Sun 16 Oct 2022 21:34:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210439
IP address blocks: 109.233.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e2:b8:5e:21:9b:a8:7e:20:f1:5e:f9:b4:9f:da:1a:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Oct 16 21:34:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef78fd25e7c866b51670530f07959962318b8b73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:f1:ec:2c:a7:5a:a8:0c:e2:cd:c8:52:7c:2e:
d3:6d:c6:cb:c8:62:1b:98:37:b5:ac:26:18:14:98:
92:12:4e:0e:88:57:1f:a9:e3:59:92:3f:f5:e2:dd:
2c:af:f1:8c:82:20:b2:cd:f9:13:86:91:84:47:4e:
1a:9e:a9:4f:cd:15:0f:a1:ec:f5:52:47:83:0f:e2:
75:67:e2:df:9f:17:5a:bf:cc:2d:63:54:25:91:71:
1a:a7:c3:d4:fc:d9:7d:17:54:f6:40:b0:f5:3f:80:
7c:ff:11:5c:9c:fd:b9:21:a8:1d:ab:ca:ed:bf:f3:
2c:8a:d1:8d:65:15:a5:03:3c:4b:63:b5:69:59:7c:
dd:2c:0b:d6:b9:cd:e3:76:1b:69:6c:1f:ed:71:7e:
7c:4a:82:c1:f0:0e:23:10:5a:e3:7e:04:31:37:bc:
8a:39:fe:90:18:42:86:99:67:a0:41:a7:c7:20:9f:
02:af:05:6c:1b:dd:f2:3c:e8:8e:01:fd:bc:57:5b:
d9:17:cb:72:f9:3a:ef:ca:c6:f5:04:8a:1c:04:62:
8e:7c:9f:d0:5e:e5:0d:11:2d:ff:7f:53:98:af:92:
f3:b5:45:63:71:c6:f6:6d:ce:eb:40:be:95:1e:a3:
16:2d:40:75:e3:32:98:1d:19:ed:5c:39:45:4a:4e:
61:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:78:FD:25:E7:C8:66:B5:16:70:53:0F:07:95:99:62:31:8B:8B:73
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/73j9JefIZrUWcFMPB5WZYjGLi3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.233.189.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:c1:7f:8c:38:24:24:a9:ff:3f:15:c5:13:b7:cd:90:4b:08:
f8:18:e4:26:6c:43:54:71:1a:87:2c:e1:b2:e3:4c:db:32:86:
d4:2b:c3:6c:f6:a9:ae:b2:79:88:0a:fd:71:42:35:d6:d0:a8:
c8:38:49:65:c2:3a:ff:fe:8d:7b:1f:5c:6b:03:d1:97:d2:1f:
68:3b:64:d4:91:78:9e:aa:55:b7:d5:83:e9:1e:bf:9f:85:03:
4a:d1:2a:d6:60:50:c7:52:9d:23:f7:27:e7:d7:dd:c6:79:db:
b3:20:e8:35:54:f8:55:f0:f1:ed:56:15:00:a6:a1:17:a2:16:
76:7a:76:ef:dd:d4:ca:ed:01:10:0d:d2:32:a0:28:54:60:7e:
ea:75:c5:fc:82:7d:27:af:35:7c:4e:20:68:e3:a9:82:f9:db:
12:dd:37:a9:1c:62:fe:53:d3:ba:5e:94:f0:41:25:40:47:98:
76:15:39:f6:c5:cf:f3:f8:53:dc:c7:4c:f5:81:ca:45:4b:e8:
35:56:90:95:18:22:79:b0:3b:71:74:37:3f:f1:e1:38:a5:b1:
0f:5c:f0:8f:63:16:c5:6c:4f:3c:49:b6:a4:58:c1:98:26:ac:
c0:3d:37:9e:ce:8b:24:af:6a:39:21:a7:19:ce:a6:6c:ef:fb:
d1:73:25:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:19 2023 by rpki-client on console-ams.rpki-client.org